|
289621
|
- |
|
owncloud
|
owncloud
|
CRLF injection vulnerability in ownCloud Server before 4.0.8 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the url path parameter.
|
NVD-CWE-Other
|
CVE-2012-5057
|
2024-11-21 10:43 |
2014-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289622
|
- |
|
owncloud
|
owncloud
|
Multiple cross-site scripting (XSS) vulnerabilities in ownCloud Server before 4.0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) readyCallback parameter to apps/files_odf…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5056
|
2024-11-21 10:43 |
2014-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289623
|
- |
|
davistribe
|
google_doc_embedder
|
Directory traversal vulnerability in the Google Doc Embedder plugin before 2.5.4 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter to libs/pdf.php.
|
CWE-22
Path Traversal
|
CVE-2012-4915
|
2024-11-21 10:43 |
2014-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289624
|
- |
|
cisco
|
ios
|
Cisco IOS before 15.3(1)T, when media flow-around is not used, allows remote attackers to cause a denial of service (media loops and stack memory corruption) via VoIP traffic, aka Bug ID CSCub45809.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5044
|
2024-11-21 10:43 |
2014-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289625
|
- |
|
cisco
|
ios
catalyst_6500
catalyst_7600
|
The ACL implementation in Cisco IOS before 15.1(1)SY on Catalyst 6500 and 7600 devices allows local users to cause a denial of service (device reload) via a "no object-group" command followed by an o…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-5037
|
2024-11-21 10:43 |
2014-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289626
|
- |
|
cisco
|
ios
|
The BGP Router process in Cisco IOS before 12.2(50)SY1 allows remote attackers to cause a denial of service (memory consumption) via vectors involving BGP path attributes, aka Bug ID CSCsw63003.
|
CWE-399
Resource Management Errors
|
CVE-2012-5039
|
2024-11-21 10:43 |
2014-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289627
|
- |
|
cisco
|
ios
asr_1001
asr_1002
asr_1002-x
asr_1002_fixed_router
asr_1004
asr_1006
asr_1023_router
|
Cisco IOS before 15.1(1)SY1 allows remote authenticated users to cause a denial of service (device reload) by establishing a VPN session and then sending malformed IKEv2 packets, aka Bug ID CSCub3926…
|
CWE-20
Improper Input Validation
|
CVE-2012-5017
|
2024-11-21 10:43 |
2014-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289628
|
- |
|
cisco
|
ios
|
The Flex-VPN load-balancing feature in the ipsec-ikev2 implementation in Cisco IOS before 15.1(1)SY3 does not require authentication, which allows remote attackers to trigger the forwarding of VPN tr…
|
CWE-287
Improper Authentication
|
CVE-2012-5032
|
2024-11-21 10:43 |
2014-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289629
|
- |
|
cisco
|
ios
|
Cisco IOS before 12.2(50)SY1 allows remote authenticated users to cause a denial of service (memory consumption) via a sequence of VTY management sessions (aka exec sessions), aka Bug ID CSCtn43662.
|
CWE-399
Resource Management Errors
|
CVE-2012-5036
|
2024-11-21 10:43 |
2014-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289630
|
- |
|
cisco
|
ios
|
The ios-authproxy implementation in Cisco IOS before 15.1(1)SY3 allows remote attackers to cause a denial of service (webauth and HTTP service outage) via vectors that trigger incorrectly terminated …
|
CWE-287
Improper Authentication
|
CVE-2012-4658
|
2024-11-21 10:43 |
2014-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
