|
290331
|
8.8 |
HIGH
Network
|
mozilla
redhat
canonical
opensuse
suse
|
firefox
seamonkey
thunderbird
thunderbird_esr
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_desktop
enterprise_linux_server_eus
enterprise_linux_eus
Use-after-free vulnerability in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 on Mac OS X allow…
|
CWE-416
Use After Free
|
CVE-2012-5830
|
2024-11-21 10:45 |
2012-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
290332
|
- |
|
mozilla
suse
opensuse
redhat
canonical
debian
|
firefox
seamonkey
thunderbird
thunderbird_esr
linux_enterprise_server
linux_enterprise_desktop
opensuse
linux_enterprise_software_development_kit
enterprise_linux_server
en…
|
Heap-based buffer overflow in the nsWindow::OnExposeEvent function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and S…
|
CWE-787
Out-of-bounds Write
|
CVE-2012-5829
|
2024-11-21 10:45 |
2012-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290333
|
- |
|
vmware
|
esxi
esx
|
The vSphere API in VMware ESXi 4.1 and ESX 4.1 allows remote attackers to cause a denial of service (host daemon crash) via an invalid value in a (1) RetrieveProp or (2) RetrievePropEx SOAP request.
|
CWE-20
Improper Input Validation
|
CVE-2012-5703
|
2024-11-21 10:45 |
2012-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290334
|
- |
|
adobe
|
coldfusion
|
Unspecified vulnerability in Adobe ColdFusion 10 before Update 5, when Internet Information Services (IIS) is used, allows attackers to cause a denial of service via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2012-5674
|
2024-11-21 10:45 |
2012-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290335
|
- |
|
google
|
web_toolkit
|
Cross-site scripting (XSS) vulnerability in Google Web Toolkit (GWT) 2.4 through 2.5 Final, as used in JBoss Operations Network (ON) 3.1.1 and possibly other products, allows remote attackers to inje…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5920
|
2024-11-21 10:45 |
2012-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290336
|
- |
|
havalite
|
cms
|
Multiple cross-site scripting (XSS) vulnerabilities in Havalite 1.0.4 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) find or (2) replace fields to havalite/find…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5919
|
2024-11-21 10:45 |
2012-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290337
|
- |
|
razorcms
|
razorcms
|
razorCMS 1.2 allows remote authenticated users to access administrator directories and files by creating and deleting a directory.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-5918
|
2024-11-21 10:45 |
2012-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290338
|
- |
|
flashtux
|
weechat
|
Heap-based buffer overflow in WeeChat 0.3.6 through 0.3.9 allows remote attackers to cause a denial of service (crash or hang) and possibly execute arbitrary code via crafted IRC colors that are not …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5854
|
2024-11-21 10:45 |
2012-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290339
|
- |
|
tom_wilkason
|
snackamp
|
SnackAmp 3.1.3 allows remote attackers to cause a denial of service (application crash) via a long string in an aiff file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5917
|
2024-11-21 10:45 |
2012-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290340
|
- |
|
neocrome
|
seditio
|
Neocrome Seditio build 161 allows remote attackers to obtain sensitive information via a direct request to (1) docs/new/seditio-createnew-160.sql, (2) docs/upgrade/sedito_convert_to_utf8.optional.sql…
|
CWE-200
Information Exposure
|
CVE-2012-5916
|
2024-11-21 10:45 |
2012-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
