|
291181
|
- |
|
vmware
|
vcenter_operations
|
Cross-site scripting (XSS) vulnerability in the server in VMware vCenter Operations (aka vCOps) before 5.0.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-5050
|
2024-11-21 10:43 |
2012-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291182
|
- |
|
vmware
|
movie_decoder
|
Untrusted search path vulnerability in the installer in VMware Movie Decoder before 9.0 allows local users to gain privileges via a Trojan horse executable file in the installer directory.
|
NVD-CWE-Other
|
CVE-2012-4897
|
2024-11-21 10:43 |
2012-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291183
|
- |
|
sumatrapdfreader
|
sumatrapdf
|
Heap-based buffer overflow in SumatraPDF before 2.1 allows remote attackers to execute arbitrary code via a crafted PDF document, a different vulnerability than CVE-2012-4895.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4896
|
2024-11-21 10:43 |
2012-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291184
|
- |
|
sumatrapdfreader
|
sumatrapdf
|
Heap-based buffer overflow in SumatraPDF before 2.1 allows remote attackers to execute arbitrary code via a crafted PDF document, a different vulnerability than CVE-2012-4896.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4895
|
2024-11-21 10:43 |
2012-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291185
|
- |
|
google
|
sketchup
|
Google SketchUp before 8.0.14346 (aka 8 Maintenance 3) allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted SKP file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4894
|
2024-11-21 10:43 |
2012-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291186
|
- |
|
ibm
|
aix
vios
|
fuser in IBM AIX 6.1 and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly restrict the -k option, which allows local users to kill arbitrary processes via a crafted command line.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4833
|
2024-11-21 10:43 |
2012-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291187
|
- |
|
ibm
|
websphere_commerce
|
Unspecified vulnerability in IBM WebSphere Commerce 6.0 through 6.0.0.11 and 7.0 through 7.0.0.6 allows remote attackers to obtain users' personal data via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2012-4830
|
2024-11-21 10:43 |
2012-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291188
|
- |
|
optimalog
|
optima_plc
|
APIFTP Server in Optimalog Optima PLC 1.5.2 and earlier allows remote attackers to cause a denial of service (infinite loop) via a malformed packet.
|
CWE-20
Improper Input Validation
|
CVE-2012-5049
|
2024-11-21 10:43 |
2012-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291189
|
- |
|
optimalog
|
optima_plc
|
APIFTP Server in Optimalog Optima PLC 1.5.2 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted packet.
|
CWE-399
Resource Management Errors
|
CVE-2012-5048
|
2024-11-21 10:43 |
2012-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291190
|
- |
|
novell
|
groupwise
|
Cross-site scripting (XSS) vulnerability in the WebAccess component in Novell GroupWise 8.0 before Support Pack 3 and 2012 before Support Pack 1 allows remote attackers to inject arbitrary web script…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4912
|
2024-11-21 10:43 |
2012-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
