|
292501
|
- |
|
vmware
|
esxi
esx
|
VMware ESXi 3.5, 4.0, and 4.1 and ESX 3.5, 4.0, and 4.1 do not properly implement port-based I/O operations, which allows guest OS users to gain guest OS privileges by overwriting memory locations in…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1515
|
2024-11-21 10:37 |
2012-04-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292502
|
- |
|
phpgradebook
|
php_grade_book
|
admin/index.php in PHP Grade Book before 1.9.5 BETA allows remote attackers to read the database via a SaveSQL action.
|
CWE-200
Information Exposure
|
CVE-2012-1670
|
2024-11-21 10:37 |
2012-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292503
|
- |
|
maradns
|
maradns
|
The resolver in MaraDNS before 1.3.0.7.15 and 1.4.x before 1.4.12 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows re…
|
NVD-CWE-noinfo
|
CVE-2012-1570
|
2024-11-21 10:37 |
2012-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292504
|
- |
|
gnu
|
gnutls
|
gnutls_cipher.c in libgnutls in GnuTLS before 2.12.17 and 3.x before 3.0.15 does not properly handle data encrypted with a block cipher, which allows remote attackers to cause a denial of service (he…
|
CWE-310
Cryptographic Issues
|
CVE-2012-1573
|
2024-11-21 10:37 |
2012-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292505
|
- |
|
gnu
|
gnutls
libtasn1
|
The asn1_get_length_der function in decoding.c in GNU Libtasn1 before 2.12, as used in GnuTLS before 3.0.16 and other products, does not properly handle certain large length values, which allows remo…
|
CWE-189
Numeric Errors
|
CVE-2012-1569
|
2024-11-21 10:37 |
2012-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292506
|
- |
|
google
|
chrome
|
Google Chrome 17.0.963.66 and earlier allows remote attackers to bypass the sandbox protection mechanism by leveraging access to a sandboxed process, as demonstrated by VUPEN during a Pwn2Own competi…
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2012-1846
|
2024-11-21 10:37 |
2012-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292507
|
- |
|
google
|
chrome
|
Use-after-free vulnerability in Google Chrome 17.0.963.66 and earlier allows remote attackers to bypass the DEP and ASLR protection mechanisms, and execute arbitrary code, via unspecified vectors, as…
|
CWE-416
Use After Free
|
CVE-2012-1845
|
2024-11-21 10:37 |
2012-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292508
|
- |
|
quantum
dell
ibm
|
scalar_i500_firmware
scalar_i500
powervault_ml6000_firmware
powervault_ml6000
powervault_ml6010
powervault_ml6020
powervault_ml6030
ts3310_tape_library_firmware
ts3310_tape_li…
|
The Quantum Scalar i500 tape library with firmware before i7.0.3 (604G.GS00100), also distributed as the Dell ML6000 tape library with firmware before A20-00 (590G.GS00100) and the IBM TS3310 tape li…
|
CWE-255
Credentials Management
|
CVE-2012-1844
|
2024-11-21 10:37 |
2012-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292509
|
- |
|
quantum
dell
|
scalar_i500_firmware
scalar_i500
powervault_ml6000_firmware
powervault_ml6000
powervault_ml6010
powervault_ml6020
powervault_ml6030
|
Cross-site request forgery (CSRF) vulnerability in saveRestore.htm on the Quantum Scalar i500 tape library with firmware before i7.0.3 (604G.GS00100), also distributed as the Dell ML6000 tape library…
|
CWE-352
Origin Validation Error
|
CVE-2012-1843
|
2024-11-21 10:37 |
2012-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292510
|
- |
|
quantum
dell
|
scalar_i500_firmware
scalar_i500
powervault_ml6000_firmware
powervault_ml6000
powervault_ml6010
powervault_ml6020
powervault_ml6030
|
Cross-site scripting (XSS) vulnerability in checkQKMProg.htm on the Quantum Scalar i500 tape library with firmware before i7.0.3 (604G.GS00100), also distributed as the Dell ML6000 tape library with …
|
CWE-79
Cross-site Scripting
|
CVE-2012-1842
|
2024-11-21 10:37 |
2012-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
