|
295531
|
- |
|
sgi
|
performance_co-pilot
|
The pduread function in pdu.c in libpcp in Performance Co-Pilot (PCP) before 3.6.5 does not properly time out connections, which allows remote attackers to cause a denial of service (pmcd hang) by se…
|
NVD-CWE-Other
|
CVE-2012-3421
|
2024-11-21 10:40 |
2012-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295532
|
- |
|
sgi
|
performance_co-pilot
|
Multiple memory leaks in Performance Co-Pilot (PCP) before 3.6.5 allow remote attackers to cause a denial of service (memory consumption or daemon crash) via a large number of PDUs with (1) a crafted…
|
CWE-399
Resource Management Errors
|
CVE-2012-3420
|
2024-11-21 10:40 |
2012-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295533
|
- |
|
sgi
|
performance_co-pilot
|
Performance Co-Pilot (PCP) before 3.6.5 exports some of the /proc file system, which allows attackers to obtain sensitive information such as proc/pid/maps and command line arguments.
|
CWE-200
Information Exposure
|
CVE-2012-3419
|
2024-11-21 10:40 |
2012-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295534
|
- |
|
gnu
|
bash
|
Stack-based buffer overflow in lib/sh/eaccess.c in GNU Bash before 4.2 patch 33 might allow local users to bypass intended restricted shell access via a long filename in /dev/fd, which is not properl…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3410
|
2024-11-21 10:40 |
2012-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295535
|
- |
|
sgi
|
performance_co-pilot
|
libpcp in Performance Co-Pilot (PCP) before 3.6.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a PDU with the numcreds field value greater than the…
|
CWE-189
Numeric Errors
|
CVE-2012-3418
|
2024-11-21 10:40 |
2012-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295536
|
- |
|
google
|
tunnelblick
|
Race condition in Tunnelblick 3.3beta20 and earlier allows local users to kill unintended processes by waiting for a specific PID value to be assigned to a target process.
|
CWE-362
Race Condition
|
CVE-2012-3487
|
2024-11-21 10:40 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295537
|
- |
|
google
|
tunnelblick
|
Tunnelblick 3.3beta20 and earlier allows local users to gain privileges via an OpenVPN configuration file that specifies execution of a script upon occurrence of an OpenVPN event.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3486
|
2024-11-21 10:40 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295538
|
- |
|
google
|
tunnelblick
|
Tunnelblick 3.3beta20 and earlier relies on argv[0] to determine the name of an appropriate (1) kernel module pathname or (2) executable file pathname, which allows local users to gain privileges via…
|
CWE-20
Improper Input Validation
|
CVE-2012-3485
|
2024-11-21 10:40 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295539
|
- |
|
google
|
tunnelblick
|
Tunnelblick 3.3beta20 and earlier relies on a test for specific ownership and permissions to determine whether a program can be safely executed, which allows local users to bypass intended access res…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3484
|
2024-11-21 10:40 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295540
|
- |
|
google
|
tunnelblick
|
Race condition in the runScript function in Tunnelblick 3.3beta20 and earlier allows local users to gain privileges by replacing a script file.
|
CWE-362
Race Condition
|
CVE-2012-3483
|
2024-11-21 10:40 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
