|
303501
|
- |
|
trustedcomputinggroup
|
trousers
|
tcsd in TrouSerS before 0.3.10 allows remote attackers to cause a denial of service (daemon crash) via a crafted type_offset value in a TCP packet to port 30003.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0698
|
2024-11-21 10:35 |
2012-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303502
|
- |
|
redhat
|
resteasy
|
RESTEasy before 2.3.1 allows remote attackers to read arbitrary files via an external entity reference in a DOM document, aka an XML external entity (XXE) injection attack.
|
CWE-200
Information Exposure
|
CVE-2012-0818
|
2024-11-21 10:35 |
2012-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303503
|
- |
|
k5n
|
webcalendar
|
Cross-site scripting (XSS) vulnerability in Craig Knudsen WebCalendar 1.2.4 allows remote attackers to inject arbitrary web script or HTML via the Location variable.
|
CWE-79
Cross-site Scripting
|
CVE-2012-0846
|
2024-11-21 10:35 |
2012-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303504
|
- |
|
python
|
python
|
SimpleXMLRPCServer.py in SimpleXMLRPCServer in Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 allows remote attackers to cause a denial of service (infinite loop an…
|
CWE-399
Resource Management Errors
|
CVE-2012-0845
|
2024-11-21 10:35 |
2012-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303505
|
- |
|
broadcom
|
license_software
|
CA License (aka CA Licensing) before 1.90.03 allows local users to modify or create arbitrary files, and consequently gain privileges, via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0692
|
2024-11-21 10:35 |
2012-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303506
|
- |
|
broadcom
|
license_software
|
CA License (aka CA Licensing) before 1.90.03 does not properly restrict system commands, which allows local users to gain privileges via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0691
|
2024-11-21 10:35 |
2012-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303507
|
- |
|
ibm
|
rational_team_concert
|
Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified services in IBM Rational Team Concert (RTC) 4.x before 4.0.0.1 allow remote attackers to hijack the authentication of arbitra…
|
CWE-352
Origin Validation Error
|
CVE-2012-0748
|
2024-11-21 10:35 |
2012-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303508
|
- |
|
ulli_horlacher
|
fex
|
Cross-site scripting (XSS) vulnerability in fup in Frams' Fast File EXchange (F*EX, aka fex) before 20120215 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2012-0869
|
2024-11-21 10:35 |
2012-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303509
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Buffer overflow in the DirectoryService Proxy in DirectoryService in Apple Mac OS X through 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) v…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0650
|
2024-11-21 10:35 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303510
|
- |
|
ibm
|
tivoli_asset_management_for_it
maximo_asset_management
smartcloud_control_desk
change_and_configuration_management_database
maximo_service_desk
tivoli_service_request_manager
|
SQL injection vulnerability in IBM Maximo Asset Management 6.2 through 7.5, as used in SmartCloud Control Desk, Tivoli Asset Management for IT, Tivoli Service Request Manager, Maximo Service Desk, an…
|
CWE-89
SQL Injection
|
CVE-2012-0747
|
2024-11-21 10:35 |
2012-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
