|
295751
|
- |
|
linux
|
systemd
|
The rm_rf_children function in util.c in the systemd-logind login manager in systemd before 44, when logging out, allows local users to delete arbitrary files via a symlink attack on unspecified file…
|
CWE-362
Race Condition
|
CVE-2012-1174
|
2024-11-21 10:36 |
2012-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295752
|
- |
|
nih
|
libzip
|
Integer overflow in the _zip_readcdir function in zip_open.c in libzip 0.10 allows remote attackers to execute arbitrary code via the size and offset values for the central directory in a zip archive…
|
CWE-189
Numeric Errors
|
CVE-2012-1163
|
2024-11-21 10:36 |
2012-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295753
|
- |
|
nih
|
libzip
|
Heap-based buffer overflow in the _zip_readcdir function in zip_open.c in libzip 0.10 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1162
|
2024-11-21 10:36 |
2012-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295754
|
- |
|
glpi-project
|
glpi
|
PHP remote file inclusion vulnerability in front/popup.php in GLPI 0.78 through 0.80.61 allows remote authenticated users to execute arbitrary PHP code via a URL in the sub_type parameter.
|
CWE-94
Code Injection
|
CVE-2012-1037
|
2024-11-21 10:36 |
2012-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295755
|
- |
|
libexpat_project
apple
|
libexpat
mac_os_x
|
Memory leak in the poolGrow function in expat/lib/xmlparse.c in expat before 2.1.0 allows context-dependent attackers to cause a denial of service (memory consumption) via a large number of crafted X…
|
CWE-399
Resource Management Errors
|
CVE-2012-1148
|
2024-11-21 10:36 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295756
|
- |
|
apple
libexpat_project
|
mac_os_x
libexpat
|
readfilemap.c in expat before 2.1.0 allows context-dependent attackers to cause a denial of service (file descriptor consumption) via a large number of crafted XML files.
|
CWE-20
Improper Input Validation
|
CVE-2012-1147
|
2024-11-21 10:36 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295757
|
- |
|
redhat
|
automatic_bug_reporting_tool
|
The C handler plug-in in Automatic Bug Reporting Tool (ABRT), possibly 2.0.8 and earlier, does not properly set the group (GID) permissions on core dump files for setuid programs when the sysctl fs.s…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1106
|
2024-11-21 10:36 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295758
|
- |
|
openldap
|
openldap
|
slapd in OpenLDAP before 2.4.30 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via an LDAP search query with attrsOnly set to true, which causes empty attrib…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1164
|
2024-11-21 10:36 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295759
|
- |
|
mantisbt
|
mantisbt
|
The mci_check_login function in api/soap/mc_api.php in the SOAP API in MantisBT before 1.2.9 allows remote attackers to bypass authentication via a null password.
|
CWE-287
Improper Authentication
|
CVE-2012-1123
|
2024-11-21 10:36 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295760
|
- |
|
mantisbt
|
mantisbt
|
bug_actiongroup.php in MantisBT before 1.2.9 does not properly check the report_bug_threshold permission of the receiving project when moving a bug report, which allows remote authenticated users wit…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1122
|
2024-11-21 10:36 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
