|
290961
|
- |
|
freetype
|
freetype
|
FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to BDF fonts and the improper handling of an "allocatio…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5668
|
2024-11-21 10:45 |
2013-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290962
|
- |
|
gnupg
|
gnupg
|
The read_block function in g10/import.c in GnuPG 1.4.x before 1.4.13 and 2.0.x through 2.0.19, when importing a key, allows remote attackers to corrupt the public keyring database or cause a denial o…
|
CWE-20
Improper Input Validation
|
CVE-2012-6085
|
2024-11-21 10:45 |
2013-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290963
|
- |
|
nagios
icinga
|
nagios
icinga
|
Multiple stack-based buffer overflows in the get_history function in history.cgi in Nagios Core before 3.4.4, and Icinga 1.6.x before 1.6.2, 1.7.x before 1.7.4, and 1.8.x before 1.8.4, might allow re…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6096
|
2024-11-21 10:45 |
2013-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290964
|
- |
|
3s-software
|
codesys_runtime_system
|
Directory traversal vulnerability in the Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x allows remote attackers to read, overwrite, or create arbitrary files via a .. (dot dot) in a reques…
|
CWE-22
Path Traversal
|
CVE-2012-6069
|
2024-11-21 10:45 |
2013-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290965
|
- |
|
3s-software
|
codesys_runtime_system
|
The Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x does not require authentication, which allows remote attackers to (1) execute commands via the command-line interface in the TCP listener…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-6068
|
2024-11-21 10:45 |
2013-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290966
|
- |
|
php
|
php
|
The openssl_encrypt function in ext/openssl/openssl.c in PHP 5.3.9 through 5.3.13 does not initialize a certain variable, which allows remote attackers to obtain sensitive information from process me…
|
CWE-200
Information Exposure
|
CVE-2012-6113
|
2024-11-21 10:45 |
2013-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290967
|
- |
|
cisco
|
adaptive_security_appliance_software
adaptive_security_appliance
asa_1000v_cloud_firewall
asa_5500
|
Cisco Adaptive Security Appliances (ASA) devices with firmware 8.x through 8.4(1) do not properly manage SSH sessions, which allows remote authenticated users to cause a denial of service (device cra…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-5717
|
2024-11-21 10:45 |
2013-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290968
|
- |
|
rpm
|
rpm
|
The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code in certain situations involving an "unparseable signature," which allows remote attackers to bypass …
|
CWE-255
Credentials Management
|
CVE-2012-6088
|
2024-11-21 10:45 |
2013-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290969
|
- |
|
fireflymediaserver
|
firefly_media_server
|
Firefly Media Server 1.0.0.1359 allows remote attackers to cause a denial of service (NULL pointer dereference) via a (1) crafted Connection HTTP header; a return carriage control character in the (2…
|
NVD-CWE-Other
|
CVE-2012-5875
|
2024-11-21 10:45 |
2013-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290970
|
5.5 |
MEDIUM
Local
|
inkscape
fedoraproject
canonical
opensuse
|
inkscape
fedora
ubuntu_linux
opensuse
|
The rasterization process in Inkscape before 0.48.4 allows local users to read arbitrary files via an external entity in a SVG file, aka an XML external entity (XXE) injection attack.
|
CWE-611
XXE
|
CVE-2012-5656
|
2024-11-21 10:45 |
2013-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
