|
261791
|
- |
|
mutiny
|
standard
|
Per: http://www.kb.cert.org/vuls/id/841851
"Impact
An authenticated attacker can run arbitrary commands on the appliance."
|
CWE-78
OS Command
|
CVE-2012-3001
|
2013-03-2 13:42 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261792
|
- |
|
mutiny
|
standard
|
Per: http://www.mutiny.com/products.php
"Mutiny is a virtual appliance that uses industry standard SNMP to gather information from IT Infrastructure, process and display the results in a multi-use…
|
CWE-78
OS Command
|
CVE-2012-3001
|
2013-03-2 13:42 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261793
|
- |
|
foscam
wansview
|
h.264_hi3510\/11\/12_ip_camera
|
The web interface on (1) Foscam and (2) Wansview IP cameras allows remote attackers to bypass authentication, and perform administrative functions or read the admin password, via a direct request to …
|
CWE-287
Improper Authentication
|
CVE-2012-3002
|
2013-03-2 13:42 |
2012-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261794
|
- |
|
quagga
|
quagga
|
The bgp_capability_orf function in bgpd in Quagga 0.99.20.1 and earlier allows remote attackers to cause a denial of service (assertion failure and daemon exit) by leveraging a BGP peering relationsh…
|
NVD-CWE-Other
|
CVE-2012-1820
|
2013-03-2 13:40 |
2012-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261795
|
- |
|
springsource
|
grails
|
VMware SpringSource Grails before 1.3.8, and 2.x before 2.0.2, does not properly restrict data binding, which might allow remote attackers to bypass intended access restrictions and modify arbitrary …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1833
|
2013-03-2 13:40 |
2012-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261796
|
- |
|
umich
|
libgssglue
libgssapi
|
libgssapi and libgssglue before 0.4 do not properly check privileges, which allows local users to load untrusted configuration files and execute arbitrary code via the GSSAPI_MECH_CONF environment va…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2709
|
2013-03-2 13:33 |
2012-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261797
|
- |
|
katello
|
katello
|
script/katello-generate-passphrase in Katello 1.1 uses world-readable permissions for /etc/katello/secure/passphrase, which allows local users to obtain the passphrase by reading the file.
|
CWE-200
Information Exposure
|
CVE-2012-5561
|
2013-03-2 00:51 |
2013-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261798
|
- |
|
cisco
|
network_admission_control
|
The Cisco Network Admission Control (NAC) agent on Mac OS X does not verify the X.509 certificate of an Identity Services Engine (ISE) server during an SSL session, which allows man-in-the-middle att…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1124
|
2013-03-2 00:09 |
2013-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261799
|
- |
|
justsystems
|
hanako
hanako_police
hanako_police3
ichitaro
ichitaro_portable
|
Unspecified vulnerability in JustSystems Ichitaro 2006 and 2007, Ichitaro Government 2006 and 2007, Ichitaro Portable with oreplug, Hanako 2006 through 2013, Hanako Police, Hanako Police 3, and Hanak…
|
NVD-CWE-noinfo
|
CVE-2013-0707
|
2013-03-1 14:40 |
2013-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261800
|
- |
|
bayashi
|
dopvcomet*
|
Cross-site scripting (XSS) vulnerability in dopvCOMET* 0009b allows remote attackers to inject arbitrary web script or HTML via the HTTP Referer header, which is not properly handled during display o…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0708
|
2013-03-1 14:40 |
2013-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
