|
292591
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 7 through 9 does not properly create and initialize string data, which allows remote attackers to obtain sensitive information from process memory via a crafted HTML docum…
|
CWE-200
Information Exposure
|
CVE-2012-1873
|
2024-11-21 10:37 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292592
|
- |
|
microsoft
|
internet_explorer
|
Cross-site scripting (XSS) vulnerability in Microsoft Internet Explorer 6 through 9 allows remote attackers to inject arbitrary web script or HTML via crafted character sequences with EUC-JP encoding…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1872
|
2024-11-21 10:37 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292593
|
- |
|
microsoft
|
windows_xp
|
Race condition in the thread-creation implementation in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP3 allows local users to gain privileges via a crafted application, aka "Win32k.…
|
CWE-362
Race Condition
|
CVE-2012-1868
|
2024-11-21 10:37 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292594
|
- |
|
microsoft
|
windows_server_2008
windows_xp
windows_7
windows_server_2003
windows_vista
windows_2003_server
|
Integer overflow in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold …
|
CWE-399
Resource Management Errors
|
CVE-2012-1867
|
2024-11-21 10:37 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292595
|
- |
|
microsoft
|
windows_server_2008
windows_xp
windows_7
windows_server_2003
windows_vista
windows_2003_server
|
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not pro…
|
CWE-20
Improper Input Validation
|
CVE-2012-1866
|
2024-11-21 10:37 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292596
|
- |
|
microsoft
|
windows_server_2008
windows_xp
windows_7
windows_server_2003
windows_vista
windows_2003_server
|
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not pro…
|
CWE-20
Improper Input Validation
|
CVE-2012-1865
|
2024-11-21 10:37 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292597
|
- |
|
microsoft
|
windows_server_2008
windows_xp
windows_7
windows_server_2003
windows_vista
windows_2003_server
|
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not pro…
|
CWE-20
Improper Input Validation
|
CVE-2012-1864
|
2024-11-21 10:37 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292598
|
- |
|
microsoft
|
lync
office_communicator
internet_explorer
|
The toStaticHTML API (aka the SafeHTML component) in Microsoft Internet Explorer 8 and 9, Communicator 2007 R2, and Lync 2010 and 2010 Attendee does not properly handle event attributes and script, w…
|
CWE-200
Information Exposure
|
CVE-2012-1858
|
2024-11-21 10:37 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292599
|
- |
|
microsoft
|
dynamics_ax
|
Cross-site scripting (XSS) vulnerability in the Enterprise Portal component in Microsoft Dynamics AX 2012 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Dynami…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1857
|
2024-11-21 10:37 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292600
|
- |
|
microsoft
|
.net_framework
|
Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly handle function pointers, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application…
|
CWE-94
Code Injection
|
CVE-2012-1855
|
2024-11-21 10:37 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
