|
295821
|
- |
|
freetype
mozilla
|
freetype
firefox_mobile
|
FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service (invalid heap read operation and memory corruption) or …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1126
|
2024-11-21 10:36 |
2012-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295822
|
- |
|
maian
menalto
|
gallery
|
Multiple cross-site scripting (XSS) vulnerabilities in the administration subsystem in Gallery 2 before 2.3.2 and 3 before 3.0.3 allow remote attackers to inject arbitrary web script or HTML via unsp…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1113
|
2024-11-21 10:36 |
2012-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295823
|
- |
|
nvidia
|
unix_driver
|
The NVIDIA UNIX driver before 295.40 allows local users to access arbitrary memory locations by leveraging GPU device-node read/write privileges.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0946
|
2024-11-21 10:36 |
2012-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295824
|
- |
|
studiohitori
|
twitrocker2_android
|
The TwitRocker2 application before 1.0.23 for Android does not properly implement the WebView class, which allows remote attackers to obtain sensitive information via a crafted application.
|
CWE-200
Information Exposure
|
CVE-2012-1243
|
2024-11-21 10:36 |
2012-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295825
|
- |
|
f5
fedoraproject
debian
|
nginx
fedora
debian_linux
|
Use-after-free vulnerability in nginx before 1.0.14 and 1.1.x before 1.1.17 allows remote HTTP servers to obtain sensitive information from process memory via a crafted backend response, in conjuncti…
|
CWE-416
Use After Free
|
CVE-2012-1180
|
2024-11-21 10:36 |
2012-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295826
|
- |
|
realnetworks
|
helix_server
helix_mobile_server
|
Buffer overflow in rn5auth.dll in RealNetworks Helix Server and Helix Mobile Server 14.x before 14.3.x allows remote attackers to execute arbitrary code via crafted authentication credentials.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0942
|
2024-11-21 10:36 |
2012-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295827
|
- |
|
artonx.org
|
activescriptruby
|
GRScript18.dll before 1.2.2.0 in ActiveScriptRuby (ASR) before 1.8.7 does not properly restrict interaction with an Internet Explorer ActiveX environment, which allows remote attackers to execute arb…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1241
|
2024-11-21 10:36 |
2012-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295828
|
- |
|
recruit
|
dokodemo_rikunabi_2013
|
Cross-site scripting (XSS) vulnerability in the RECRUIT Dokodemo Rikunabi 2013 extension before 1.0.1 for Google Chrome allows remote attackers to inject arbitrary web script or HTML via unspecified …
|
CWE-79
Cross-site Scripting
|
CVE-2012-1240
|
2024-11-21 10:36 |
2012-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295829
|
- |
|
samba
|
samba
|
The RPC code generator in Samba 3.x before 3.4.16, 3.5.x before 3.5.14, and 3.6.x before 3.6.4 does not implement validation of an array length in a manner consistent with validation of array memory …
|
CWE-189
Numeric Errors
|
CVE-2012-1182
|
2024-11-21 10:36 |
2012-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295830
|
- |
|
toshibatec
|
e-studio-tf-182_with_network_printer_kit_firmware
e-studio-352_firmware
e-studio-4520c
e-studio-355_firmware
e-studio-451c_firmware
e-studio-3520c
e-studio-2330c
e-studio-720
…
|
The TopAccess web-based management interface on TOSHIBA TEC e-Studio multi-function peripheral (MFP) devices with firmware 30x through 302, 35x through 354, and 4xx through 421 allows remote attacker…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1239
|
2024-11-21 10:36 |
2012-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
