|
298761
|
- |
|
quantum
dell
|
scalar_i500_firmware
scalar_i500
powervault_ml6000_firmware
powervault_ml6000
powervault_ml6010
powervault_ml6020
powervault_ml6030
|
Cross-site scripting (XSS) vulnerability in checkQKMProg.htm on the Quantum Scalar i500 tape library with firmware before i7.0.3 (604G.GS00100), also distributed as the Dell ML6000 tape library with …
|
CWE-79
Cross-site Scripting
|
CVE-2012-1842
|
2024-11-21 10:37 |
2012-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298762
|
- |
|
quantum
dell
|
scalar_i500_firmware
scalar_i500
powervault_ml6000_firmware
powervault_ml6000
powervault_ml6010
powervault_ml6020
powervault_ml6030
|
Absolute path traversal vulnerability in logShow.htm on the Quantum Scalar i500 tape library with firmware before i7.0.3 (604G.GS00100), also distributed as the Dell ML6000 tape library with firmware…
|
CWE-22
Path Traversal
|
CVE-2012-1841
|
2024-11-21 10:37 |
2012-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298763
|
- |
|
ajaxplorer
|
ajaxplorer
|
AjaXplorer 3.2.x before 3.2.5 and 4.0.x before 4.0.4 does not properly perform cookie authentication, which allows remote attackers to obtain login access by leveraging knowledge of a password hash.
|
CWE-287
Improper Authentication
|
CVE-2012-1840
|
2024-11-21 10:37 |
2012-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298764
|
- |
|
ajaxplorer
|
ajaxplorer
|
Multiple directory traversal vulnerabilities in the Get Template feature in plugins/gui.ajax/class.AJXP_ClientDriver.php in AjaXplorer 3.2.x before 3.2.5 and 4.0.x before 4.0.4 allow remote attackers…
|
CWE-22
Path Traversal
|
CVE-2012-1839
|
2024-11-21 10:37 |
2012-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298765
|
- |
|
lg-nortel
|
elo_gs24m_switch
|
The web management interface on the LG-Nortel ELO GS24M switch allows remote attackers to bypass authentication, and consequently obtain cleartext credential and configuration information, via a dire…
|
CWE-287
Improper Authentication
|
CVE-2012-1838
|
2024-11-21 10:37 |
2012-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298766
|
- |
|
ibm
|
tivoli_endpoint_manager
|
The (1) webreports, (2) post/create-role, and (3) post/update-role programs in IBM Tivoli Endpoint Manager (TEM) before 8.2 do not include the HTTPOnly flag in a Set-Cookie header for a cookie, which…
|
CWE-200
Information Exposure
|
CVE-2012-1837
|
2024-11-21 10:37 |
2012-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298767
|
- |
|
inspircd
|
inspircd
|
Heap-based buffer overflow in dns.cpp in InspIRCd 2.0.5 might allow remote attackers to execute arbitrary code via a crafted DNS query that uses compression.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1836
|
2024-11-21 10:37 |
2012-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298768
|
- |
|
broadcom
|
arcserve_backup
|
CA ARCserve Backup r12.0 through SP2, r12.5 before SP2, r15 through SP1, and r16 before SP1 on Windows allows remote attackers to cause a denial of service (service shutdown) via a crafted network re…
|
CWE-20
Improper Input Validation
|
CVE-2012-1662
|
2024-11-21 10:37 |
2012-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298769
|
- |
|
clamav
sophos
|
clamav
sophos_anti-virus
|
The Microsoft CHM file parser in ClamAV 0.96.4 and Sophos Anti-Virus 4.61.0 allows remote attackers to bypass malware detection via a crafted reset interval in the LZXC header of a CHM file. NOTE: t…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1458
|
2024-11-21 10:37 |
2012-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298770
|
- |
|
rising-global
eset
|
rising_antivirus
nod32_antivirus
|
The CAB file parser in NOD32 Antivirus 5795 and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via a CAB file with a modified vMinor version field. NOTE: this may l…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1455
|
2024-11-21 10:37 |
2012-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
