|
304041
|
- |
|
symantec
|
messaging_gateway
|
Cross-site request forgery (CSRF) vulnerability in Symantec Messaging Gateway (SMG) before 10.0 allows remote attackers to hijack the authentication of administrators.
|
CWE-352
Origin Validation Error
|
CVE-2012-0308
|
2024-11-21 10:34 |
2012-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304042
|
- |
|
symantec
|
messaging_gateway
|
Multiple cross-site scripting (XSS) vulnerabilities in Symantec Messaging Gateway (SMG) before 10.0 allow remote attackers to inject arbitrary web script or HTML via (1) web content or (2) e-mail con…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0307
|
2024-11-21 10:34 |
2012-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304043
|
- |
|
openttd
|
openttd
|
OpenTTD 0.3.5 through 1.1.4 allows remote attackers to cause a denial of service (game pause) by connecting to the server and not finishing the (1) authorization phase or (2) map download, aka a "slo…
|
CWE-399
Resource Management Errors
|
CVE-2012-0048
|
2024-11-21 10:34 |
2012-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304044
|
- |
|
novell
|
suse_audit_log_keeper
|
The SUSE Audit Log Keeper daemon before 0.2.1-0.4.6.1 for SUSE Manager and Spacewalk uses world-readable permissions for /etc/auditlog-keeper.conf, which allows local users to obtain passwords by rea…
|
CWE-200
Information Exposure
|
CVE-2012-0421
|
2024-11-21 10:34 |
2012-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304045
|
- |
|
apache
|
poi
|
The UnhandledDataStructure function in hwpf/model/UnhandledDataStructure.java in Apache POI 3.8 and earlier allows remote attackers to cause a denial of service (OutOfMemoryError exception and possib…
|
CWE-399
Resource Management Errors
|
CVE-2012-0213
|
2024-11-21 10:34 |
2012-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304046
|
- |
|
symantec
|
backupexec_system_recovery
system_recovery
|
Untrusted search path vulnerability in Symantec System Recovery 2011 before SP2 and Backup Exec System Recovery 2010 before SP5 allows local users to gain privileges via a Trojan horse DLL in the cur…
|
NVD-CWE-Other
|
CVE-2012-0305
|
2024-11-21 10:34 |
2012-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304047
|
- |
|
cisco
|
linksys_playerpt_activex_control
|
Stack-based buffer overflow in the SetSource method in the Cisco Linksys PlayerPT ActiveX control 1.0.0.15 in PlayerPT.ocx on the Cisco WVC200 Wireless-G PTZ Internet video camera allows remote attac…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0284
|
2024-11-21 10:34 |
2012-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304048
|
- |
|
xnview
|
xnview
|
Heap-based buffer overflow in XnView before 1.99 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted ImageLeftPosition value in …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0282
|
2024-11-21 10:34 |
2012-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304049
|
- |
|
xnview
|
xnview
|
Heap-based buffer overflow in XnView before 1.99 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PCT image.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0277
|
2024-11-21 10:34 |
2012-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304050
|
- |
|
xnview
|
xnview
|
Multiple heap-based buffer overflows in XnView before 1.99 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a (1) SGI32LogLum compressed…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0276
|
2024-11-21 10:34 |
2012-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
