| Page(s) : 1 ... 259 260 261 262 263 264 265 266 267 268 [269] 270 271 272 273 274 275 276 277 278 279 ... | Result(s) : 8826 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 1.9 | 2012-12-21 | CVE-2012-4508 | cve | Race condition in fs/ext4/extents.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from a deleted file by reading an extent that was not pr... |
| 3.6 | 2012-12-21 | CVE-2012-1699 | cve | The ProcSetEventMask function in difs/events.c in the xfs font server for X.Org X11R6 through X11R6.6 and XFree86 before 3.3.3 calls the SendErrToClient function with a mask val... |
| 1.9 | 2012-12-21 | CVE-2010-2387 | cve | vicious-extensions/ve-misc.c in GNOME Display Manager (gdm) 2.20.x before 2.20.11, when GDM debug is enabled, logs the user password when it contains invalid UTF8 encoded charac... |
| 3.6 | 2012-12-20 | CVE-2012-5638 | cve | The setup_logging function in log.h in SANLock uses world-writable permissions for /var/log/sanlock.log, which allows local users to overwrite the file content or bypass intende... |
| 3.5 | 2012-12-19 | CVE-2012-4848 | cve | Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Foundations Start before 1.2.2c allow remote authenticated users to inject arbitrary web script or HTML via a We... |
| 2.6 | 2012-12-19 | CVE-2012-4534 | cve | org/apache/tomcat/util/net/NioEndpoint.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.28, when the NIO connector is used in conjunction with sendfile and HTTPS, allo... |
| 3.3 | 2012-12-19 | CVE-2012-3329 | cve | IBM Advanced Settings Utility (ASU) through 3.62 and 3.70 through 9.21 and Bootable Media Creator (BoMC) through 2.30 and 3.00 through 9.21 on Linux allow local users to overwri... |
| 1.9 | 2012-12-18 | CVE-2012-4693 | cve | Invensys Wonderware InTouch 2012 R2 and earlier and Siemens ProcessSuite use a weak encryption algorithm for data in Ps_security.ini, which makes it easier for local users to di... |
| 3.3 | 2012-12-18 | CVE-2012-4691 | cve | Memory leak in Siemens Automation License Manager (ALM) 4.x and 5.x before 5.2 allows remote attackers to cause a denial of service (memory consumption) via crafted packets. |
| 3.5 | 2012-12-17 | CVE-2012-5571 | cve | OpenStack Keystone Essex (2012.1) and Folsom (2012.2) does not properly handle EC2 tokens when the user role has been removed from a tenant, which allows remote authenticated us... |
| 3.2 | 2012-12-13 | CVE-2012-5512 | cve | Array index error in the HVMOP_set_mem_access handler in Xen 4.1 allows local HVM guest OS administrators to cause a denial of service (crash) or obtain sensitive information vi... |
| 2.1 | 2012-12-13 | CVE-2012-3276 | cve | HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform and 7.3-2, 8.2, 8.3, and 8.4 on the Alpha platform does not properly implement the LOGIN and ACME_SERVER ACMELOGIN progr... |
| 3.5 | 2012-12-11 | CVE-2012-4791 | cve | Microsoft Exchange Server 2007 SP3 and 2010 SP1 and SP2 allows remote authenticated users to cause a denial of service (Information Store service hang) by subscribing to a craft... |
| 1.9 | 2012-12-08 | CVE-2012-4838 | cve | IBM Flex System Chassis Management Module (CMM) and Integrated Management Module 2 (IMM2) allow local users to obtain sensitive information about (1) local accounts, (2) SSH pri... |
| 2.1 | 2012-12-05 | CVE-2009-2899 | cve | The monitor perl script in the Sybase database plug-in in SpringSource Hyperic HQ before 4.3 allows local users to obtain the database password by listing the process and its ar... |
| 2.1 | 2012-12-05 | CVE-2012-4862 | cve | The Host Connect emulator in IBM Rational Developer for System z 7.1 through 8.5.1 does not properly store the SSL certificate password, which allows local users to obtain sensi... |
| 3.5 | 2012-12-03 | CVE-2012-6064 | cve | Directory traversal vulnerability in lib/filemanager/imagemanager/images.php in CMS Made Simple (CMSMS) before 1.11.2.1 allows remote authenticated administrators to delete arbi... |
| 2.6 | 2012-12-03 | CVE-2012-5559 | cve | Cross-site scripting (XSS) vulnerability in the page manager node view task in the Chaos tool suite (ctools) module 6.x-1.x before 6.x-1.10 for Drupal allows remote authenticate... |
| 3.6 | 2012-12-03 | CVE-2012-5557 | cve | The User Read-Only module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.4 for Drupal, does not properly assign roles when there are more than three roles on the site and certa... |
| 2.1 | 2012-12-03 | CVE-2012-5553 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the OM Maximenu module 6.x-1.x before 6.x-1.44 and 7.x-1.x before 7.x-1.44 for Drupal allow remote authenticated users wit... |
| Page(s) : 1 ... 259 260 261 262 263 264 265 266 267 268 [269] 270 271 272 273 274 275 276 277 278 279 ... | Result(s) : 8826 |
