|
290351
|
- |
|
wellintech
|
kingview
|
WellinTech KingView 6.5.3 and earlier uses a weak password-hashing algorithm, which makes it easier for local users to discover credentials by reading an unspecified file.
|
CWE-310
Cryptographic Issues
|
CVE-2012-4899
|
2024-11-21 10:43 |
2012-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290352
|
- |
|
ibm
|
lotus_notes_traveler
|
Multiple cross-site scripting (XSS) vulnerabilities in servlet/traveler/ILNT.mobileconfig in IBM Lotus Notes Traveler before 8.5.3.2 allow remote attackers to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2012-4825
|
2024-11-21 10:43 |
2012-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290353
|
- |
|
ibm
|
lotus_notes_traveler
|
Open redirect vulnerability in servlet/traveler in IBM Lotus Notes Traveler 8.5.3 before 8.5.3.3 Interim Fix 1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing at…
|
CWE-20
Improper Input Validation
|
CVE-2012-4824
|
2024-11-21 10:43 |
2012-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290354
|
- |
|
vmware
|
capacityiq
|
Directory traversal vulnerability in VMware CapacityIQ 1.5.x allows remote attackers to read arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2012-5051
|
2024-11-21 10:43 |
2012-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290355
|
- |
|
vmware
|
vcenter_operations
|
Cross-site scripting (XSS) vulnerability in the server in VMware vCenter Operations (aka vCOps) before 5.0.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-5050
|
2024-11-21 10:43 |
2012-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290356
|
- |
|
vmware
|
movie_decoder
|
Untrusted search path vulnerability in the installer in VMware Movie Decoder before 9.0 allows local users to gain privileges via a Trojan horse executable file in the installer directory.
|
NVD-CWE-Other
|
CVE-2012-4897
|
2024-11-21 10:43 |
2012-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290357
|
- |
|
sumatrapdfreader
|
sumatrapdf
|
Heap-based buffer overflow in SumatraPDF before 2.1 allows remote attackers to execute arbitrary code via a crafted PDF document, a different vulnerability than CVE-2012-4895.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4896
|
2024-11-21 10:43 |
2012-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290358
|
- |
|
sumatrapdfreader
|
sumatrapdf
|
Heap-based buffer overflow in SumatraPDF before 2.1 allows remote attackers to execute arbitrary code via a crafted PDF document, a different vulnerability than CVE-2012-4896.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4895
|
2024-11-21 10:43 |
2012-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290359
|
- |
|
google
|
sketchup
|
Google SketchUp before 8.0.14346 (aka 8 Maintenance 3) allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted SKP file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4894
|
2024-11-21 10:43 |
2012-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290360
|
- |
|
ibm
|
aix
vios
|
fuser in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly restrict the -k option, which allows local users to kill arbitrary processes via a crafted command line.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4833
|
2024-11-21 10:43 |
2012-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
