|
302211
|
- |
|
cisco
|
unity_connection
|
Cisco Unity Connection (UC) 8.6, 9.0, and 9.5 allows remote attackers to cause a denial of service (CPU consumption) via malformed UDP packets, aka Bug ID CSCtz76269.
|
CWE-399
Resource Management Errors
|
CVE-2012-3060
|
2024-11-21 10:40 |
2012-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302212
|
- |
|
cisco
|
vpn_client
|
Untrusted search path vulnerability in Cisco VPN Client 5.0 allows local users to gain privileges via a Trojan horse DLL in the current working directory, aka Bug ID CSCua28747.
|
NVD-CWE-Other
|
CVE-2012-3052
|
2024-11-21 10:40 |
2012-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302213
|
- |
|
cisco
|
nx-os
nexus_7000
nexus_7000_10-slot
nexus_7000_18-slot
nexus_7000_9-slot
|
Cisco NX-OS 5.2 and 6.1 on Nexus 7000 series switches allows remote attackers to cause a denial of service (process crash or packet loss) via a large number of ARP packets, aka Bug ID CSCtr44822.
|
NVD-CWE-noinfo
|
CVE-2012-3051
|
2024-11-21 10:40 |
2012-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302214
|
- |
|
python
|
beaker
|
Beaker before 1.6.4, when using PyCrypto to encrypt sessions, uses AES in ECB cipher mode, which might allow remote attackers to obtain portions of sensitive session data via unspecified vectors.
|
CWE-310
Cryptographic Issues
|
CVE-2012-3458
|
2024-11-21 10:40 |
2012-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302215
|
- |
|
kayako
|
fusion
|
Cross-site scripting (XSS) vulnerability in __swift/thirdparty/PHPExcel/PHPExcel/Shared/JAMA/docs/download.php in Kayako Fusion 4.40.1148, and possibly before 4.50.1581, allows remote attackers to in…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3233
|
2024-11-21 10:40 |
2012-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302216
|
- |
|
realnetworks
|
realplayer
realplayer_sp
|
RealNetworks RealPlayer before 15.0.6.14, RealPlayer SP 1.0 through 1.1.5, and Mac RealPlayer before 12.0.1.1750 do not properly handle codec frame sizes in RealAudio files, which allows remote attac…
|
CWE-189
Numeric Errors
|
CVE-2012-3234
|
2024-11-21 10:40 |
2012-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302217
|
- |
|
gentoo
|
webmin
|
file/edit_html.cgi in Webmin 1.590 and earlier does not perform an authorization check before showing a file's unedited contents, which allows remote attackers to read arbitrary files via the file fi…
|
CWE-287
Improper Authentication
|
CVE-2012-2983
|
2024-11-21 10:40 |
2012-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302218
|
- |
|
gentoo
|
webmin
|
file/show.cgi in Webmin 1.590 and earlier allows remote authenticated users to execute arbitrary commands via an invalid character in a pathname, as demonstrated by a | (pipe) character.
|
NVD-CWE-Other
|
CVE-2012-2982
|
2024-11-21 10:40 |
2012-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302219
|
- |
|
gentoo
|
webmin
|
Webmin 1.590 and earlier allows remote authenticated users to execute arbitrary Perl code via a crafted file associated with the type (aka monitor type name) parameter.
|
CWE-20
Improper Input Validation
|
CVE-2012-2981
|
2024-11-21 10:40 |
2012-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302220
|
- |
|
f5
|
application_security_manager_appliance
|
Cross-site scripting (XSS) vulnerability in the traffic overview page on the F5 ASM appliance 10.0.0 through 11.2.0 HF2 allows remote attackers to inject arbitrary web script or HTML via crafted requ…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2975
|
2024-11-21 10:40 |
2012-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
