|
302001
|
- |
|
redhat
fedoraproject
|
directory_server
389_directory_server
|
389 Directory Server before 1.2.11.6 (aka Red Hat Directory Server before 8.2.10-3), after the password for a LDAP user has been changed and before the server has been reset, allows remote attackers …
|
CWE-310
Cryptographic Issues
|
CVE-2012-2678
|
2024-11-21 10:39 |
2012-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302002
|
- |
|
wireshark
|
wireshark
|
Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 on the SPARC and Itanium platforms does not properly perform data alignment for a certain structure member, which allows remote attackers to cause…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2394
|
2024-11-21 10:39 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302003
|
- |
|
wireshark
|
wireshark
|
epan/dissectors/packet-diameter.c in the DIAMETER dissector in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 does not properly construct certain array data structures, which allows remote atta…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2393
|
2024-11-21 10:39 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302004
|
- |
|
wireshark
|
wireshark
|
Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allows remote attackers to cause a denial of service (infinite loop) via vectors related to the (1) ANSI MAP, (2) ASF, (3) IEEE 802.11, (4) IEEE 8…
|
CWE-399
Resource Management Errors
|
CVE-2012-2392
|
2024-11-21 10:39 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302005
|
- |
|
mediawiki
|
mediawiki
|
Cross-site scripting (XSS) vulnerability in the outputPage function in includes/SkinTemplate.php in MediaWiki before 1.17.5, 1.18.x before 1.18.4, and 1.19.x before 1.19.1 allows remote attackers to …
|
CWE-79
Cross-site Scripting
|
CVE-2012-2698
|
2024-11-21 10:39 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302006
|
- |
|
libguestfs
|
libguestfs
|
virt-edit in libguestfs before 1.18.0 does not preserve the permissions from the original file and saves the new file with world-readable permissions when editing, which might allow local guest users…
|
CWE-255
Credentials Management
|
CVE-2012-2690
|
2024-11-21 10:39 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302007
|
- |
|
redhat
|
sos
|
The sosreport utility in the Red Hat sos package before 2.2-29 does not remove the root user password information from the Kickstart configuration file (/root/anaconda-ks.cfg) when creating an archiv…
|
CWE-255
Credentials Management
|
CVE-2012-2664
|
2024-11-21 10:39 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302008
|
- |
|
mikel_olasagasti
|
revelation
|
Revelation 0.4.13-2 and earlier does not iterate through SHA hashing algorithms for AES encryption, which makes it easier for context-dependent attackers to guess passwords via a brute force attack.
|
CWE-255
Credentials Management
|
CVE-2012-2743
|
2024-11-21 10:39 |
2012-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302009
|
- |
|
mikel_olasagasti
|
revelation
|
Revelation 0.4.13-2 and earlier uses only the first 32 characters of a password followed by a sequence of zeros, which reduces the entropy and makes it easier for context-dependent attackers to crack…
|
CWE-255
Credentials Management
|
CVE-2012-2742
|
2024-11-21 10:39 |
2012-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302010
|
- |
|
mathew_winstone
|
mobile_tools
|
Multiple cross-site scripting (XSS) vulnerabilities in the Mobile Tools module 6.x-2.x before 6.x-2.3 for Drupal allow remote attackers to inject arbitrary web script or HTML via the (1) Mobile URL f…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2717
|
2024-11-21 10:39 |
2012-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
