|
290611
|
- |
|
sensiolabs
|
symfony
|
lib/form/sfForm.class.php in Symfony CMS before 1.4.20 allows remote attackers to read arbitrary files via a crafted upload request.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-5574
|
2024-11-21 10:44 |
2012-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290612
|
- |
|
openstack
|
folsom
|
OpenStack Keystone, as used in OpenStack Folsom 2012.2, does not properly implement token expiration, which allows remote authenticated users to bypass intended authorization restrictions by creating…
|
CWE-255
Credentials Management
|
CVE-2012-5563
|
2024-11-21 10:44 |
2012-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290613
|
- |
|
bogofilter_project
|
bogofilter
|
Heap-based buffer overflow in iconvert.c in the bogolexer component in Bogofilter before 1.2.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5468
|
2024-11-21 10:44 |
2012-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290614
|
- |
|
perl
|
perl
|
Heap-based buffer overflow in the Perl_repeatcpy function in util.c in Perl 5.12.x before 5.12.5, 5.14.x before 5.14.3, and 5.15.x before 15.15.5 allows context-dependent attackers to cause a denial …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5195
|
2024-11-21 10:44 |
2012-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290615
|
- |
|
xen
|
xen
|
The get_page_from_gfn hypercall function in Xen 4.2 allows local PV guest OS administrators to cause a denial of service (crash) via a crafted GFN that triggers a buffer over-read.
|
NVD-CWE-noinfo
|
CVE-2012-5525
|
2024-11-21 10:44 |
2012-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290616
|
- |
|
xen
|
xen
|
The (1) XENMEM_decrease_reservation, (2) XENMEM_populate_physmap, and (3) XENMEM_exchange hypercalls in Xen 4.2 and earlier allow local guest administrators to cause a denial of service (long loop an…
|
NVD-CWE-noinfo
|
CVE-2012-5515
|
2024-11-21 10:44 |
2012-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290617
|
- |
|
xen
|
xen
|
The guest_physmap_mark_populate_on_demand function in Xen 4.2 and earlier does not properly unlock the subject GFNs when checking if they are in use, which allows local guest HVM administrators to ca…
|
NVD-CWE-Other
|
CVE-2012-5514
|
2024-11-21 10:44 |
2012-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290618
|
- |
|
xen
|
xen
|
The XENMEM_exchange handler in Xen 4.2 and earlier does not properly check the memory address, which allows local PV guest OS administrators to cause a denial of service (crash) or possibly gain priv…
|
CWE-20
Improper Input Validation
|
CVE-2012-5513
|
2024-11-21 10:44 |
2012-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290619
|
- |
|
citrix
|
xenserver
|
Array index error in the HVMOP_set_mem_access handler in Xen 4.1 allows local HVM guest OS administrators to cause a denial of service (crash) or obtain sensitive information via unspecified vectors.
|
CWE-16
Configuration
|
CVE-2012-5512
|
2024-11-21 10:44 |
2012-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290620
|
- |
|
xen
|
xen
|
Stack-based buffer overflow in the dirty video RAM tracking functionality in Xen 3.4 through 4.1 allows local HVM guest OS administrators to cause a denial of service (crash) via a large bitmap image.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5511
|
2024-11-21 10:44 |
2012-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
