Design/Logic Flaw

The administrative web interface on Cisco TelePresence Recording Server before 1.8.0 allows remote authenticated users to execute arbitrary commands via unspecified vectors, aka Bug ID CSCth85804...

CVE-2012-3075

The CVE-2012-3075 case concerns Cisco TelePresence Immersive Endpoint Devices prior to 1.7.4. The advisory confirms multiple remote-command-execution vulnerabilities, including exploitation via the Administrative Web interface over TCP 443 and via API/Discovery Protocol, allowing command injectio...

CVE-2012-3864

Puppet before 2.6.17 and 2.7.x before 2.7.18, and Puppet Enterprise before 2.5.2, allows remote authenticated users to read arbitrary files on the puppet master server by leveraging an arbitrary user's certificate and private key in a GET request...

Code injection

mod/forum/user.php in Moodle 1.9.x before 1.9.14, 2.0.x before 2.0.5, and 2.1.x before 2.1.2 allows remote authenticated users to discover the names of other users via unspecified vectors...

CVE-2011-4304

CVE-2011-4304 affects Moodle chat functionality (versions 2.0.x prior to 2.0.5 and 2.1.x prior to 2.1.2). The cited issue enables remote authenticated users to discover the name of another user via a beep operation. The PT-2012-1852 entry confirms affected versions and provides remediation guidan...

DEBIAN-CVE-2012-3812

Double free vulnerability in apps/appvoicemail.c in Asterisk Open Source 1.8.x before 1.8.13.1 and 10.x before 10.5.2, Certified Asterisk 1.8.11-certx before 1.8.11-cert4, and Asterisk Digiumphones 10.x.x-digiumphones before 10.5.2-digiumphones allows remote authenticated users to cause a denial ...

Default credentials

389 Directory Server before 1.2.11.6 aka Red Hat Directory Server before 8.2.10-3, when the password of a LDAP user has been changed and audit logging is enabled, saves the new password to the log in plain text, which allows remote authenticated users to read the password...

CVE-2012-2746

389 Directory Server before 1.2.11.6 aka Red Hat Directory Server before 8.2.10-3, when the password of a LDAP user has been changed and audit logging is enabled, saves the new password to the log in plain text, which allows remote authenticated users to read the password...

CVE-2012-2015

Unspecified vulnerability in HP System Management Homepage SMH before 7.1.1 allows remote authenticated users to gain privileges and obtain sensitive information via unknown vectors...

Code injection

Unspecified vulnerability in HP System Management Homepage SMH before 7.1.1 allows remote authenticated users to gain privileges and obtain sensitive information via unknown vectors...

CVE-2012-2014

HP System Management Homepage SMH before 7.1.1 does not properly validate input, which allows remote authenticated users to have an unspecified impact via unknown vectors...

CVE-2012-2385

The terminal dispatcher in mosh before 1.2.1 allows remote authenticated users to cause a denial of service long loop and CPU consumption via an escape sequence with a large repeat count value...

CVE-2012-1121

MantisBT before 1.2.9 does not properly check permissions, which allows remote authenticated users with manager privileges to 1 modify or 2 delete global categories...

QNAP Turbo NAS Multiple Vulnerabilities - Security Advisory

Sense of Security - Security Advisory - SOS-12-006 Release Date. 13-Jun-2012 Last Update. - Vendor Notification Date. 12-Mar-2012 Product. QNAP Platform. Turbo NAS verified and possibly others Affected versions. Firmware Version: 3.6.1 Build 0302T and prior Severity Rating. High Impact. Exposure ...

freeradius: does not respect expired passwords when using the unix module

modules/rlmunix/rlmunix.c in FreeRADIUS before 2.2.0, when unix mode is enabled for user authentication, does not properly check the password expiration in /etc/shadow, which allows remote authenticated users to authenticate using an expired password...

CVE-2012-3553

CVE-2012-3553 affects Asterisk Open Source 10.x prior to 10.5.1, specifically chan_skinny.c (Skinny/SCCP channel driver). A NULL pointer dereference in off-hook state when a Station Key Pad Button message is closed can be exploited by remote authenticated users to crash the server (DoS). Remediat...

CVE-2012-2692

MantisBT before 1.2.11 does not check the deleteattachmentsthreshold permission when formsecurityvalidation is set to OFF, which allows remote authenticated users with certain privileges to bypass intended access restrictions and delete arbitrary attachments...

CVE-2012-2692

MantisBT versions before 1.2.11 are vulnerable: when form_security_validation is OFF, delete_attachments_threshold permission is not enforced, allowing remote authenticated users with certain privileges to delete arbitrary attachments. Root cause: missing permission check in delete path. Impact: ...

QNAP Command Injection Vulnerability

Exploit for hardware platform in category dos / poc QNAP Turbo NAS with firmware versions 3.6.1 Build 0302T and below suffer from a command injection vulnerability that allows for remote code execution. Product. QNAP Platform. Turbo NAS verified and possibly others Affected versions. Firmware...

CVE-2012-1828

AutoFORM PDM Archive/AutoFORM PDM Archive before 7.1 allows remote authenticated users to perform administrative actions due to missing authorization for hidden administrative functions (e.g., password-change). The issue is tied to the hidden function exposure and is addressed by vendor updates: ...