|
290281
|
- |
|
wireshark
|
wireshark
|
The dissect_sflow_245_address_type function in epan/dissectors/packet-sflow.c in the sFlow dissector in Wireshark 1.8.x before 1.8.4 does not properly handle length calculations for an invalid IP add…
|
CWE-189
Numeric Errors
|
CVE-2012-6054
|
2024-11-21 10:45 |
2012-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290282
|
- |
|
wireshark
|
wireshark
|
epan/dissectors/packet-usb.c in the USB dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 relies on a length field to calculate an offset value, which allows remote attackers to cause…
|
CWE-189
Numeric Errors
|
CVE-2012-6053
|
2024-11-21 10:45 |
2012-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290283
|
- |
|
wireshark
|
wireshark
|
Wireshark 1.8.x before 1.8.4 allows remote attackers to obtain sensitive hostname information by reading pcap-ng files.
|
CWE-200
Information Exposure
|
CVE-2012-6052
|
2024-11-21 10:45 |
2012-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290284
|
- |
|
freeftpd
|
freeftpd
|
freeFTPd.exe in freeFTPd through 1.0.11 allows remote attackers to bypass authentication via a crafted SFTP session, as demonstrated by an OpenSSH client with modified versions of ssh.c and sshconnec…
|
CWE-287
Improper Authentication
|
CVE-2012-6067
|
2024-11-21 10:45 |
2012-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290285
|
- |
|
freesshd
|
freesshd
|
freeSSHd.exe in freeSSHd through 1.2.6 allows remote attackers to bypass authentication via a crafted session, as demonstrated by an OpenSSH client with modified versions of ssh.c and sshconnect2.c.
|
CWE-287
Improper Authentication
|
CVE-2012-6066
|
2024-11-21 10:45 |
2012-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290286
|
- |
|
ssh
|
tectia_server
|
The SSH USERAUTH CHANGE REQUEST feature in SSH Tectia Server 6.0.4 through 6.0.20, 6.1.0 through 6.1.12, 6.2.0 through 6.2.5, and 6.3.0 through 6.3.2 on UNIX and Linux, when old-style password authen…
|
CWE-287
Improper Authentication
|
CVE-2012-5975
|
2024-11-21 10:45 |
2012-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290287
|
- |
|
daniel_honrade
|
om_maximenu
|
The OM Maximenu module 6.x-1.43 and earlier for Drupal, when the "Title has PHP" option is enabled, allows remote authenticated users with the "Administer OM Maximenu" permission to execute arbitrary…
|
NVD-CWE-noinfo
|
CVE-2012-6065
|
2024-11-21 10:45 |
2012-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290288
|
- |
|
cmsmadesimple
|
cms_made_simple
|
Directory traversal vulnerability in lib/filemanager/imagemanager/images.php in CMS Made Simple (CMSMS) before 1.11.2.1 allows remote authenticated administrators to delete arbitrary files via a .. (…
|
CWE-22
Path Traversal
|
CVE-2012-6064
|
2024-11-21 10:45 |
2012-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290289
|
- |
|
samsung
|
kies_air
|
Samsung Kies Air 2.1.207051 and 2.1.210161 allows remote attackers to cause a denial of service (crash) via a crafted request to www/apps/KiesAir/jws/ssd.php.
|
NVD-CWE-noinfo
|
CVE-2012-5859
|
2024-11-21 10:45 |
2012-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290290
|
- |
|
samsung
|
kies_air
|
Samsung Kies Air 2.1.207051 and 2.1.210161 relies on the IP address for authentication, which allows remote man-in-the-middle attackers to read arbitrary phone contents by spoofing or controlling the…
|
CWE-287
Improper Authentication
|
CVE-2012-5858
|
2024-11-21 10:45 |
2012-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
