Enterprise Vulnerabilities
From DHS/US-CERT’s National Vulnerability Database CVE-2012-1093
PUBLISHED: 2020-02-21

The init script in the Debian x11-common package before 1:7.6+12 is vulnerable to a symlink attack that can lead to a privilege escalation during package installation.

CVE-2012-0828
PUBLISHED: 2020-02-21

Heap-based buffer overflow in Xchat-WDK before 1499-4 (2012-01-18) xchat 2.8.6 on Maemo architecture could allow remote attackers to cause a denial of service (xchat client crash) or execute arbitrary code via a UTF-8 line from server containing characters outside of the Basic Multilingual Plane (BM…

CVE-2012-0844
PUBLISHED: 2020-02-21

Information-disclosure vulnerability in Netsurf through 2.8 due to a world-readable cookie jar.

CVE-2013-3587
PUBLISHED: 2020-02-21

The HTTPS protocol, as used in unspecified web applications, can encrypt compressed data without properly obfuscating the length of the unencrypted data, which makes it easier for man-in-the-middle attackers to obtain plaintext secret values by observing length differences during a series of guesses…

CVE-2012-6277
PUBLISHED: 2020-02-21

Multiple unspecified vulnerabilities in Autonomy KeyView IDOL before 10.16, as used in Symantec Mail Security for Microsoft Exchange before 6.5.8, Symantec Mail Security for Domino before 8.1.1, Symantec Messaging Gateway before 10.0.1, Symantec Data Loss Prevention (DLP) before 11.6.1, IBM Notes 8….

Leave a comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Top
%d bloggers like this: