261391
|
- |
|
tripadvisor
|
tripadvisor
|
The TripAdvisor app 6.6 for iOS sends cleartext credentials, which allows remote attackers to obtain sensitive information by sniffing the network.
|
CWE-310
Cryptographic Issues
|
CVE-2012-4917
|
2013-02-2 14:09 |
2013-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261392
|
- |
|
vmware
|
capacityiq
|
Directory traversal vulnerability in VMware CapacityIQ 1.5.x allows remote attackers to read arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2012-5051
|
2013-02-2 14:09 |
2012-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261393
|
- |
|
simon_brown
|
pebble
|
Pebble before 2.6.4 allows remote attackers to trigger loss of blog-entry viewability via a crafted comment.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4022
|
2013-02-2 14:07 |
2012-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261394
|
- |
|
simon_brown
|
pebble
|
CRLF injection vulnerability in Pebble before 2.6.4 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2012-4023
|
2013-02-2 14:07 |
2012-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261395
|
- |
|
hp
|
serviceguard
|
Unspecified vulnerability in HP Serviceguard A.11.19 and A.11.20 allows remote attackers to cause a denial of service via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2012-3252
|
2013-02-2 14:05 |
2012-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261396
|
- |
|
symantec
|
backupexec_system_recovery system_recovery
|
Untrusted search path vulnerability in Symantec System Recovery 2011 before SP2 and Backup Exec System Recovery 2010 before SP5 allows local users to gain privileges via a Trojan horse DLL in the cur…
|
NVD-CWE-Other
|
CVE-2012-0305
|
2013-02-2 13:58 |
2012-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261397
|
- |
|
symantec
|
backupexec_system_recovery system_recovery
|
Per: http://cwe.mitre.org/data/definitions/426.html 'CWE-426: Untrusted Search Path'
|
NVD-CWE-Other
|
CVE-2012-0305
|
2013-02-2 13:58 |
2012-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261398
|
- |
|
ibm
|
tivoli_federated_identity_manager tivoli_federated_identity_manager_business_gateway
|
IBM Tivoli Federated Identity Manager (TFIM) and Tivoli Federated Identity Manager Business Gateway (TFIMBG) 6.1.1, 6.2.0, 6.2.1, and 6.2.2 allow remote attackers to establish sessions via a crafted …
|
CWE-20
Improper Input Validation
|
CVE-2012-3314
|
2013-02-1 13:49 |
2012-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261399
|
- |
|
citrix xen
|
xenserver xen
|
The GNTTABOP_swap_grant_ref sub-operation in the grant table hypercall in Xen 4.2 and Citrix XenServer 6.0.2 allows local guest kernels or administrators to cause a denial of service (host crash) and…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3516
|
2013-02-1 13:49 |
2012-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261400
|
- |
|
sysax
|
multi_server
|
Stack-based buffer overflow in Sysax Multi Server before 5.52, when HTTP is enabled, allows remote authenticated users with the create folder permission to execute arbitrary code via a crafted reques…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6530
|
2013-01-31 14:44 |
2013-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|