|
290411
|
- |
|
optipng
|
optipng
|
Use-after-free vulnerability in opngreduc.c in OptiPNG Hg and 0.7.x before 0.7.3 might allow remote attackers to execute arbitrary code via unspecified vectors related to "palette reduction."
|
CWE-399
Resource Management Errors
|
CVE-2012-4432
|
2024-11-21 10:42 |
2012-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290412
|
- |
|
gnome
|
gnome-shell
|
The gnome-shell plugin 3.4.1 in GNOME allows remote attackers to force the download and installation of arbitrary extensions from extensions.gnome.org via a crafted web page.
|
CWE-94
Code Injection
|
CVE-2012-4427
|
2024-11-21 10:42 |
2012-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290413
|
- |
|
fedoraproject
guac-dev
|
fedora
guacamole
|
Stack-based buffer overflow in the guac_client_plugin_open function in libguac in Guacamole before 0.6.3 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a l…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4415
|
2024-11-21 10:42 |
2012-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290414
|
- |
|
david_king
|
vino
|
Vino 2.28, 2.32, 3.4.2, and earlier allows remote attackers to read clipboard activity by listening on TCP port 5900.
|
CWE-200
Information Exposure
|
CVE-2012-4429
|
2024-11-21 10:42 |
2012-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290415
|
- |
|
wordpress
|
wordpress
|
Cross-site request forgery (CSRF) vulnerability in wp-admin/index.php in WordPress 3.4.2 allows remote attackers to hijack the authentication of administrators for requests that modify an RSS URL via…
|
CWE-352
Origin Validation Error
|
CVE-2012-4448
|
2024-11-21 10:42 |
2012-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290416
|
- |
|
jamf
|
casper_suite
|
Multiple cross-site request forgery (CSRF) vulnerabilities in editAccount.html in the JAMF Software Server (JSS) interface in JAMF Casper Suite before 8.61 allow remote attackers to hijack the authen…
|
CWE-352
Origin Validation Error
|
CVE-2012-4051
|
2024-11-21 10:42 |
2012-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290417
|
- |
|
jb\+
|
jigbrowser\+
|
The jigbrowser+ application before 1.5.0 for Android does not properly implement the WebView class, which allows remote attackers to obtain sensitive information via a crafted application.
|
CWE-94
Code Injection
|
CVE-2012-4017
|
2024-11-21 10:42 |
2012-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290418
|
- |
|
justsystems
|
atok
|
The ATOK application before 1.0.4 for Android allows remote attackers to read the learning information file, and obtain sensitive input-string information, via a crafted application.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4016
|
2024-11-21 10:42 |
2012-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290419
|
- |
|
mylittletools
|
mylittleadmin
|
Cross-site scripting (XSS) vulnerability in the management screen in myLittleTools myLittleAdmin for SQL Server 2000 allows remote attackers to inject arbitrary web script or HTML via vectors that tr…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4015
|
2024-11-21 10:42 |
2012-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290420
|
- |
|
mcafee
|
email_and_web_security
|
Unspecified vulnerability in McAfee Email Anti-virus (formerly WebShield SMTP) allows remote attackers to cause a denial of service via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2012-4014
|
2024-11-21 10:42 |
2012-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
