260661
|
- |
|
gentoo
|
webmin
|
file/show.cgi in Webmin 1.590 and earlier allows remote authenticated users to execute arbitrary commands via an invalid character in a pathname, as demonstrated by a | (pipe) character.
|
NVD-CWE-Other
|
CVE-2012-2982
|
2013-05-30 12:16 |
2012-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260662
|
- |
|
gentoo
|
webmin
|
file/edit_html.cgi in Webmin 1.590 and earlier does not perform an authorization check before showing a file's unedited contents, which allows remote attackers to read arbitrary files via the file fi…
|
CWE-287
Improper Authentication
|
CVE-2012-2983
|
2013-05-30 12:16 |
2012-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260663
|
- |
|
ibm
|
infosphere_optim_data_growth_for_oracle_e-business_suite
|
IBM InfoSphere Optim Data Growth for Oracle E-Business Suite 6.x, 7.x, and 9.x before 9.1.0.3 relies on the MD5 algorithm for signatures in X.509 certificates, which makes it easier for man-in-the-mi…
|
CWE-310
Cryptographic Issues
|
CVE-2013-2953
|
2013-05-28 13:00 |
2013-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260664
|
- |
|
cisco
|
webex
|
Cisco WebEx 4.1 on iOS does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middl…
|
CWE-20
Improper Input Validation
|
CVE-2012-6399
|
2013-05-28 13:00 |
2013-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260665
|
- |
|
hp
|
business_service_management
|
HP Business Service Management (BSM) 9.12 does not properly restrict the uploading of .war files, which allows remote attackers to execute arbitrary JSP code within the JBOSS Application Server compo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2561
|
2013-05-25 12:11 |
2012-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260666
|
- |
|
microsys
|
promotic
|
Stack-based buffer overflow in an ActiveX component in MICROSYS PROMOTIC before 8.1.5 allows remote attackers to cause a denial of service via a crafted web page.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4519
|
2013-05-24 13:00 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260667
|
- |
|
microsys
|
promotic
|
Heap-based buffer overflow in an ActiveX component in MICROSYS PROMOTIC before 8.1.5 allows remote attackers to cause a denial of service via a crafted web page.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4520
|
2013-05-24 13:00 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260668
|
- |
|
3s-software
|
codesys_gateway-server
|
Use-after-free vulnerability in the server application in 3S CODESYS Gateway 2.3.9.27 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via unspec…
|
CWE-399
Resource Management Errors
|
CVE-2013-2781
|
2013-05-23 23:35 |
2013-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260669
|
- |
|
cisco
|
ios_xr
|
Memory leak in the SNMP process in Cisco IOS XR allows remote attackers to cause a denial of service (memory consumption or process reload) by sending many port-162 UDP packets, aka Bug ID CSCug80345.
|
CWE-399
Resource Management Errors
|
CVE-2013-1204
|
2013-05-23 22:36 |
2013-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260670
|
- |
|
vercot
|
serva32
|
Buffer overflow in the TFTPD service in Serva32 2.1.0 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long string in a read request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0145
|
2013-05-23 13:00 |
2013-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|