|
290861
|
- |
|
pidgin
|
pidgin
|
The Yahoo! protocol plugin in libpurple in Pidgin before 2.10.8 does not properly validate UTF-8 data, which allows remote attackers to cause a denial of service (application crash) via crafted byte …
|
CWE-20
Improper Input Validation
|
CVE-2012-6152
|
2024-11-21 10:45 |
2014-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290862
|
- |
|
zabbix
|
zabbix
|
libs/zbxmedia/eztexting.c in Zabbix 1.8.x before 1.8.18rc1, 2.0.x before 2.0.8rc1, and 2.1.x before 2.1.2 does not properly set the CURLOPT_SSL_VERIFYHOST option for libcurl, which allows man-in-the-…
|
CWE-310
Cryptographic Issues
|
CVE-2012-6086
|
2024-11-21 10:45 |
2014-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290863
|
- |
|
apple
canonical
net-snmp
|
mac_os_x
ubuntu_linux
net-snmp
|
Net-SNMP 5.7.1 and earlier, when AgentX is registering to handle a MIB and processing GETNEXT requests, allows remote attackers to cause a denial of service (crash or infinite loop, CPU consumption, …
|
CWE-399
Resource Management Errors
|
CVE-2012-6151
|
2024-11-21 10:45 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290864
|
- |
|
samba
canonical
|
samba
ubuntu_linux
|
The winbind_name_list_to_sid_string_list function in nsswitch/pam_winbind.c in Samba through 4.1.2 handles invalid require_membership_of group names by accepting authentication by any user, which all…
|
CWE-20
Improper Input Validation
|
CVE-2012-6150
|
2024-11-21 10:45 |
2013-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290865
|
- |
|
kth
opensuse
|
snack_sound_toolkit
wavesurfer
opensuse
|
Heap-based buffer overflow in the GetWavHeader function in generic/jkSoundFile.c in the Snack Sound Toolkit, as used in WaveSurfer 1.8.8p4, allows remote attackers to cause a denial of service (crash…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6303
|
2024-11-21 10:45 |
2013-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290866
|
- |
|
oracle
mariadb
|
mysql
mariadb
|
Oracle MySQL and MariaDB 5.5.x before 5.5.29, 5.3.x before 5.3.12, and 5.2.x before 5.2.14 does not modify the salt during multiple executions of the change_user command within the same connection wh…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2012-5627
|
2024-11-21 10:45 |
2013-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290867
|
- |
|
moodle
|
moodle
|
repository/s3/S3.php in the Amazon S3 library in Moodle through 2.2.11, 2.3.x before 2.3.9, 2.4.x before 2.4.6, and 2.5.x before 2.5.2 does not verify that the server hostname matches a domain name i…
|
CWE-20
Improper Input Validation
|
CVE-2012-6087
|
2024-11-21 10:45 |
2013-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290868
|
- |
|
cisco
|
wireless_control_system
prime_network_control_system
|
Multiple cross-site scripting (XSS) vulnerabilities in Health Monitor Login pages in Cisco Prime Network Control System (NCS) and Wireless Control System (WCS) allow remote attackers to inject arbitr…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5990
|
2024-11-21 10:45 |
2013-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290869
|
- |
|
cisco
|
identity_services_engine_software
|
Multiple cross-site scripting (XSS) vulnerabilities in the guest portal in Cisco Identity Services Engine (ISE) Software allow remote attackers to inject arbitrary web script or HTML via unspecified …
|
CWE-79
Cross-site Scripting
|
CVE-2012-5744
|
2024-11-21 10:45 |
2013-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290870
|
- |
|
videolan
|
vlc_media_player
|
The SHAddToRecentDocs function in VideoLAN VLC media player 2.0.4 and earlier might allow user-assisted attackers to cause a denial of service (crash) via a crafted file name that triggers an incorre…
|
CWE-189
Numeric Errors
|
CVE-2012-5855
|
2024-11-21 10:45 |
2013-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
