Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2012-09-25 | CVE-2012-3263 | Unspecified vulnerability in HP Sitescope 11.10/11.11/11.12 Unspecified vulnerability in a SOAP feature in HP SiteScope 11.10 through 11.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1465. | 10.0 |
| 2012-09-25 | CVE-2012-3262 | Unspecified vulnerability in HP Sitescope 11.10/11.11/11.12 Unspecified vulnerability in a SOAP feature in HP SiteScope 11.10 through 11.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1464. | 10.0 |
| 2012-09-25 | CVE-2012-3261 | Unspecified vulnerability in HP Sitescope 11.10/11.11/11.12 Unspecified vulnerability in a SOAP feature in HP SiteScope 11.10 through 11.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1463. | 10.0 |
| 2012-09-25 | CVE-2012-3260 | Unspecified vulnerability in HP Sitescope 11.10/11.11/11.12 Unspecified vulnerability in a SOAP feature in HP SiteScope 11.10 through 11.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1462. | 10.0 |
| 2012-09-25 | CVE-2012-3259 | Unspecified vulnerability in HP Sitescope 11.10/11.11/11.12 Unspecified vulnerability in a SOAP feature in HP SiteScope 11.10 through 11.12 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1461. | 10.0 |
| 2012-09-25 | CVE-2012-3037 | Improper Certificate Validation vulnerability in Siemens products The Siemens SIMATIC S7-1200 2.x PLC does not properly protect the private key of the SIMATIC CONTROLLER Certification Authority certificate, which allows remote attackers to spoof the S7-1200 web server by using this key to create a forged certificate. | 4.3 |
| 2012-09-25 | CVE-2012-3011 | Path Traversal vulnerability in Fultek Wintr Scada 2.0.0/2.5 Directory traversal vulnerability in the web server in Fultek WinTr Scada 4.0.5 and earlier allows remote attackers to read arbitrary files via a crafted request. | 7.8 |
| 2012-09-25 | CVE-2012-2287 | Improper Authentication vulnerability in EMC products The authentication functionality in EMC RSA Authentication Agent 7.1 and RSA Authentication Client 3.5 on Windows XP and Windows Server 2003, when an unspecified configuration exists, allows remote authenticated users to bypass an intended token-authentication step, and establish a login session to a remote host, by leveraging Windows credentials for that host. | 8.5 |
| 2012-09-24 | CVE-2012-5054 | Numeric Errors vulnerability in Adobe Flash Player Integer overflow in the copyRawDataTo method in the Matrix3D class in Adobe Flash Player before 11.4.402.265 allows remote attackers to execute arbitrary code via malformed arguments. | 9.3 |
| 2012-09-24 | CVE-2012-4655 | Improper Input Validation vulnerability in Cisco Secure Desktop The WebLaunch feature in Cisco Secure Desktop before 3.6.6020 does not properly validate binaries that are received by the downloader process, which allows remote attackers to execute arbitrary code via vectors involving (1) ActiveX or (2) Java components, aka Bug IDs CSCtz76128 and CSCtz78204. | 9.3 |