259811
|
- |
|
canonical
|
ubuntu_linux
|
The Apport hook (DistUpgradeApport.py) in Update Manager, as used by Ubuntu 12.04 LTS, 11.10, and 11.04, uploads the /var/log/dist-upgrade directory when reporting bugs to Launchpad, which allows rem…
|
CWE-200
Information Exposure
|
CVE-2012-0950
|
2012-06-26 13:00 |
2012-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259812
|
- |
|
checkpoint
|
endpoint_connect endpoint_security endpoint_security_vpn remote_access_clients
|
Untrusted search path vulnerability in TrGUI.exe in the Endpoint Connect (aka EPC) GUI in Check Point Endpoint Security R73.x and E80.x on the VPN blade platform, Endpoint Security VPN R75, Endpoint …
|
NVD-CWE-Other
|
CVE-2012-2753
|
2012-06-26 13:00 |
2012-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259813
|
- |
|
checkpoint
|
endpoint_connect endpoint_security endpoint_security_vpn remote_access_clients
|
Per: http://cwe.mitre.org/data/definitions/426.html
'CWE-426: Untrusted Search Path'
|
NVD-CWE-Other
|
CVE-2012-2753
|
2012-06-26 13:00 |
2012-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259814
|
- |
|
digium
|
asterisk
|
chan_skinny.c in the Skinny (aka SCCP) channel driver in Asterisk Open Source 10.x before 10.5.1 allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon cr…
|
NVD-CWE-Other
|
CVE-2012-3553
|
2012-06-26 13:00 |
2012-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259815
|
- |
|
digium
|
asterisk
|
Per: http://cwe.mitre.org/data/definitions/476.html
'CWE-476: NULL Pointer Dereference'
|
NVD-CWE-Other
|
CVE-2012-3553
|
2012-06-26 13:00 |
2012-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259816
|
- |
|
dell
|
wyse_device_manager
|
hagent.exe in Wyse Device Manager (WDM) 4.7.x does not require authentication for commands, which allows remote attackers to obtain management access via a crafted query, as demonstrated by a V52 que…
|
CWE-287
Improper Authentication
|
CVE-2009-0695
|
2012-06-26 13:00 |
2012-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259817
|
- |
|
php
|
php
|
PHP 4.0.4pl1 and 4.0.5 in safe mode allows remote attackers to read and write files owned by the web server UID by uploading a PHP script that uses the error_log function to access the files.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2001-1247
|
2012-06-25 13:00 |
2001-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259818
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server 7.0 before 7.0.0.23, when a certain SSLv2 configuration with client authentication is used, allows remote attackers to bypass X.509 client-certificate authentication …
|
CWE-287
Improper Authentication
|
CVE-2012-0717
|
2012-06-21 13:00 |
2012-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259819
|
- |
|
cisco
|
anyconnect_secure_mobility_client
|
The VPN downloader implementation in the WebLaunch feature in Cisco AnyConnect Secure Mobility Client 2.x before 2.5 MR6 on Windows, and 2.x before 2.5 MR6 and 3.x before 3.0 MR8 on Mac OS X and Linu…
|
CWE-20
Improper Input Validation
|
CVE-2012-2493
|
2012-06-21 13:00 |
2012-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259820
|
- |
|
cisco
|
anyconnect_secure_mobility_client
|
The VPN downloader implementation in the WebLaunch feature in Cisco AnyConnect Secure Mobility Client 2.x before 2.5 MR6 and 3.x before 3.0 MR8 does not compare the timestamp of offered software to t…
|
CWE-20
Improper Input Validation
|
CVE-2012-2494
|
2012-06-21 13:00 |
2012-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|