|
257291
|
- |
|
esri
|
arcgis
arcmap
|
ESRI ArcMap 9 and ArcGIS 10.0.2.3200 and earlier does not properly prompt users before executing embedded VBA macros, which allows user-assisted remote attackers to execute arbitrary VBA code via a c…
|
CWE-94
Code Injection
|
CVE-2012-1661
|
2012-07-16 13:00 |
2012-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257292
|
- |
|
adrian_chadd
|
rtg
rtg2
|
Multiple SQL injection vulnerabilities in RTG 0.7.4 and RTG2 0.9.2 allow remote attackers to execute arbitrary SQL commands via unspecified parameters to (1) 95.php, (2) view.php, or (3) rtg.php.
|
CWE-89
SQL Injection
|
CVE-2012-3881
|
2012-07-16 13:00 |
2012-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257293
|
- |
|
nih
|
libzip
|
Heap-based buffer overflow in the _zip_readcdir function in zip_open.c in libzip 0.10 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1162
|
2012-07-13 23:50 |
2012-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257294
|
- |
|
cisco
|
telepresence_system_software
telepresence_system_1300_65
telepresence_system_3000
telepresence_system_3010
telepresence_system_3200
telepresence_system_3210
telepresence_system_t3
The administrative web interface on Cisco TelePresence Immersive Endpoint Devices before 1.7.4 allows remote authenticated users to execute arbitrary commands via a malformed request on TCP port 443,…
|
CWE-78
OS Command
|
CVE-2012-3075
|
2012-07-12 19:34 |
2012-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
257295
|
- |
|
cisco
|
telepresence_recording_server
|
The administrative web interface on Cisco TelePresence Recording Server before 1.8.0 allows remote authenticated users to execute arbitrary commands via unspecified vectors, aka Bug ID CSCth85804.
|
CWE-78
OS Command
|
CVE-2012-3076
|
2012-07-12 19:34 |
2012-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257296
|
- |
|
netsweeper
|
netsweeper
|
Unspecified vulnerability in the WebAdmin Portal in Netsweeper has unknown impact and attack vectors, a different vulnerability than CVE-2012-2446 and CVE-2012-2447.
|
NVD-CWE-noinfo
|
CVE-2012-3859
|
2012-07-10 23:29 |
2012-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257297
|
- |
|
netsweeper
|
netsweeper
|
Cross-site request forgery (CSRF) vulnerability in accountmgr/adminupdate.php in the WebAdmin Portal in Netsweeper allows remote attackers to hijack the authentication of administrators for requests …
|
CWE-352
Origin Validation Error
|
CVE-2012-2447
|
2012-07-10 23:10 |
2012-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257298
|
- |
|
netsweeper
|
netsweeper
|
Cross-site scripting (XSS) vulnerability in tools/local_lookup.php in the WebAdmin Portal in Netsweeper allows remote attackers to inject arbitrary web script or HTML via the group parameter in a loo…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2446
|
2012-07-10 23:05 |
2012-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257299
|
- |
|
aladdin
fortinet
pandasecurity
rising-global
|
esafe
fortinet_antivirus
panda_antivirus
rising_antivirus
|
The ELF file parser in eSafe 7.0.17.0, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file wit…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1445
|
2012-07-10 13:28 |
2012-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257300
|
- |
|
ibm
|
websphere_application_server
|
Cross-site scripting (XSS) vulnerability in the Administration Console in IBM WebSphere Application Server 7.0 before 7.0.0.23 allows remote attackers to inject arbitrary web script or HTML via unspe…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0716
|
2012-07-10 13:27 |
2012-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
