|
301311
|
- |
|
nvidia
|
unix_graphic_driver
|
NVIDIA UNIX graphics driver before 295.71 and before 304.32 allows local users to write to arbitrary physical memory locations and gain privileges by modifying the VGA window using /dev/nvidia0.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4225
|
2024-11-21 10:42 |
2012-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301312
|
- |
|
gegl
|
gegl
|
Multiple integer overflows in operations/external/ppm-load.c in GEGL (Generic Graphics Library) 0.2.0 allow remote attackers to cause a denial of service (application crash) or possibly execute arbit…
|
CWE-189
Numeric Errors
|
CVE-2012-4433
|
2024-11-21 10:42 |
2012-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301313
|
- |
|
gluster
|
glusterfs
|
GlusterFS 3.3.0, as used in Red Hat Storage server 2.0, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4417
|
2024-11-21 10:42 |
2012-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301314
|
- |
|
mozilla
|
bugzilla
|
template/en/default/bug/field-events.js.tmpl in Bugzilla 3.x before 3.6.12, 3.7.x and 4.0.x before 4.0.9, 4.1.x and 4.2.x before 4.2.4, and 4.3.x and 4.4.x before 4.4rc1 generates JavaScript function…
|
CWE-200
Information Exposure
|
CVE-2012-4199
|
2024-11-21 10:42 |
2012-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301315
|
- |
|
mozilla
|
bugzilla
|
The User.get method in Bugzilla/WebService/User.pm in Bugzilla 3.7.x and 4.0.x before 4.0.9, 4.1.x and 4.2.x before 4.2.4, and 4.3.x and 4.4.x before 4.4rc1 has a different outcome for a groups reque…
|
CWE-200
Information Exposure
|
CVE-2012-4198
|
2024-11-21 10:42 |
2012-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301316
|
- |
|
mozilla
|
bugzilla
|
Bugzilla/Attachment.pm in attachment.cgi in Bugzilla 2.x and 3.x before 3.6.12, 3.7.x and 4.0.x before 4.0.9, 4.1.x and 4.2.x before 4.2.4, and 4.3.x and 4.4.x before 4.4rc1 allows remote attackers t…
|
CWE-200
Information Exposure
|
CVE-2012-4197
|
2024-11-21 10:42 |
2012-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301317
|
- |
|
mozilla
|
bugzilla
|
Cross-site scripting (XSS) vulnerability in Bugzilla 4.1.x and 4.2.x before 4.2.4, and 4.3.x and 4.4.x before 4.4rc1, allows remote attackers to inject arbitrary web script or HTML via a field value …
|
CWE-79
Cross-site Scripting
|
CVE-2012-4189
|
2024-11-21 10:42 |
2012-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301318
|
- |
|
simon_brown
|
pebble
|
CRLF injection vulnerability in Pebble before 2.6.4 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2012-4023
|
2024-11-21 10:42 |
2012-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301319
|
- |
|
simon_brown
|
pebble
|
Pebble before 2.6.4 allows remote attackers to trigger loss of blog-entry viewability via a crafted comment.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4022
|
2024-11-21 10:42 |
2012-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301320
|
- |
|
mosp
|
kintai_kanri
|
MosP kintai kanri before 4.1.0 does not properly perform authentication, which allows remote authenticated users to impersonate arbitrary user accounts, and consequently obtain sensitive information …
|
CWE-287
Improper Authentication
|
CVE-2012-4021
|
2024-11-21 10:42 |
2012-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
