|
290891
|
- |
|
fedorahosted
|
cronie
|
File descriptor leak in cronie 1.4.8, when running in certain environments, might allow local users to read restricted files, as demonstrated by reading /etc/crontab.
|
CWE-200
Information Exposure
|
CVE-2012-6097
|
2024-11-21 10:45 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290892
|
- |
|
redhat
gluster
|
storage_native_client
storage_server
storage_management_console
glusterfs
|
The GlusterFS functionality in Red Hat Storage Management Console 2.0, Native Client, and Server 2.0 allows local users to overwrite arbitrary files via a symlink attack on multiple temporary files c…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-5635
|
2024-11-21 10:45 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290893
|
- |
|
transmissionbt
fedoraproject
canonical
|
transmission
fedora
ubuntu_linux
|
Stack-based buffer overflow in utp.cpp in libutp, as used in Transmission before 2.74 and possibly other products, allows remote attackers to cause a denial of service (crash) and possibly execute ar…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6129
|
2024-11-21 10:45 |
2013-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290894
|
- |
|
redhat
candlepinproject
|
subscription_asset_manager
candlepin
|
Candlepin before 0.7.24, as used in Red Hat Subscription Asset Manager before 1.2.1, does not properly check manifest signatures, which allows local users to modify manifests.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-6119
|
2024-11-21 10:45 |
2013-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290895
|
- |
|
mcafee
|
mcafee_virtual_technician
epo_mcafee_virtual_technician
|
An ActiveX control in McHealthCheck.dll in McAfee Virtual Technician (MVT) and ePO-MVT 6.5.0.2101 and earlier allows remote attackers to modify or create arbitrary files via a full pathname argument …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-5879
|
2024-11-21 10:45 |
2013-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290896
|
- |
|
ibm
|
lotus_inotes
|
Cross-site scripting (XSS) vulnerability in IBM iNotes 8.5.x before 8.5.3 FP4 allows user-assisted remote attackers to inject arbitrary web script or HTML via vectors involving mail, aka SPR JDOE8ZZS…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5943
|
2024-11-21 10:45 |
2013-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290897
|
- |
|
ibm
|
rational_clearquest
|
Cross-site scripting (XSS) vulnerability in the Web Client in IBM Rational ClearQuest 7.1.x before 7.1.2.10 and 8.x before 8.0.0.6 allows remote attackers to inject arbitrary web script or HTML via a…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5757
|
2024-11-21 10:45 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290898
|
- |
|
ibm
|
infosphere_information_server
|
The installation process in IBM InfoSphere Information Server 8.1, 8.5, 8.7, and 9.1 on UNIX and Linux sets incorrect permissions and ownerships for unspecified files, which allows local users to byp…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-5938
|
2024-11-21 10:45 |
2013-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290899
|
- |
|
redhat
|
enterprise_virtualization_manager
|
The domain management tool (rhevm-manage-domains) in Red Hat Enterprise Virtualization Manager (RHEV-M) 3.1 and earlier, when the validate action is enabled, logs the administrative password to a wor…
|
CWE-255
Credentials Management
|
CVE-2012-6115
|
2024-11-21 10:45 |
2013-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290900
|
- |
|
redhat
|
automatic_bug_reporting_tool
|
abrt-action-install-debuginfo in Automatic Bug Reporting Tool (ABRT) 2.0.9 and earlier allows local users to set world-writable permissions for arbitrary files and possibly gain privileges via a syml…
|
CWE-264
CWE-362
Permissions, Privileges, and Access Controls
Race Condition
|
CVE-2012-5660
|
2024-11-21 10:45 |
2013-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
