|
294761
|
- |
|
simon_rycroft
|
hashcash
|
Cross-site scripting (XSS) vulnerability in the Hashcash module 6.x-2.x before 6.x-2.6 and 7.x-2.x before 7.x-2.2 for Drupal, when "Log failed hashcash" is enabled, allows remote attackers to inject …
|
CWE-79
Cross-site Scripting
|
CVE-2012-4469
|
2024-11-21 10:42 |
2012-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294762
|
- |
|
privatemsg_project
|
privatemsg
|
Cross-site scripting (XSS) vulnerability in the Privatemsg module 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers to inject arbitrary web script or HTML via a user name in a private message.
|
CWE-79
Cross-site Scripting
|
CVE-2012-4468
|
2024-11-21 10:42 |
2012-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294763
|
- |
|
google
|
android
|
drivers/gpu/msm/kgsl.c in the Qualcomm Innovation Center (QuIC) Graphics KGSL kernel-mode driver for Android 2.3 through 4.2 allows attackers to cause a denial of service (NULL pointer dereference) v…
|
CWE-20
Improper Input Validation
|
CVE-2012-4222
|
2024-11-21 10:42 |
2012-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294764
|
- |
|
google
|
android
|
Integer overflow in diagchar_core.c in the Qualcomm Innovation Center (QuIC) Diagnostics (aka DIAG) kernel-mode driver for Android 2.3 through 4.2 allows attackers to execute arbitrary code or cause …
|
CWE-189
Numeric Errors
|
CVE-2012-4221
|
2024-11-21 10:42 |
2012-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294765
|
- |
|
google
|
android
|
diagchar_core.c in the Qualcomm Innovation Center (QuIC) Diagnostics (aka DIAG) kernel-mode driver for Android 2.3 through 4.2 allows attackers to execute arbitrary code or cause a denial of service …
|
NVD-CWE-noinfo
|
CVE-2012-4220
|
2024-11-21 10:42 |
2012-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294766
|
- |
|
xen
|
xen
|
The graphical console in Xen 4.0, 4.1 and 4.2 allows local OS guest administrators to obtain sensitive host resource information via the qemu monitor. NOTE: this might be a duplicate of CVE-2007-099…
|
CWE-200
Information Exposure
|
CVE-2012-4411
|
2024-11-21 10:42 |
2012-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294767
|
- |
|
mcrypt
|
mcrypt
|
Multiple format string vulnerabilities in mcrypt 2.6.8 and earlier might allow user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via vectors invol…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2012-4426
|
2024-11-21 10:42 |
2012-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294768
|
- |
|
mcrypt
|
mcrypt
|
Stack-based buffer overflow in the check_file_head function in extra.c in mcrypt 2.6.8 and earlier allows user-assisted remote attackers to execute arbitrary code via an encrypted file with a crafted…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4409
|
2024-11-21 10:42 |
2012-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294769
|
- |
|
mozilla
canonical
suse
opensuse
|
firefox
seamonkey
thunderbird
ubuntu_linux
linux_enterprise_desktop
linux_enterprise_software_development_kit
opensuse
linux_enterprise_server
|
Use-after-free vulnerability in the BuildTextRunsScanner::BreakSink::SetBreaks function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to e…
|
CWE-416
Use After Free
|
CVE-2012-4218
|
2024-11-21 10:42 |
2012-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294770
|
- |
|
mozilla
suse
opensuse
canonical
|
firefox
seamonkey
thunderbird
thunderbird_esr
linux_enterprise_server
linux_enterprise_desktop
opensuse
linux_enterprise_software_development_kit
ubuntu_linux
|
Use-after-free vulnerability in the nsViewManager::ProcessPendingUpdates function in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute…
|
CWE-416
Use After Free
|
CVE-2012-4217
|
2024-11-21 10:42 |
2012-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
