|
290541
|
- |
|
katello
|
katello
|
script/katello-generate-passphrase in Katello 1.1 uses world-readable permissions for /etc/katello/secure/passphrase, which allows local users to obtain the passphrase by reading the file.
|
CWE-200
Information Exposure
|
CVE-2012-5561
|
2024-11-21 10:44 |
2013-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290542
|
- |
|
jforum
|
jforum
|
Multiple cross-site scripting (XSS) vulnerabilities in jforum.page in JForum 2.1.9 allow remote attackers to inject arbitrary web script or HTML via the (1) action, (2) match_type, (3) sort_by, or (4…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5337
|
2024-11-21 10:44 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290543
|
- |
|
qt
digia
canonical
|
qt
ubuntu_linux
|
The XMLHttpRequest object in Qt before 4.8.4 enables http redirection to the file scheme, which allows man-in-the-middle attackers to force the read of arbitrary local files and possibly obtain sensi…
|
CWE-200
Information Exposure
|
CVE-2012-5624
|
2024-11-21 10:44 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290544
|
- |
|
redhat
fedora_project
|
enterprise_linux
fedora_release_rawhide
|
A certain Red Hat build of the pam_ssh_agent_auth module on Red Hat Enterprise Linux (RHEL) 6 and Fedora Rawhide calls the glibc error function instead of the error function in the OpenSSH codebase, …
|
CWE-20
Improper Input Validation
|
CVE-2012-5536
|
2024-11-21 10:44 |
2013-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290545
|
- |
|
linux
|
linux_kernel
|
The CRC32C feature in the Btrfs implementation in the Linux kernel before 3.8-rc1 allows local users to cause a denial of service (prevention of file creation) by leveraging the ability to write to a…
|
CWE-310
Cryptographic Issues
|
CVE-2012-5375
|
2024-11-21 10:44 |
2013-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290546
|
- |
|
linux
|
linux_kernel
|
The CRC32C feature in the Btrfs implementation in the Linux kernel before 3.8-rc1 allows local users to cause a denial of service (extended runtime of kernel code) by creating many different files wh…
|
CWE-310
Cryptographic Issues
|
CVE-2012-5374
|
2024-11-21 10:44 |
2013-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290547
|
- |
|
hp
|
arcsight_connector_appliance_firmware
arcsight_connector_appliance
arcsight_logger
|
Unspecified vulnerability in HP ArcSight Connector Appliance 6.3 and earlier and ArcSight Logger 5.2 and earlier allows remote authenticated users to execute arbitrary code via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2012-5199
|
2024-11-21 10:44 |
2013-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290548
|
- |
|
hp
|
arcsight_connector_appliance_firmware
arcsight_connector_appliance
arcsight_logger
|
Unspecified vulnerability in HP ArcSight Connector Appliance before 6.3 and ArcSight Logger 5.2 and earlier allows remote attackers to obtain sensitive information via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2012-5198
|
2024-11-21 10:44 |
2013-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290549
|
- |
|
google
|
android_debug_bridge
|
android-tools 4.1.1 in Android Debug Bridge (ADB) allows local users to overwrite arbitrary files via a symlink attack on /tmp/adb.log.
|
CWE-59
Link Following
|
CVE-2012-5564
|
2024-11-21 10:44 |
2013-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290550
|
- |
|
labelgate
|
mora_downloader
|
Untrusted search path vulnerability in mora Downloader before 1.0.0.1 allows remote attackers to trigger the launch of a .exe file via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2012-5188
|
2024-11-21 10:44 |
2013-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
