CVE List - 2012 / November
Showing 101 - 200 of 436 CVEs for November 2012 (Page 2 of 5)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2012-4020 | 2012-11-08 | MosP kintai kanri before 4.1.0 does not enforce privilege requirements,... |
| CVE-2012-4021 | 2012-11-08 | MosP kintai kanri before 4.1.0 does not properly perform authentication,... |
| CVE-2012-4022 | 2012-11-08 | Pebble before 2.6.4 allows remote attackers to trigger loss of... |
| CVE-2012-4023 | 2012-11-08 | CRLF injection vulnerability in Pebble before 2.6.4 allows remote attackers... |
| CVE-2012-5171 | 2012-11-08 | Directory traversal vulnerability in Be Graph BeZIP before 3.10 allows... |
| CVE-2011-1374 | 2012-11-09 | Buffer overflow in Apple QuickTime before 7.7.3 allows remote attackers... |
| CVE-2012-3751 | 2012-11-09 | Use-after-free vulnerability in the plugin in Apple QuickTime before 7.7.3... |
| CVE-2012-3752 | 2012-11-09 | Multiple buffer overflows in Apple QuickTime before 7.7.3 allow remote... |
| CVE-2012-3753 | 2012-11-09 | Buffer overflow in the plugin in Apple QuickTime before 7.7.3... |
| CVE-2012-3754 | 2012-11-09 | Use-after-free vulnerability in the Clear method in the ActiveX control... |
| CVE-2012-3755 | 2012-11-09 | Buffer overflow in Apple QuickTime before 7.7.3 allows remote attackers... |
| CVE-2012-3756 | 2012-11-09 | Buffer overflow in Apple QuickTime before 7.7.3 allows remote attackers... |
| CVE-2012-3757 | 2012-11-09 | Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary... |
| CVE-2012-3758 | 2012-11-09 | Buffer overflow in Apple QuickTime before 7.7.3 allows remote attackers... |
| CVE-2012-2455 | 2012-11-10 | Advanced Productivity Software DTE Axiom before 12.3.3 does not validate... |
| CVE-2012-3523 | 2012-11-11 | The STARTTLS implementation in nnrpd in INN before 2.5.3 does... |
| CVE-2012-4504 | 2012-11-11 | Stack-based buffer overflow in the url::get_pac function in url.cpp in... |
| CVE-2012-4505 | 2012-11-11 | Heap-based buffer overflow in the px_pac_reload function in lib/pac.c in... |
| CVE-2012-4540 | 2012-11-11 | Off-by-one error in the invoke function in IcedTeaScriptablePluginObject.cc in IcedTea-Web... |
| CVE-2012-4548 | 2012-11-11 | Argument injection vulnerability in syntax-highlighting.sh in cgit 9.0.3 and earlier... |
| CVE-2012-4564 | 2012-11-11 | ppm2tiff does not check the return value of the TIFFScanlineSize... |
| CVE-2012-4573 | 2012-11-11 | The v1 API in OpenStack Glance Grizzly, Folsom (2012.2), and... |
| CVE-2012-4732 | 2012-11-11 | Cross-site request forgery (CSRF) vulnerability in Request Tracker (RT) 3.8.12... |
| CVE-2012-4734 | 2012-11-11 | Request Tracker (RT) 3.8.x before 3.8.15 and 4.0.x before 4.0.8... |
| CVE-2012-5482 | 2012-11-11 | The v2 API in OpenStack Glance Grizzly, Folsom (2012.2), and... |
| CVE-2012-5827 | 2012-11-11 | Joomla! 2.5.x before 2.5.8 and 3.0.x before 3.0.2 allows remote... |
| CVE-2012-4513 | 2012-11-11 | khtml/imload/scaledimageplane.h in Konqueror in KDE 4.7.3 allows remote attackers to... |
| CVE-2012-4514 | 2012-11-11 | rendering/render_replaced.cpp in Konqueror in KDE before 4.9.3 allows remote attackers... |
| CVE-2012-4515 | 2012-11-11 | Use-after-free vulnerability in khtml/rendering/render_replaced.cpp in Konqueror in KDE 4.7.3, when... |
| CVE-2012-4553 | 2012-11-11 | Drupal 7.x before 7.16 allows remote attackers to obtain sensitive... |
| CVE-2012-4554 | 2012-11-11 | The OpenID module in Drupal 7.x before 7.16 allows remote... |
| CVE-2012-4730 | 2012-11-11 | Request Tracker (RT) 3.8.x before 3.8.15 and 4.0.x before 4.0.8... |
| CVE-2012-4731 | 2012-11-11 | FAQ manager for Request Tracker (RTFM) before 2.4.5 does not... |
| CVE-2012-4884 | 2012-11-11 | Argument injection vulnerability in Request Tracker (RT) 3.8.x before 3.8.15... |
| CVE-2012-1810 | 2012-11-13 | EOSCoreScada.exe in C3-ilex EOScada before 11.0.19.2 allows remote attackers to... |
| CVE-2012-1811 | 2012-11-13 | EOSDataServer.exe in C3-ilex EOScada before 11.0.19.2 allows remote attackers to... |
| CVE-2012-1812 | 2012-11-13 | eosfailoverservice.exe in C3-ilex EOScada before 11.0.19.2 allows remote attackers to... |
| CVE-2012-1813 | 2012-11-13 | eosfailoverservice.exe in C3-ilex EOScada before 11.0.19.2 allows remote attackers to... |
| CVE-2012-5285 | 2012-11-13 | Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x... |
| CVE-2012-5286 | 2012-11-13 | Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x... |
| CVE-2012-5287 | 2012-11-13 | Buffer overflow in Adobe Flash Player before 10.3.183.29 and 11.x... |
| CVE-2012-5673 | 2012-11-13 | Unspecified vulnerability in Adobe Flash Player before 10.3.183.29 and 11.x... |
| CVE-2012-1527 | 2012-11-14 | Integer underflow in Windows Shell in Microsoft Windows XP SP2... |
| CVE-2012-1528 | 2012-11-14 | Integer overflow in Windows Shell in Microsoft Windows XP SP2... |
| CVE-2012-1538 | 2012-11-14 | Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers... |
| CVE-2012-1539 | 2012-11-14 | Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers... |
| CVE-2012-1885 | 2012-11-14 | Heap-based buffer overflow in Microsoft Excel 2003 SP3, 2007 SP2... |
| CVE-2012-1886 | 2012-11-14 | Microsoft Excel 2003 SP3, 2007 SP2 and SP3, and 2010... |
| CVE-2012-1887 | 2012-11-14 | Use-after-free vulnerability in Microsoft Excel 2003 SP3, 2007 SP2 and... |
| CVE-2012-1895 | 2012-11-14 | The reflection implementation in Microsoft .NET Framework 1.0 SP3, 1.1... |
| CVE-2012-1896 | 2012-11-14 | Microsoft .NET Framework 2.0 SP2 and 3.5.1 does not properly... |
| CVE-2012-2519 | 2012-11-14 | Untrusted search path vulnerability in Entity Framework in ADO.NET in... |
| CVE-2012-2530 | 2012-11-14 | Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft... |
| CVE-2012-2531 | 2012-11-14 | Microsoft Internet Information Services (IIS) 7.5 uses weak permissions for... |
| CVE-2012-2532 | 2012-11-14 | Microsoft FTP Service 7.0 and 7.5 for Internet Information Services... |
| CVE-2012-2543 | 2012-11-14 | Stack-based buffer overflow in Microsoft Excel 2007 SP2 and SP3... |
| CVE-2012-2553 | 2012-11-14 | Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft... |
| CVE-2012-4775 | 2012-11-14 | Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers... |
| CVE-2012-4776 | 2012-11-14 | The Web Proxy Auto-Discovery (WPAD) functionality in Microsoft .NET Framework... |
| CVE-2012-4777 | 2012-11-14 | The code-optimization feature in the reflection implementation in Microsoft .NET... |
| CVE-2012-2619 | 2012-11-14 | The Broadcom BCM4325 and BCM4329 Wi-Fi chips, as used in... |
| CVE-2012-3330 | 2012-11-14 | The proxy server in IBM WebSphere Application Server 7.0 before... |
| CVE-2012-3569 | 2012-11-14 | Format string vulnerability in VMware OVF Tool 2.1 on Windows,... |
| CVE-2012-4847 | 2012-11-14 | IBM Cognos Business Intelligence (BI) 8.4 and 8.4.1 allows remote... |
| CVE-2012-4850 | 2012-11-14 | IBM WebSphere Application Server 8.5 Liberty Profile before 8.5.0.1, when... |
| CVE-2012-4851 | 2012-11-14 | Cross-site scripting (XSS) vulnerability in IBM WebSphere Application Server 8.5... |
| CVE-2012-4853 | 2012-11-14 | Cross-site request forgery (CSRF) vulnerability in IBM WebSphere Application Server... |
| CVE-2012-4948 | 2012-11-14 | The default configuration of Fortinet Fortigate UTM appliances uses the... |
| CVE-2012-4949 | 2012-11-14 | SQL injection vulnerability in ESRI ArcGIS 10.1 allows remote authenticated... |
| CVE-2012-4953 | 2012-11-14 | The decomposer engine in Symantec Endpoint Protection (SEP) 11.0, Symantec... |
| CVE-2012-5458 | 2012-11-14 | VMware Workstation 8.x before 8.0.5 and VMware Player 4.x before... |
| CVE-2012-5459 | 2012-11-14 | Untrusted search path vulnerability in VMware Workstation 8.x before 8.0.5... |
| CVE-2012-5860 | 2012-11-14 | Unspecified vulnerability on Oberthur ID-One COSMO 5.2, 5.2a, and 64... |
| CVE-2012-4951 | 2012-11-15 | Multiple SQL injection vulnerabilities in terminal/paramedit.aspx in VeriFone VeriCentre Web... |
| CVE-2012-4954 | 2012-11-15 | The edit-profile page in Vanilla Forums before 2.1a32 allows remote... |
| CVE-2012-4955 | 2012-11-15 | Cross-site scripting (XSS) vulnerability in Dell OpenManage Server Administrator (OMSA)... |
| CVE-2012-5851 | 2012-11-15 | html/parser/XSSAuditor.cpp in WebCore in WebKit, as used in Google Chrome... |
| CVE-2012-4612 | 2012-11-16 | Cross-site scripting (XSS) vulnerability in EMC RSA Data Protection Manager... |
| CVE-2012-4613 | 2012-11-16 | EMC RSA Data Protection Manager Appliance 2.7.x and 3.x before... |
| CVE-2012-5522 | 2012-11-16 | MantisBT before 1.2.12 does not use an expected default value... |
| CVE-2012-5523 | 2012-11-16 | core/email_api.php in MantisBT before 1.2.12 does not properly manage the... |
| CVE-2012-5777 | 2012-11-16 | Eval injection vulnerability in the ReplaceListVars function in the template... |
| CVE-2012-4189 | 2012-11-16 | Cross-site scripting (XSS) vulnerability in Bugzilla 4.1.x and 4.2.x before... |
| CVE-2012-4197 | 2012-11-16 | Bugzilla/Attachment.pm in attachment.cgi in Bugzilla 2.x and 3.x before 3.6.12,... |
| CVE-2012-4198 | 2012-11-16 | The User.get method in Bugzilla/WebService/User.pm in Bugzilla 3.7.x and 4.0.x... |
| CVE-2012-4199 | 2012-11-16 | template/en/default/bug/field-events.js.tmpl in Bugzilla 3.x before 3.6.12, 3.7.x and 4.0.x before... |
| CVE-2012-5881 | 2012-11-16 | Cross-site scripting (XSS) vulnerability in the Flash component infrastructure in... |
| CVE-2012-5882 | 2012-11-16 | Cross-site scripting (XSS) vulnerability in the Flash component infrastructure in... |
| CVE-2012-5883 | 2012-11-16 | Cross-site scripting (XSS) vulnerability in the Flash component infrastructure in... |
| CVE-2012-5884 | 2012-11-16 | The User.get method in Bugzilla/WebService/User.pm in Bugzilla 4.3.2 allows remote... |
| CVE-2012-2733 | 2012-11-16 | java/org/apache/coyote/http11/InternalNioInputBuffer.java in the HTTP NIO connector in Apache Tomcat 6.x... |
| CVE-2012-5172 | 2012-11-16 | The Asial Monaca Debugger application before 1.4.2 for Android allows... |
| CVE-2012-5856 | 2012-11-17 | Cross-site scripting (XSS) vulnerability in the Uk Cookie (aka uk-cookie)... |
| CVE-2012-5885 | 2012-11-17 | The replay-countermeasure functionality in the HTTP Digest Access Authentication implementation... |
| CVE-2012-5886 | 2012-11-17 | The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x... |
| CVE-2012-5887 | 2012-11-17 | The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x... |
| CVE-2012-5888 | 2012-11-17 | Cross-site scripting (XSS) vulnerability in Basic SEO Features (seo_basics) extension... |
| CVE-2012-5889 | 2012-11-17 | Cross-site scripting (XSS) vulnerability in the powermail extension before 1.6.5... |
| CVE-2012-5890 | 2012-11-17 | The Front End User Registration (sr_feuser_register) extension before 2.6.2 for... |
| CVE-2012-5892 | 2012-11-17 | Havalite CMS 1.1.0 and earlier stores sensitive information under the... |