Skip to main content
CVE-2012-5672 MEDIUM POC THREAT This Month

Microsoft Excel Viewer (aka Xlview.exe) and Excel in Microsoft Office 2007 (aka Office 12) allow remote attackers to cause a denial of service (read access violation and application crash) via a. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 16.0%.

Denial Of Service Microsoft Excel Excel Viewer Office
NVD Exploit-DB
CVSS 2.0
4.3
EPSS
16.0%
CVE-2012-3940 CRITICAL PATCH Act Now

Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 before LD SP32 EP10 and T28 before T28.4 allows remote attackers to execute arbitrary code via a crafted WRF file, aka Bug ID. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable.

Buffer Overflow RCE Cisco Webex Recording Format Player
NVD
CVSS 2.0
9.3
EPSS
8.2%
CVE-2012-3938 CRITICAL Act Now

Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 before LD SP32 EP10 and T28 before T28.4 allows remote attackers to execute arbitrary code via a crafted WRF file, aka Bug ID. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow RCE Cisco Webex Recording Format Player
NVD
CVSS 2.0
9.3
EPSS
8.2%
CVE-2012-3937 CRITICAL Act Now

Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 before LD SP32 EP10 and T28 before T28.4 allows remote attackers to execute arbitrary code via a crafted WRF file, aka Bug ID. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow RCE Cisco Webex Recording Format Player
NVD
CVSS 2.0
9.3
EPSS
8.2%
CVE-2012-3936 CRITICAL Act Now

Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 before LD SP32 EP10 and T28 before T28.4 allows remote attackers to execute arbitrary code via a crafted WRF file, aka Bug ID. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow RCE Cisco Webex Recording Format Player
NVD
CVSS 2.0
9.3
EPSS
8.2%
CVE-2012-3941 CRITICAL PATCH Act Now

Heap-based buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 before LD SP32 EP10 and T28 before T28.4 allows remote attackers to execute arbitrary code via a crafted WRF file, aka. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable.

Buffer Overflow RCE Cisco Webex Recording Format Player
NVD
CVSS 2.0
9.3
EPSS
7.7%
CVE-2012-3939 CRITICAL PATCH Act Now

Buffer overflow in the Cisco WebEx Recording Format (WRF) player T27 before LD SP32 EP10 and T28 before T28.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable.

Buffer Overflow RCE Denial Of Service Cisco Webex Recording Format Player
NVD
CVSS 2.0
9.3
EPSS
4.7%
CVE-2012-3506 CRITICAL PATCH Act Now

Unspecified vulnerability in the Apache Open For Business Project (aka OFBiz) 10.04.x before 10.04.03 has unknown impact and attack vectors. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity.

Apache Information Disclosure Ofbiz
NVD
CVSS 2.0
10.0
EPSS
0.8%
CVE-2012-5368 MEDIUM PATCH This Month

phpMyAdmin 3.5.x before 3.5.3 uses JavaScript code that is obtained through an HTTP session to phpmyadmin.net without SSL, which allows man-in-the-middle attackers to conduct cross-site scripting. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Phpmyadmin
NVD GitHub
CVSS 2.0
4.3
EPSS
0.4%
CVE-2012-5339 LOW PATCH Monitor

Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 3.5.x before 3.5.3 allow remote authenticated users to inject arbitrary web script or HTML via a crafted name of (1) an event, (2) a. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Phpmyadmin
NVD GitHub
CVSS 2.0
3.5
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy