|
292391
|
- |
|
ibm
|
infosphere_guardium
|
Cross-site request forgery (CSRF) vulnerability in the account-creation panel in IBM InfoSphere Guardium 8.2 and earlier, when the CSRF filtering (aka csrf_status) feature is disabled, allows remote …
|
CWE-352
Origin Validation Error
|
CVE-2012-3309
|
2024-11-21 10:40 |
2012-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292392
|
- |
|
ibm
|
websphere_mq
|
IBM WebSphere MQ 7.1, when an SVRCONN channel is used, allows remote attackers to bypass the security-configuration setup step and obtain queue-manager access via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3295
|
2024-11-21 10:40 |
2012-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292393
|
- |
|
apache
|
qpid
|
Apache QPID 0.14, 0.16, and earlier uses a NullAuthenticator mechanism to authenticate catch-up shadow connections to AMQP brokers, which allows remote attackers to bypass authentication.
|
CWE-287
Improper Authentication
|
CVE-2012-3467
|
2024-11-21 10:40 |
2012-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292394
|
- |
|
sgi
|
performance_co-pilot
|
The pduread function in pdu.c in libpcp in Performance Co-Pilot (PCP) before 3.6.5 does not properly time out connections, which allows remote attackers to cause a denial of service (pmcd hang) by se…
|
NVD-CWE-Other
|
CVE-2012-3421
|
2024-11-21 10:40 |
2012-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292395
|
- |
|
sgi
|
performance_co-pilot
|
Multiple memory leaks in Performance Co-Pilot (PCP) before 3.6.5 allow remote attackers to cause a denial of service (memory consumption or daemon crash) via a large number of PDUs with (1) a crafted…
|
CWE-399
Resource Management Errors
|
CVE-2012-3420
|
2024-11-21 10:40 |
2012-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292396
|
- |
|
sgi
|
performance_co-pilot
|
Performance Co-Pilot (PCP) before 3.6.5 exports some of the /proc file system, which allows attackers to obtain sensitive information such as proc/pid/maps and command line arguments.
|
CWE-200
Information Exposure
|
CVE-2012-3419
|
2024-11-21 10:40 |
2012-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292397
|
- |
|
gnu
|
bash
|
Stack-based buffer overflow in lib/sh/eaccess.c in GNU Bash before 4.2 patch 33 might allow local users to bypass intended restricted shell access via a long filename in /dev/fd, which is not properl…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3410
|
2024-11-21 10:40 |
2012-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292398
|
- |
|
sgi
|
performance_co-pilot
|
libpcp in Performance Co-Pilot (PCP) before 3.6.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a PDU with the numcreds field value greater than the…
|
CWE-189
Numeric Errors
|
CVE-2012-3418
|
2024-11-21 10:40 |
2012-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292399
|
- |
|
google
|
tunnelblick
|
Race condition in Tunnelblick 3.3beta20 and earlier allows local users to kill unintended processes by waiting for a specific PID value to be assigned to a target process.
|
CWE-362
Race Condition
|
CVE-2012-3487
|
2024-11-21 10:40 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292400
|
- |
|
google
|
tunnelblick
|
Tunnelblick 3.3beta20 and earlier allows local users to gain privileges via an OpenVPN configuration file that specifies execution of a script upon occurrence of an OpenVPN event.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3486
|
2024-11-21 10:40 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
