Vulnerabilities > Resource Management Errors
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2012-11-26 | CVE-2012-6041 | Resource Management Errors vulnerability in Morequick Greenbrowser Double free vulnerability in GreenBrowser before 6.0.1002, when the keyword search bar (F6) is activated, allows remote attackers to execute arbitrary code via a crafted iframe. | 6.8 |
| 2012-11-26 | CVE-2012-2438 | Resource Management Errors vulnerability in Awcm-Cms AR web Content Manager 2.2 ar web content manager (AWCM) 2.2 does not restrict the number of comment records that can be submitted through HTTP requests, which allows remote attackers to cause a denial of service (disk consumption) via the coment parameter to (1) show_video.php or (2) topic.php. | 5.0 |
| 2012-11-24 | CVE-2012-5533 | Resource Management Errors vulnerability in Lighttpd 1.4.31/1.4.32 The http_request_split_value function in request.c in lighttpd before 1.4.32 allows remote attackers to cause a denial of service (infinite loop) via a request with a header containing an empty token, as demonstrated using the "Connection: TE,,Keep-Alive" header. | 5.0 |
| 2012-11-24 | CVE-2012-3433 | Resource Management Errors vulnerability in XEN 4.0.0/4.1.0 Xen 4.0 and 4.1 allows local HVM guest OS kernels to cause a denial of service (domain 0 VCPU hang and kernel panic) by modifying the physical address space in a way that triggers excessive shared page search time during the p2m teardown. | 4.9 |
| 2012-11-21 | CVE-2012-4539 | Resource Management Errors vulnerability in XEN Xen 4.0 through 4.2, when running 32-bit x86 PV guests on 64-bit hypervisors, allows local guest OS administrators to cause a denial of service (infinite loop and hang or crash) via invalid arguments to GNTTABOP_get_status_frames, aka "Grant table hypercall infinite loop DoS vulnerability." | 2.1 |
| 2012-11-21 | CVE-2012-4535 | Resource Management Errors vulnerability in XEN Xen 3.4 through 4.2, and possibly earlier versions, allows local guest OS administrators to cause a denial of service (Xen infinite loop and physical CPU consumption) by setting a VCPU with an "inappropriate deadline." | 1.9 |
| 2012-11-20 | CVE-2012-5529 | Resource Management Errors vulnerability in Firebirdsql Firebird 2.5.0/2.5.1 TraceManager in Firebird 2.5.0 and 2.5.1, when trace is enabled, allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) by preparing an empty dynamic SQL query. | 3.5 |
| 2012-11-14 | CVE-2012-2553 | Resource Management Errors vulnerability in Microsoft products Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, and Windows 7 Gold and SP1 allows local users to gain privileges via a crafted application, aka "Win32k Use After Free Vulnerability." | 7.2 |
| 2012-11-14 | CVE-2012-1887 | Resource Management Errors vulnerability in Microsoft Excel and Office Use-after-free vulnerability in Microsoft Excel 2003 SP3, 2007 SP2 and SP3, and 2010 SP1, and Office 2008 and 2011 for Mac, allows remote attackers to execute arbitrary code via a crafted spreadsheet, aka "Excel SST Invalid Length Use After Free Vulnerability." | 9.3 |
| 2012-11-13 | CVE-2012-1813 | Resource Management Errors vulnerability in C3-Ilex Eoscada eosfailoverservice.exe in C3-ilex EOScada before 11.0.19.2 allows remote attackers to cause a denial of service by sending a large amount of data to TCP port 12000. | 7.8 |