|
290641
|
- |
|
citrix
xen
|
xenserver
xen
|
PHYSDEVOP_map_pirq in Xen 4.1 and 4.2 and Citrix XenServer 6.0.2 and earlier allows local HVM guest OS kernels to cause a denial of service (host crash) and possibly read hypervisor or guest memory v…
|
CWE-20
Improper Input Validation
|
CVE-2012-3498
|
2024-11-21 10:41 |
2012-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290642
|
- |
|
munin-monitoring
|
munin
|
munin-cgi-graph in Munin before 2.0.6, when running as a CGI module under Apache, allows remote attackers to load new configurations and create files in arbitrary directories via the logdir command.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3513
|
2024-11-21 10:41 |
2012-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290643
|
- |
|
munin-monitoring
|
munin
|
Munin before 2.0.6 stores plugin state files that run as root in the same group-writable directory as non-root plugins, which allows local users to execute arbitrary code by replacing a state file, a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3512
|
2024-11-21 10:41 |
2012-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290644
|
- |
|
vmware
|
ovf_tool
workstation
player
|
Format string vulnerability in VMware OVF Tool 2.1 on Windows, as used in VMware Workstation 8.x before 8.0.5, VMware Player 4.x before 4.0.5, and other products, allows user-assisted remote attacker…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2012-3569
|
2024-11-21 10:41 |
2012-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290645
|
- |
|
isc
|
inn
|
The STARTTLS implementation in nnrpd in INN before 2.5.3 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted sessions by sending a cle…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3523
|
2024-11-21 10:41 |
2012-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290646
|
- |
|
apple
|
quicktime
|
Buffer overflow in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted transform attribute in a text3GTrack e…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3758
|
2024-11-21 10:41 |
2012-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290647
|
- |
|
apple
|
quicktime
|
Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted PICT file.
|
NVD-CWE-noinfo
|
CVE-2012-3757
|
2024-11-21 10:41 |
2012-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290648
|
- |
|
apple
|
quicktime
|
Buffer overflow in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted rnet box in an MP4 movie file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3756
|
2024-11-21 10:41 |
2012-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290649
|
- |
|
apple
|
quicktime
|
Buffer overflow in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Targa image.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3755
|
2024-11-21 10:41 |
2012-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290650
|
- |
|
apple
|
quicktime
|
Use-after-free vulnerability in the Clear method in the ActiveX control in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application cra…
|
CWE-399
Resource Management Errors
|
CVE-2012-3754
|
2024-11-21 10:41 |
2012-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
