|
291511
|
- |
|
xen
|
xen
|
Xen 4.0, and 4.1, when running a 64-bit PV guest on "older" AMD CPUs, does not properly protect against a certain AMD processor bug, which allows local guest OS users to cause a denial of service (ho…
|
NVD-CWE-noinfo
|
CVE-2012-2934
|
2024-11-21 10:39 |
2012-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291512
|
- |
|
oracle
|
jdk
jre
openjdk
|
Oracle Java SE before 7 Update 6, and OpenJDK 7 before 7u6 build 12 and 8 before build 39, computes hash values without restricting the ability to trigger hash collisions predictably, which allows co…
|
CWE-310
Cryptographic Issues
|
CVE-2012-2739
|
2024-11-21 10:39 |
2012-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291513
|
- |
|
awcm-cms
|
ar_web_content_manager
|
ar web content manager (AWCM) 2.2 does not restrict the number of comment records that can be submitted through HTTP requests, which allows remote attackers to cause a denial of service (disk consump…
|
CWE-399
Resource Management Errors
|
CVE-2012-2438
|
2024-11-21 10:39 |
2012-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291514
|
- |
|
awcm-cms
|
ar_web_content_manager
|
cookie_gen.php in ar web content manager (AWCM) 2.2 does not require authentication, which allows remote attackers to generate arbitrary cookies via the name parameter in conjunction with the content…
|
CWE-287
Improper Authentication
|
CVE-2012-2437
|
2024-11-21 10:39 |
2012-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291515
|
- |
|
apache
|
tomcat
|
java/org/apache/coyote/http11/InternalNioInputBuffer.java in the HTTP NIO connector in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.28 does not properly restrict the request-header size, which …
|
CWE-20
Improper Input Validation
|
CVE-2012-2733
|
2024-11-21 10:39 |
2012-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291516
|
- |
|
broadcom
apple
|
bcm4329
bcm4325
iphone_os
|
The Broadcom BCM4325 and BCM4329 Wi-Fi chips, as used in certain Acer, Apple, Asus, Ford, HTC, Kyocera, LG, Malata, Motorola, Nokia, Pantech, Samsung, and Sony products, allow remote attackers to cau…
|
CWE-20
Improper Input Validation
|
CVE-2012-2619
|
2024-11-21 10:39 |
2012-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291517
|
- |
|
microsoft
|
windows_server_2008
windows_7
windows_xp
windows_server_2003
windows_vista
|
Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, and Windows 7 Gold and SP1 allo…
|
CWE-399
Resource Management Errors
|
CVE-2012-2553
|
2024-11-21 10:39 |
2012-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291518
|
- |
|
microsoft
|
excel
excel_viewer
office_compatibility_pack
office
|
Stack-based buffer overflow in Microsoft Excel 2007 SP2 and SP3 and 2010 SP1; Office 2011 for Mac; Excel Viewer; and Office Compatibility Pack SP2 and SP3 allows remote attackers to execute arbitrary…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2543
|
2024-11-21 10:39 |
2012-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291519
|
- |
|
microsoft
|
ftp_service
|
Microsoft FTP Service 7.0 and 7.5 for Internet Information Services (IIS) processes unspecified commands before TLS is enabled for a session, which allows remote attackers to obtain sensitive informa…
|
CWE-200
Information Exposure
|
CVE-2012-2532
|
2024-11-21 10:39 |
2012-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291520
|
- |
|
-
|
-
|
Microsoft Internet Information Services (IIS) 7.5 uses weak permissions for the Operational log, which allows local users to discover credentials by reading this file, aka "Password Disclosure Vulner…
|
CWE-200
Information Exposure
|
CVE-2012-2531
|
2024-11-21 10:39 |
2012-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
