Vulnerabilities > Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2012-08-26 | CVE-2012-3487 | Race Condition vulnerability in Google Tunnelblick Race condition in Tunnelblick 3.3beta20 and earlier allows local users to kill unintended processes by waiting for a specific PID value to be assigned to a target process. | 1.2 |
| 2012-08-26 | CVE-2012-3483 | Race Condition vulnerability in Google Tunnelblick Race condition in the runScript function in Tunnelblick 3.3beta20 and earlier allows local users to gain privileges by replacing a script file. | 6.2 |
| 2012-08-26 | CVE-2011-5119 | Race Condition vulnerability in Comodo Internet Security Multiple race conditions in Comodo Internet Security before 5.8.211697.2124 allow local users to bypass the Defense+ feature via unspecified vectors. | 1.9 |
| 2012-08-26 | CVE-2011-5118 | Race Condition vulnerability in Comodo Internet Security Multiple race conditions in Comodo Internet Security before 5.8.213334.2131 allow local users to bypass the Defense+ feature via unspecified vectors. | 1.9 |
| 2012-08-25 | CVE-2010-5157 | Race Condition vulnerability in Comodo Internet Security Race condition in Comodo Internet Security before 4.1.149672.916 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack. | 6.2 |
| 2012-08-24 | CVE-2011-5117 | Race Condition vulnerability in Sophos products Sophos SafeGuard Enterprise Device Encryption 5.x through 5.50.8.13, Sophos SafeGuard Easy Device Encryption Client 5.50.x, and Sophos Disk Encryption 5.50.x have a delay before removal of (1) out-of-date credentials and (2) invalid credentials, which allows physically proximate attackers to defeat the full-disk encryption feature by leveraging knowledge of these credentials. | 6.9 |
| 2012-08-06 | CVE-2012-1338 | Race Condition vulnerability in Cisco products Cisco IOS 15.0 and 15.1 on Catalyst 3560 and 3750 series switches allows remote authenticated users to cause a denial of service (device reload) by completing local web authentication quickly, aka Bug ID CSCts88664. | 6.3 |
| 2012-07-25 | CVE-2012-3868 | Race Condition vulnerability in ISC Bind 9.9.0/9.9.1 Race condition in the ns_client structure management in ISC BIND 9.9.x before 9.9.1-P2 allows remote attackers to cause a denial of service (memory consumption or process exit) via a large volume of TCP queries. | 4.3 |
| 2012-07-22 | CVE-2012-2737 | Race Condition vulnerability in RAY Stode Accountsservice The user_change_icon_file_authorized_cb function in /usr/libexec/accounts-daemon in AccountsService before 0.6.22 does not properly check the UID when copying an icon file to the system cache directory, which allows local users to read arbitrary files via a race condition. | 1.9 |
| 2012-07-12 | CVE-2012-1174 | Race Condition vulnerability in Linux Systemd 43 The rm_rf_children function in util.c in the systemd-logind login manager in systemd before 44, when logging out, allows local users to delete arbitrary files via a symlink attack on unspecified files, related to "particular records related with user session." | 3.3 |