|
293451
|
- |
|
tibco
|
silver_fabric_activematrix_service_grid_distribution
activematrix_service_grid
activematrix_service_bus
activematrix_businessworks_service_engine
activematrix_bpm
|
Cross-site scripting (XSS) vulnerability in TIBCO ActiveMatrix Platform in TIBCO Silver Fabric ActiveMatrix Service Grid Distribution 3.1.3, Service Grid and Service Bus 3.x before 3.1.5, BusinessWor…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0688
|
2024-11-21 10:35 |
2012-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293452
|
- |
|
tibco
|
activematrix_service_grid
activematrix_service_bus
activematrix_businessworks_service_engine
silver_fabric_activematrix_service_grid_distribution
activematrix_bpm
businessevents
act…
|
TIBCO ActiveMatrix Runtime Platform in Service Grid and Service Bus 2.x before 2.3.2 and BusinessWorks Service Engine before 5.8.2; TIBCO ActiveMatrix Platform in TIBCO Silver Fabric ActiveMatrix Ser…
|
CWE-200
Information Exposure
|
CVE-2012-0687
|
2024-11-21 10:35 |
2012-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293453
|
- |
|
openssl
|
openssl
|
The implementation of Cryptographic Message Syntax (CMS) and PKCS #7 in OpenSSL before 0.9.8u and 1.x before 1.0.0h does not properly restrict certain oracle behavior, which makes it easier for conte…
|
CWE-310
Cryptographic Issues
|
CVE-2012-0884
|
2024-11-21 10:35 |
2012-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293454
|
- |
|
apple
|
safari
|
WebKit in Apple Safari before 5.1.4 does not properly handle redirects in conjunction with HTTP authentication, which might allow remote web servers to capture credentials by logging the Authorizatio…
|
CWE-200
Information Exposure
|
CVE-2012-0647
|
2024-11-21 10:35 |
2012-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293455
|
- |
|
apple
|
safari
|
WebKit in Apple Safari before 5.1.4 does not properly implement "From third parties and advertisers" cookie blocking, which makes it easier for remote web servers to track users via a cookie.
|
CWE-200
Information Exposure
|
CVE-2012-0640
|
2024-11-21 10:35 |
2012-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293456
|
- |
|
apple
|
safari
|
The Internationalized Domain Name (IDN) feature in Apple Safari before 5.1.4 on Windows does not properly restrict the characters in URLs, which allows remote attackers to spoof a domain name via uns…
|
CWE-20
Improper Input Validation
|
CVE-2012-0584
|
2024-11-21 10:35 |
2012-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293457
|
- |
|
apple
|
itunes
webkit
|
WebKit, as used in Apple iTunes before 10.6, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0648
|
2024-11-21 10:35 |
2012-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293458
|
- |
|
apple
|
iphone_os
|
Format string vulnerability in VPN in Apple iOS before 5.1 allows remote attackers to execute arbitrary code via a crafted racoon configuration file.
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2012-0646
|
2024-11-21 10:35 |
2012-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293459
|
- |
|
apple
|
iphone_os
|
Siri in Apple iOS before 5.1 does not properly restrict the ability of Mail.app to handle voice commands, which allows physically proximate attackers to bypass the locked state via a command that for…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0645
|
2024-11-21 10:35 |
2012-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293460
|
- |
|
apple
|
iphone_os
|
Race condition in the Passcode Lock feature in Apple iOS before 5.1 allows physically proximate attackers to bypass intended passcode requirements via a slide-to-dial gesture.
|
CWE-362
Race Condition
|
CVE-2012-0644
|
2024-11-21 10:35 |
2012-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
