|
261211
|
- |
|
belkin
|
n900_wireless_router
|
The WPA2 implementation on the Belkin N900 F9K1104v1 router establishes a WPS PIN based on 6 digits of the LAN/WLAN MAC address, which makes it easier for remote attackers to obtain access to a Wi-Fi…
|
CWE-310
Cryptographic Issues
|
CVE-2012-6371
|
2013-01-3 01:05 |
2013-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261212
|
- |
|
opera
|
opera_browser
|
Opera before 11.67 and 12.x before 12.02 allows remote attackers to cause truncation of a dialog, and possibly trigger downloading and execution of arbitrary programs, via a crafted web site.
|
NVD-CWE-Other
|
CVE-2012-6460
|
2013-01-2 20:46 |
2013-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261213
|
- |
|
opera
|
opera_browser
|
The X.509 certificate-validation functionality in the https implementation in Opera before 12.10 allows remote attackers to trigger a false indication of successful revocation-status checking by caus…
|
CWE-20
Improper Input Validation
|
CVE-2012-6461
|
2013-01-2 20:46 |
2013-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261214
|
- |
|
opera
|
opera_browser
|
Opera before 12.10 does not properly implement the Cross-Origin Resource Sharing (CORS) specification, which allows remote attackers to bypass intended page-content restrictions via a crafted request.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-6462
|
2013-01-2 20:46 |
2013-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261215
|
- |
|
opera
|
opera_browser
|
Cross-site scripting (XSS) vulnerability in Opera before 12.10 allows remote attackers to inject arbitrary web script or HTML via crafted JavaScript code that overrides methods of unspecified native …
|
CWE-79
Cross-site Scripting
|
CVE-2012-6464
|
2013-01-2 20:46 |
2013-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261216
|
- |
|
opera
|
opera_browser
|
Opera before 12.12 allows remote attackers to spoof the address field via a high rate of HTTP requests.
|
NVD-CWE-Other
|
CVE-2012-6471
|
2013-01-2 20:46 |
2013-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261217
|
- |
|
opera
|
opera_browser
|
Opera before 12.12 on UNIX uses weak permissions for the profile directory, which allows local users to obtain sensitive information by reading a (1) cache file, (2) password file, or (3) configurati…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-6472
|
2013-01-2 20:46 |
2013-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261218
|
- |
|
samsung
|
samsungdive
|
The Track My Mobile feature in the SamsungDive subsystem for Android on Samsung Galaxy devices shows the activation of remote tracking, which might allow physically proximate attackers to defeat a pr…
|
CWE-200
Information Exposure
|
CVE-2012-6337
|
2013-01-1 00:22 |
2012-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261219
|
- |
|
avg
|
avg_antivirus
|
The Anti-theft service in AVG AntiVirus for Android allows physically proximate attackers to provide arbitrary location data via a "commonly available simple GPS location spoofer."
|
NVD-CWE-noinfo
|
CVE-2012-6335
|
2013-01-1 00:14 |
2012-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261220
|
- |
|
i-gen
|
oplynx
|
The Central application in i-GEN opLYNX before 2.01.9 allows remote attackers to bypass authentication via vectors involving the disabling of browser JavaScript support.
|
CWE-287
Improper Authentication
|
CVE-2012-4688
|
2012-12-31 20:50 |
2012-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
