|
263461
|
- |
|
google
|
chrome
|
Google Chrome before 4.0.211.0 cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7294
|
2012-08-2 13:00 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263462
|
- |
|
apple
|
safari
|
Apple Safari cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Set-Cookie header…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7296
|
2012-08-2 13:00 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263463
|
- |
|
opera
|
opera_browser
|
Opera cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Set-Cookie header in an …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7297
|
2012-08-2 13:00 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263464
|
- |
|
android
google
|
android_browser
android
|
The Android browser in Android cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-7298
|
2012-08-2 13:00 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263465
|
- |
|
xnview
|
xnview
|
Heap-based buffer overflow in XnView before 1.99 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PCT image.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0277
|
2012-08-1 13:00 |
2012-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263466
|
- |
|
david_paleino
|
wicd
|
Wicd before 1.7.1 saves sensitive information in log files in /var/log/wicd, which allows context-dependent attackers to obtain passwords and other sensitive information.
|
CWE-255
Credentials Management
|
CVE-2012-0813
|
2012-08-1 13:00 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263467
|
- |
|
yahoo
|
toolbar
|
Yahoo! Toolbar 1.0.0.5 and earlier for Chrome and Safari allows remote attackers to modify the configured search URL, and intercept search terms, via a crafted web page.
|
CWE-200
Information Exposure
|
CVE-2012-2647
|
2012-07-31 19:45 |
2012-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263468
|
- |
|
iconics
|
genesis32
bizviz
|
The lockout-recovery feature in the Security Configurator component in ICONICS GENESIS32 9.22 and earlier and BizViz 9.22 and earlier uses an improper encryption algorithm for generation of an authen…
|
CWE-310
Cryptographic Issues
|
CVE-2012-3018
|
2012-07-31 19:45 |
2012-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263469
|
- |
|
apple
|
xcode
|
Apple Xcode before 4.4 does not properly compose a designated requirement (DR) during signing of programs that lack bundle identifiers, which allows remote attackers to read keychain entries via a cr…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3698
|
2012-07-31 13:00 |
2012-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263470
|
- |
|
apple
|
safari
|
Apple Safari before 6.0 allows remote attackers to read arbitrary files via a feed:// URL.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0679
|
2012-07-30 13:00 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
