259821
|
- |
|
cisco
|
anyconnect_secure_mobility_client secure_desktop
|
The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x before 3.0 MR8 and Cisco Secure Desktop before 3.6.6020 does not compare the timestamp of offered software to the…
|
CWE-20
Improper Input Validation
|
CVE-2012-2495
|
2012-06-21 13:00 |
2012-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259822
|
- |
|
adiscon
|
loganalyzer
|
Cross-site scripting (XSS) vulnerability in index.php in Adiscon LogAnalyzer before 3.4.4 and 3.5.x before 3.5.5 allows remote attackers to inject arbitrary web script or HTML via the highlight param…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3790
|
2012-06-21 13:00 |
2012-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259823
|
- |
|
openssl
|
openssl
|
The Diffie-Hellman key-exchange implementation in OpenSSL 0.9.8, when FIPS mode is enabled, does not properly validate a public parameter, which makes it easier for man-in-the-middle attackers to obt…
|
CWE-310
Cryptographic Issues
|
CVE-2011-5095
|
2012-06-21 13:00 |
2012-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259824
|
- |
|
kent-web
|
web_patio
|
Cross-site scripting (XSS) vulnerability in KENT-WEB WEB PATIO 4.04 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-2636
|
2012-06-20 13:00 |
2012-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259825
|
- |
|
kent-web
|
web_patio
|
Cross-site scripting (XSS) vulnerability in KENT-WEB WEB PATIO 4.04 and earlier might allow remote attackers to inject arbitrary web script or HTML via a crafted cookie.
|
CWE-79
Cross-site Scripting
|
CVE-2012-2637
|
2012-06-20 13:00 |
2012-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259826
|
- |
|
wap2
|
smallpict
|
Cross-site scripting (XSS) vulnerability in SmallPICT.cgi in SmallPICT before 2.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-2638
|
2012-06-20 13:00 |
2012-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259827
|
- |
|
opera
|
opera_browser
|
Opera before 11.65 does not ensure that keyboard sequences are associated with a visible window, which makes it easier for user-assisted remote attackers to conduct cross-site scripting (XSS) attacks…
|
NVD-CWE-noinfo
|
CVE-2012-3555
|
2012-06-20 13:00 |
2012-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259828
|
- |
|
interactivedata
|
esignal
|
WinSig.exe in eSignal 10.6.2425 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) a long StyleTemplate element in a QUO, SUM or POR …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3494
|
2012-06-20 13:00 |
2011-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259829
|
- |
|
dell
|
wyse_device_manager
|
Multiple buffer overflows in Wyse Device Manager (WDM) 4.7.x allow remote attackers to execute arbitrary code via (1) the User-Agent HTTP header to hserver.dll or (2) unspecified input to hagent.exe.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-0693
|
2012-06-20 13:00 |
2012-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259830
|
- |
|
mozilla
|
firefox seamonkey thunderbird
|
Use-after-free vulnerability in the nsHTMLSelectElement function in nsHTMLSelectElement.cpp in Mozilla Firefox 4.x through 8.0, Thunderbird 5.0 through 8.0, and SeaMonkey before 2.6 allows remote att…
|
CWE-399
Resource Management Errors
|
CVE-2011-3671
|
2012-06-19 13:00 |
2012-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|