CVE-2012-0248
- EPSS 0.29%
- Published 05.06.2012 22:55:07
- Last modified 11.04.2025 00:51:21
ImageMagick 6.7.5-7 and earlier allows remote attackers to cause a denial of service (infinite loop and hang) via a crafted image whose IFD contains IOP tags that all reference the beginning of the IDF.
CVE-2012-0260
- EPSS 1.94%
- Published 05.06.2012 22:55:07
- Last modified 11.04.2025 00:51:21
The JPEGWarningHandler function in coders/jpeg.c in ImageMagick before 6.7.6-3 allows remote attackers to cause a denial of service (memory consumption) via a JPEG image with a crafted sequence of restart markers.
CVE-2012-0247
- EPSS 4.21%
- Published 05.06.2012 22:55:06
- Last modified 11.04.2025 00:51:21
ImageMagick 6.7.5-7 and earlier allows remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via crafted offset and count values in the ResolutionUnit tag in the EXIF IFD0 of an image.
CVE-2011-2517
- EPSS 0.12%
- Published 24.05.2012 23:55:01
- Last modified 11.04.2025 00:51:21
Multiple buffer overflows in net/wireless/nl80211.c in the Linux kernel before 2.6.39.2 allow local users to gain privileges by leveraging the CAP_NET_ADMIN capability during scan operations with a long SSID value.
CVE-2012-1823
- EPSS 94.39%
- Published 11.05.2012 10:15:48
- Last modified 11.04.2025 00:51:21
sapi/cgi/cgi_main.c in PHP before 5.3.12 and 5.4.x before 5.4.2, when configured as a CGI script (aka php-cgi), does not properly handle query strings that lack an = (equals sign) character, which allows remote attackers to execute arbitrary code by ...
- EPSS 0.57%
- Published 03.05.2012 22:55:02
- Last modified 11.04.2025 00:51:21
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.61 and earlier, and 5.5.21 and earlier, allows remote authenticated users to affect availability, related to Server DML.
- EPSS 0.57%
- Published 03.05.2012 22:55:02
- Last modified 11.04.2025 00:51:21
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.61 and earlier, and 5.5.21 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer, a different vulnerability th...
CVE-2012-1703
- EPSS 0.79%
- Published 03.05.2012 22:55:02
- Last modified 11.04.2025 00:51:21
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.61 and earlier, and 5.5.21 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer, a different vulnerability th...
CVE-2011-3045
- EPSS 5.81%
- Published 22.03.2012 16:55:01
- Last modified 09.06.2025 16:15:22
Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and other products, allows remote attackers to cause a denial of service (application crash) or possibly exe...
CVE-2012-0053
- EPSS 70.5%
- Published 28.01.2012 04:05:00
- Last modified 11.04.2025 00:51:21
protocol.c in the Apache HTTP Server 2.2.x through 2.2.21 does not properly restrict header information during construction of Bad Request (aka 400) error documents, which allows remote attackers to obtain the values of HTTPOnly cookies via vectors i...