|
294161
|
- |
|
microsoft
|
internet_explorer
|
Use-after-free vulnerability in Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "CMarkup Us…
|
CWE-399
Resource Management Errors
|
CVE-2012-4782
|
2024-11-21 10:43 |
2012-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294162
|
- |
|
layton_technology
|
helpbox
|
Multiple SQL injection vulnerabilities in Layton Helpbox 4.4.0 allow remote attackers to execute arbitrary SQL commands via the (1) reqclass parameter to editrequestenduser.asp; the (2) sys_request_i…
|
CWE-89
SQL Injection
|
CVE-2012-4971
|
2024-11-21 10:43 |
2012-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294163
|
- |
|
microsoft
|
internet_explorer
|
Use-after-free vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Inject…
|
CWE-94
Code Injection
|
CVE-2012-4781
|
2024-11-21 10:43 |
2012-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294164
|
- |
|
microsoft
|
windows_server_2008
windows_xp
windows_7
windows_server_2003
windows_vista
|
Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allow remote attackers to execute arbitrary code via …
|
CWE-94
Code Injection
|
CVE-2012-4774
|
2024-11-21 10:43 |
2012-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294165
|
- |
|
ibm
|
informix_dynamic_server
|
Buffer overflow in IBM Informix 11.50 through 11.50.xC9W2 and 11.70 before 11.70.xC7 allows remote authenticated users to execute arbitrary code via a crafted SQL statement.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4857
|
2024-11-21 10:43 |
2012-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294166
|
- |
|
ibm
|
flex_system_chassis_management_module
integrated_management_module_ii
|
IBM Flex System Chassis Management Module (CMM) and Integrated Management Module 2 (IMM2) allow local users to obtain sensitive information about (1) local accounts, (2) SSH private keys, (3) SSL/TLS…
|
NVD-CWE-noinfo
|
CVE-2012-4838
|
2024-11-21 10:43 |
2012-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294167
|
- |
|
rockwellautomation
|
plc-5_controller
ab_micrologix_controller
slc_500_controller
|
Rockwell Automation Allen-Bradley MicroLogix controller 1100, 1200, 1400, and 1500; SLC 500 controller platform; and PLC-5 controller platform, when Static status is not enabled, allow remote attacke…
|
CWE-16
Configuration
|
CVE-2012-4690
|
2024-11-21 10:43 |
2012-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294168
|
- |
|
postoaktraffic
|
awam_bluetooth_reader
|
Post Oak AWAM Bluetooth Reader Traffic System does not use a sufficient source of entropy for private keys, which makes it easier for man-in-the-middle attackers to spoof a device by predicting a key…
|
CWE-310
Cryptographic Issues
|
CVE-2012-4687
|
2024-11-21 10:43 |
2012-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294169
|
- |
|
vmware
|
springsource_spring_security
|
DaoAuthenticationProvider in VMware SpringSource Spring Security before 2.0.8, 3.0.x before 3.0.8, and 3.1.x before 3.1.3 does not check the password if the user is not found, which makes the respons…
|
CWE-200
Information Exposure
|
CVE-2012-5055
|
2024-11-21 10:43 |
2012-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294170
|
- |
|
forescout
|
counteract
|
The Forescout CounterACT NAC device 6.3.4.1 does not block ARP and ICMP traffic from unrecognized clients, which allows remote attackers to conduct ARP poisoning attacks via crafted packets.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4985
|
2024-11-21 10:43 |
2012-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
