CVE List - 2012 / November
Showing 301 - 400 of 436 CVEs for November 2012 (Page 4 of 5)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2012-5839 | 2012-11-21 | Heap-based buffer overflow in the gfxShapedWord::CompressedGlyph::IsClusterStart function in Mozilla Firefox... |
| CVE-2012-5840 | 2012-11-21 | Use-after-free vulnerability in the nsTextEditorState::PrepareEditor function in Mozilla Firefox before... |
| CVE-2012-5841 | 2012-11-21 | Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird... |
| CVE-2012-5842 | 2012-11-21 | Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox... |
| CVE-2012-5843 | 2012-11-21 | Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox... |
| CVE-2012-3512 | 2012-11-21 | Munin before 2.0.6 stores plugin state files that run as... |
| CVE-2012-4409 | 2012-11-21 | Stack-based buffer overflow in the check_file_head function in extra.c in... |
| CVE-2012-4426 | 2012-11-21 | Multiple format string vulnerabilities in mcrypt 2.6.8 and earlier might... |
| CVE-2012-4527 | 2012-11-21 | Stack-based buffer overflow in mcrypt 2.6.8 and earlier allows user-assisted... |
| CVE-2012-4535 | 2012-11-21 | Xen 3.4 through 4.2, and possibly earlier versions, allows local... |
| CVE-2012-4536 | 2012-11-21 | The (1) domain_pirq_to_emuirq and (2) physdev_unmap_pirq functions in Xen 2.2... |
| CVE-2012-4537 | 2012-11-21 | Xen 3.4 through 4.2, and possibly earlier versions, does not... |
| CVE-2012-4539 | 2012-11-21 | Xen 4.0 through 4.2, when running 32-bit x86 PV guests... |
| CVE-2012-5526 | 2012-11-21 | CGI.pm module before 3.63 for Perl does not properly escape... |
| CVE-2012-3513 | 2012-11-21 | munin-cgi-graph in Munin before 2.0.6, when running as a CGI... |
| CVE-2012-2084 | 2012-11-22 | Cross-site scripting (XSS) vulnerability in the Printer, email and PDF... |
| CVE-2012-2211 | 2012-11-22 | Cross-site scripting (XSS) vulnerability in phpgwapi/inc/common_functions_inc.php in eGroupware before 1.8.004.20120405... |
| CVE-2012-5173 | 2012-11-23 | Session fixation vulnerability in BIGACE before 2.7.8 allows remote attackers... |
| CVE-2012-5756 | 2012-11-23 | The IBM WebSphere DataPower XC10 Appliance 2.0.0.0 through 2.0.0.3 and... |
| CVE-2012-5758 | 2012-11-23 | The IBM WebSphere DataPower XC10 Appliance 2.0.0.0 through 2.0.0.3 and... |
| CVE-2012-5759 | 2012-11-23 | The IBM WebSphere DataPower XC10 Appliance 2.0.0.0 through 2.0.0.3 and... |
| CVE-2012-5861 | 2012-11-23 | Multiple SQL injection vulnerabilities on the Sinapsi eSolar Light Photovoltaic... |
| CVE-2012-5862 | 2012-11-23 | login.php on the Sinapsi eSolar Light Photovoltaic System Monitor (aka... |
| CVE-2012-5863 | 2012-11-23 | ping.php on the Sinapsi eSolar Light Photovoltaic System Monitor (aka... |
| CVE-2012-5864 | 2012-11-23 | The management web pages on the Sinapsi eSolar Light Photovoltaic... |
| CVE-2010-1330 | 2012-11-23 | The regular expression engine in JRuby before 1.4.1, when $KCODE... |
| CVE-2011-1096 | 2012-11-23 | The W3C XML Encryption Standard, as used in the JBoss... |
| CVE-2011-2908 | 2012-11-23 | Cross-site request forgery (CSRF) vulnerability in the JMX Console (jmx-console)... |
| CVE-2011-4085 | 2012-11-23 | The servlets invoked by httpha-invoker in JBoss Enterprise Application Platform... |
| CVE-2011-4605 | 2012-11-23 | The (1) JNDI service, (2) HA-JNDI service, and (3) HAJNDIFactory... |
| CVE-2011-5245 | 2012-11-23 | The readFrom function in providers.jaxb.JAXBXmlTypeProvider in RESTEasy before 2.3.2 allows... |
| CVE-2012-0818 | 2012-11-23 | RESTEasy before 2.3.1 allows remote attackers to read arbitrary files... |
| CVE-2012-1167 | 2012-11-23 | The JBoss Server in JBoss Enterprise Application Platform 5.1.x before... |
| CVE-2012-2086 | 2012-11-23 | SQL injection vulnerability in the get_last_conversation_lines function in common/logger.py in... |
| CVE-2012-2377 | 2012-11-23 | JGroups diagnostics service in JBoss Enterprise Portal Platform before 5.2.2,... |
| CVE-2012-3431 | 2012-11-23 | The Teiid Java Database Connectivity (JDBC) socket, as used in... |
| CVE-2012-3494 | 2012-11-23 | The set_debugreg hypercall in include/asm-x86/debugreg.h in Xen 4.0, 4.1, and... |
| CVE-2012-3495 | 2012-11-23 | The physdev_get_free_pirq hypercall in arch/x86/physdev.c in Xen 4.1.x and Citrix... |
| CVE-2012-3496 | 2012-11-23 | XENMEM_populate_physmap in Xen 4.0, 4.1, and 4.2, and Citrix XenServer... |
| CVE-2012-3497 | 2012-11-23 | (1) TMEMC_SAVE_GET_CLIENT_WEIGHT, (2) TMEMC_SAVE_GET_CLIENT_CAP, (3) TMEMC_SAVE_GET_CLIENT_FLAGS and (4) TMEMC_SAVE_END in... |
| CVE-2012-3498 | 2012-11-23 | PHYSDEVOP_map_pirq in Xen 4.1 and 4.2 and Citrix XenServer 6.0.2... |
| CVE-2012-3515 | 2012-11-23 | Qemu, as used in Xen 4.0, 4.1 and possibly other... |
| CVE-2012-3516 | 2012-11-23 | The GNTTABOP_swap_grant_ref sub-operation in the grant table hypercall in Xen... |
| CVE-2012-4411 | 2012-11-23 | The graphical console in Xen 4.0, 4.1 and 4.2 allows... |
| CVE-2012-6030 | 2012-11-23 | The do_tmem_op function in the Transcendent Memory (TMEM) in Xen... |
| CVE-2012-6031 | 2012-11-23 | The do_tmem_get function in the Transcendent Memory (TMEM) in Xen... |
| CVE-2012-6032 | 2012-11-23 | Multiple integer overflows in the (1) tmh_copy_from_client and (2) tmh_copy_to_client... |
| CVE-2012-6033 | 2012-11-23 | The do_tmem_control function in the Transcendent Memory (TMEM) in Xen... |
| CVE-2012-6034 | 2012-11-23 | The (1) tmemc_save_get_next_page and (2) tmemc_save_get_next_inv functions and the (3)... |
| CVE-2012-6035 | 2012-11-23 | The do_tmem_destroy_pool function in the Transcendent Memory (TMEM) in Xen... |
| CVE-2012-6036 | 2012-11-23 | The (1) memc_save_get_next_page, (2) tmemc_restore_put_page and (3) tmemc_restore_flush_page functions in... |
| CVE-2012-4601 | 2012-11-23 | Multiple SQL injection vulnerabilities in Nicola Asuni TCExam before 11.3.009... |
| CVE-2012-4602 | 2012-11-23 | Multiple cross-site scripting (XSS) vulnerabilities in admin/code/tce_select_users_popup.php in Nicola Asuni... |
| CVE-2012-0959 | 2012-11-24 | Remote Login Service (RLS) 1.0.0 does not properly clear account... |
| CVE-2012-0960 | 2012-11-24 | Unity integration extension (unity-firefox-extension) before 2.4.1 for Firefox does not... |
| CVE-2012-2239 | 2012-11-24 | Mahara 1.4.x before 1.4.4 and 1.5.x before 1.5.3 allows remote... |
| CVE-2012-2243 | 2012-11-24 | Cross-site scripting (XSS) vulnerability in Mahara 1.4.x before 1.4.5 and... |
| CVE-2012-2244 | 2012-11-24 | Mahara 1.4.x before 1.4.5 and 1.5.x before 1.5.4 allows remote... |
| CVE-2012-2246 | 2012-11-24 | Mahara 1.4.x before 1.4.5 and 1.5.x before 1.5.4 allows remote... |
| CVE-2012-2247 | 2012-11-24 | Cross-site scripting (XSS) vulnerability in Mahara 1.4.x before 1.4.5 and... |
| CVE-2012-2253 | 2012-11-24 | Cross-site scripting (XSS) vulnerability in group/members.php in Mahara 1.5.x before... |
| CVE-2012-3433 | 2012-11-24 | Xen 4.0 and 4.1 allows local HVM guest OS kernels... |
| CVE-2012-4522 | 2012-11-24 | The rb_get_path_check function in file.c in Ruby 1.9.3 before patchlevel... |
| CVE-2012-4538 | 2012-11-24 | The HVMOP_pagetable_dying hypercall in Xen 4.0, 4.1, and 4.2 does... |
| CVE-2012-5533 | 2012-11-24 | The http_request_split_value function in request.c in lighttpd before 1.4.32 allows... |
| CVE-2012-6037 | 2012-11-24 | Multiple cross-site scripting (XSS) vulnerabilities in Mahara 1.4.x before 1.4.5... |
| CVE-2012-0698 | 2012-11-26 | tcsd in TrouSerS before 0.3.10 allows remote attackers to cause... |
| CVE-2012-2437 | 2012-11-26 | cookie_gen.php in ar web content manager (AWCM) 2.2 does not... |
| CVE-2012-2438 | 2012-11-26 | ar web content manager (AWCM) 2.2 does not restrict the... |
| CVE-2012-5520 | 2012-11-26 | The send_to_sourcefire function in manage_sql.c in OpenVAS Manager 3.x before... |
| CVE-2012-6038 | 2012-11-26 | admin/core/admin_func.php in razorCMS before 1.2.1 does not properly restrict access... |
| CVE-2012-6040 | 2012-11-26 | Cross-site scripting (XSS) vulnerability in users.php in File King Advanced... |
| CVE-2012-6041 | 2012-11-26 | Double free vulnerability in GreenBrowser before 6.0.1002, when the keyword... |
| CVE-2012-6043 | 2012-11-26 | Cross-site scripting (XSS) vulnerability in downloads.php in PHP-Fusion 7.02.04 allows... |
| CVE-2012-6044 | 2012-11-26 | M-Player 0.4 allows remote attackers to cause a denial of... |
| CVE-2012-6039 | 2012-11-26 | SQL injection vulnerability in view_comments.php in YABSoft Advanced Image Hosting... |
| CVE-2012-6042 | 2012-11-26 | GPSMapEdit 1.1.73.2 allows user-assisted remote attackers to cause a denial... |
| CVE-2010-5280 | 2012-11-26 | Directory traversal vulnerability in the Community Builder Enhanced (CBE) (com_cbe)... |
| CVE-2010-5281 | 2012-11-26 | Directory traversal vulnerability in ibrowser.php in the CMScout 2.09 IBrowser... |
| CVE-2010-5282 | 2012-11-26 | Multiple cross-site scripting (XSS) vulnerabilities in OpenText ECM (formerly Livelink... |
| CVE-2010-5283 | 2012-11-26 | Cross-site request forgery (CSRF) vulnerability in OpenText ECM (formerly Livelink... |
| CVE-2010-5284 | 2012-11-26 | Multiple cross-site scripting (XSS) vulnerabilities in Collabtive 0.6.5 allow remote... |
| CVE-2010-5285 | 2012-11-26 | Cross-site request forgery (CSRF) vulnerability in admin.php in Collabtive 0.6.5... |
| CVE-2010-5286 | 2012-11-26 | Directory traversal vulnerability in Jstore (com_jstore) component for Joomla! allows... |
| CVE-2012-6045 | 2012-11-27 | Cross-site scripting (XSS) vulnerability in gb/user/index.php in Ramui Forum, possibly... |
| CVE-2012-6046 | 2012-11-27 | Static code injection vulnerability in admin/banners.php in PHP Enter allows... |
| CVE-2012-6049 | 2012-11-27 | Open Solution Quick.Cart 5.0 allows remote attackers to obtain sensitive... |
| CVE-2012-6050 | 2012-11-27 | The winbox service in MikroTik RouterOS 5.15 and earlier allows... |
| CVE-2012-6047 | 2012-11-27 | Cross-site request forgery (CSRF) vulnerability in X7 Chat 2.0.5.1 and... |
| CVE-2012-6048 | 2012-11-27 | Guitar Pro 6.1.1 r10791 allows remote attackers to cause a... |
| CVE-2012-4611 | 2012-11-27 | Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA Adaptive Authentication... |
| CVE-2012-4614 | 2012-11-27 | The default configuration of EMC Smarts Network Configuration Manager (NCM)... |
| CVE-2012-4615 | 2012-11-27 | EMC Smarts Network Configuration Manager (NCM) before 9.1 uses a... |
| CVE-2012-5130 | 2012-11-28 | Skia, as used in Google Chrome before 23.0.1271.91, allows remote... |
| CVE-2012-5131 | 2012-11-28 | Google Chrome before 23.0.1271.91 on Mac OS X does not... |
| CVE-2012-5132 | 2012-11-28 | Google Chrome before 23.0.1271.91 allows remote attackers to cause a... |
| CVE-2012-5133 | 2012-11-28 | Use-after-free vulnerability in Google Chrome before 23.0.1271.91 allows remote attackers... |
| CVE-2012-5134 | 2012-11-28 | Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in... |
| CVE-2012-5135 | 2012-11-28 | Use-after-free vulnerability in Google Chrome before 23.0.1271.91 allows remote attackers... |
| CVE-2012-5136 | 2012-11-28 | Google Chrome before 23.0.1271.91 does not properly perform a cast... |