260061
|
- |
|
joomla
|
joomla\!
|
Joomla! 2.5.x before 2.5.4 does not properly check permissions, which allows attackers to obtain sensitive "administrative back end" information via unknown attack vectors. NOTE: this might be a dup…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1611
|
2013-10-4 03:31 |
2012-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260062
|
- |
|
cisco
|
unified_computing_system
|
run-script in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges by embedding commands in an unspecified parameter, aka Bug ID CSCtq86560.
|
CWE-20
Improper Input Validation
|
CVE-2012-4110
|
2013-10-4 03:31 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260063
|
- |
|
progea
|
movicon
|
The OPC server in Progea Movicon before 11.3 allows remote attackers to cause a denial of service (out-of-bounds read and memory corruption) via a crafted HTTP request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-1804
|
2013-10-4 03:30 |
2012-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260064
|
- |
|
enea emerson
|
ose roc_800l_remote_terminal_unit roc_800_remote_terminal_unit dl_8000_remote_terminal_unit
|
The kernel in ENEA OSE on the Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier allows re…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0692
|
2013-10-4 03:07 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260065
|
- |
|
cisco
|
unified_computing_system
|
The create certreq command in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges by embedding commands in an unspecified parameter, aka Bu…
|
CWE-20
Improper Input Validation
|
CVE-2012-4111
|
2013-10-4 03:06 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260066
|
- |
|
enea emerson
|
ose roc_800l_remote_terminal_unit dl_8000_remote_terminal_unit roc_800_remote_terminal_unit
|
The kernel in ENEA OSE on the Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier performs …
|
CWE-200
Information Exposure
|
CVE-2013-0693
|
2013-10-4 03:05 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260067
|
- |
|
symantec
|
messaging_gateway
|
Cross-site request forgery (CSRF) vulnerability in Symantec Messaging Gateway (SMG) before 10.0 allows remote attackers to hijack the authentication of administrators.
|
CWE-352
Origin Validation Error
|
CVE-2012-0308
|
2013-10-4 03:00 |
2012-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260068
|
- |
|
cisco
|
ios_xr
|
The UDP process in Cisco IOS XR 4.3.1 does not free packet memory upon detecting full packet queues, which allows remote attackers to cause a denial of service (memory consumption) via UDP packets to…
|
CWE-399
Resource Management Errors
|
CVE-2013-5503
|
2013-10-4 02:58 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260069
|
- |
|
cisco
|
ironport_encryption_appliance
|
Cross-site scripting (XSS) vulnerability in the management interface on the Cisco IronPort Encryption Appliance with software before 6.5.3 allows remote attackers to inject arbitrary web script or HT…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0340
|
2013-10-4 02:56 |
2012-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260070
|
- |
|
cisco
|
ironport_encryption_appliance
|
Additional information can be found at:
http://www.secureworks.com/research/advisories/SWRX-2012-001/
|
CWE-79
Cross-site Scripting
|
CVE-2012-0340
|
2013-10-4 02:56 |
2012-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|