|
298161
|
- |
|
op5
|
monitor
|
monitor/index.php in op5 Monitor and op5 Appliance before 5.5.1 allows remote authenticated users to obtain sensitive information such as database and user credentials via error messages that are tri…
|
CWE-200
Information Exposure
|
CVE-2012-0263
|
2024-11-21 10:34 |
2014-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298162
|
- |
|
op5
|
monitor
system-op5config
|
op5config/welcome in system-op5config before 2.0.3 in op5 Monitor and op5 Appliance before 5.5.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the password paramet…
|
CWE-94
Code Injection
|
CVE-2012-0262
|
2024-11-21 10:34 |
2014-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298163
|
- |
|
op5
|
monitor
system-portal
|
license.php in system-portal before 1.6.2 in op5 Monitor and op5 Appliance before 5.5.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the timestamp parameter for a…
|
CWE-94
Code Injection
|
CVE-2012-0261
|
2024-11-21 10:34 |
2014-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298164
|
- |
|
duckcorp
fedoraproject
|
bip
fedora
|
connection.c in Bip before 0.8.9 does not properly close sockets, which allows remote attackers to cause a denial of service (file descriptor consumption and crash) via multiple failed SSL handshakes…
|
CWE-310
Cryptographic Issues
|
CVE-2011-5268
|
2024-11-21 10:34 |
2013-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298165
|
- |
|
novell
|
suse_cloud
|
The server in Crowbar, as used in SUSE Cloud 1.0, uses weak permissions for the production.log file, which has unspecified impact and attack vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0434
|
2024-11-21 10:34 |
2013-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298166
|
- |
|
opensuse
|
opensuse
|
yast2-add-on-creator in SUSE inst-source-utils 2008.11.26 before 2008.11.26-0.9.1 and 2012.9.13 before 2012.9.13-0.8.1 allows local users to gain privileges via a crafted (1) file name or (2) directo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0427
|
2024-11-21 10:34 |
2013-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298167
|
- |
|
novell
|
suse_linux_enterprise_for_sap_applications
|
Race condition in sap_suse_cluster_connector before 1.0.0-0.8.1 in SUSE Linux Enterprise for SAP Applications 11 SP2 allows local users to have an unspecified impact via vectors related to a tmp/ dir…
|
CWE-362
Race Condition
|
CVE-2012-0426
|
2024-11-21 10:34 |
2013-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298168
|
- |
|
opensuse
|
opensuse
|
LanItems.ycp in save_y2logs in yast2-network before 2.24.4 in SUSE YaST writes cleartext Wi-Fi credentials to the y2log log file, which allows context-dependent attackers to obtain sensitive informat…
|
CWE-200
Information Exposure
|
CVE-2012-0425
|
2024-11-21 10:34 |
2013-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298169
|
- |
|
opensuse
|
zypper
|
zypp-refresh-wrapper in SUSE Zypper before 1.3.20 and 1.6.x before 1.6.166 allows local users to create files in arbitrary directories, or possibly have unspecified other impact, via a pathname in th…
|
NVD-CWE-noinfo
|
CVE-2012-0420
|
2024-11-21 10:34 |
2013-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298170
|
- |
|
novell
|
suse_manager
|
Cross-site scripting (XSS) vulnerability in the Spacewalk service in SUSE Manager 1.2 for SUSE Linux Enterprise (SLE) 11 SP1 allows remote attackers to inject arbitrary web script or HTML via an imag…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0414
|
2024-11-21 10:34 |
2013-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
