259691
|
- |
|
mozilla
|
bugzilla
|
Bugzilla 2.20.x before 2.20.5, 2.22.x before 2.22.3, and 3.0.x before 3.0.3 on Windows does not delete the temporary files associated with uploaded attachments, which allows local users to obtain sen…
|
CWE-200
Information Exposure
|
CVE-2008-7292
|
2012-08-2 13:00 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259692
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 4 cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Set-C…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7293
|
2012-08-2 13:00 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259693
|
- |
|
google
|
chrome
|
Google Chrome before 4.0.211.0 cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7294
|
2012-08-2 13:00 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259694
|
- |
|
apple
|
safari
|
Apple Safari cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Set-Cookie header…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7296
|
2012-08-2 13:00 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259695
|
- |
|
opera
|
opera_browser
|
Opera cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Set-Cookie header in an …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7297
|
2012-08-2 13:00 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259696
|
- |
|
android google
|
android_browser android
|
The Android browser in Android cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7298
|
2012-08-2 13:00 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259697
|
- |
|
xnview
|
xnview
|
Heap-based buffer overflow in XnView before 1.99 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PCT image.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0277
|
2012-08-1 13:00 |
2012-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259698
|
- |
|
david_paleino
|
wicd
|
Wicd before 1.7.1 saves sensitive information in log files in /var/log/wicd, which allows context-dependent attackers to obtain passwords and other sensitive information.
|
CWE-255
Credentials Management
|
CVE-2012-0813
|
2012-08-1 13:00 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259699
|
- |
|
yahoo
|
toolbar
|
Yahoo! Toolbar 1.0.0.5 and earlier for Chrome and Safari allows remote attackers to modify the configured search URL, and intercept search terms, via a crafted web page.
|
CWE-200
Information Exposure
|
CVE-2012-2647
|
2012-07-31 19:45 |
2012-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259700
|
- |
|
iconics
|
genesis32 bizviz
|
The lockout-recovery feature in the Security Configurator component in ICONICS GENESIS32 9.22 and earlier and BizViz 9.22 and earlier uses an improper encryption algorithm for generation of an authen…
|
CWE-310
Cryptographic Issues
|
CVE-2012-3018
|
2012-07-31 19:45 |
2012-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|