257271
|
- |
|
xnview
|
xnview
|
Heap-based buffer overflow in XnView before 1.99 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PCT image.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0277
|
2012-08-1 13:00 |
2012-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257272
|
- |
|
david_paleino
|
wicd
|
Wicd before 1.7.1 saves sensitive information in log files in /var/log/wicd, which allows context-dependent attackers to obtain passwords and other sensitive information.
|
CWE-255
Credentials Management
|
CVE-2012-0813
|
2012-08-1 13:00 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257273
|
- |
|
yahoo
|
toolbar
|
Yahoo! Toolbar 1.0.0.5 and earlier for Chrome and Safari allows remote attackers to modify the configured search URL, and intercept search terms, via a crafted web page.
|
CWE-200
Information Exposure
|
CVE-2012-2647
|
2012-07-31 19:45 |
2012-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257274
|
- |
|
iconics
|
genesis32 bizviz
|
The lockout-recovery feature in the Security Configurator component in ICONICS GENESIS32 9.22 and earlier and BizViz 9.22 and earlier uses an improper encryption algorithm for generation of an authen…
|
CWE-310
Cryptographic Issues
|
CVE-2012-3018
|
2012-07-31 19:45 |
2012-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257275
|
- |
|
apple
|
xcode
|
Apple Xcode before 4.4 does not properly compose a designated requirement (DR) during signing of programs that lack bundle identifiers, which allows remote attackers to read keychain entries via a cr…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3698
|
2012-07-31 13:00 |
2012-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257276
|
- |
|
apple
|
safari
|
Apple Safari before 6.0 allows remote attackers to read arbitrary files via a feed:// URL.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0679
|
2012-07-30 13:00 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257277
|
- |
|
plaatsoft
|
addressbook
|
Cross-site request forgery (CSRF) vulnerability in the Addressbook module for Drupal 6.x-4.2 and earlier allows remote attackers to hijack the authentication of unspecified victims via unknown vector…
|
CWE-352
Origin Validation Error
|
CVE-2012-2307
|
2012-07-30 13:00 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257278
|
- |
|
wearepropeople
|
glossify_internal_links_auto_seo
|
Cross-site scripting (XSS) vulnerability in the Glossify Internal Links Auto SEO module for Drupal 6.x-2.5 and earlier allows remote authenticated users with certain roles to inject arbitrary web scr…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2309
|
2012-07-30 13:00 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257279
|
- |
|
nedprod
|
nedmalloc
|
Multiple integer overflows in the (1) CallMalloc (malloc) and (2) nedpcalloc (calloc) functions in nedmalloc (nedmalloc.c) before 1.10 beta2 make it easier for context-dependent attackers to perform …
|
CWE-189
Numeric Errors
|
CVE-2012-2675
|
2012-07-30 13:00 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257280
|
- |
|
emery_berger
|
hoard
|
Multiple integer overflows in the (1) malloc and (2) calloc functions in Hoard before 3.9 make it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows on …
|
CWE-189
Numeric Errors
|
CVE-2012-2676
|
2012-07-30 13:00 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|