Total
13565 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2012-4988 | 1 Xnview | 1 Xnview | 2026-06-16 | 9.3 HIGH | N/A |
| Heap-based buffer overflow in the xjpegls.dll (aka JLS, JPEG-LS, or JPEG lossless) format plugin in XnView 1.99 and 1.99.1 allows remote attackers to execute arbitrary code via a crafted JLS image file. | |||||
| CVE-2012-4987 | 1 Realnetworks | 1 Realplayer | 2026-06-16 | 6.8 MEDIUM | N/A |
| Stack-based buffer overflow in RealNetworks RealPlayer 15.0.5.109 allows user-assisted remote attackers to execute arbitrary code via a crafted ZIP file that triggers incorrect processing of long pathnames by the Watch Folders feature. | |||||
| CVE-2012-4956 | 1 Novell | 1 File Reporter | 2026-06-16 | 10.0 HIGH | N/A |
| Heap-based buffer overflow in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote attackers to execute arbitrary code via a large number of VOL elements in an SRS record. | |||||
| CVE-2012-4953 | 1 Symantec | 3 Antivirus, Endpoint Protection, Scan Engine | 2026-06-16 | 9.3 HIGH | N/A |
| The decomposer engine in Symantec Endpoint Protection (SEP) 11.0, Symantec Endpoint Protection Small Business Edition 12.0, Symantec AntiVirus Corporate Edition (SAVCE) 10.x, and Symantec Scan Engine (SSE) before 5.2.8 does not properly perform bounds checks of the contents of CAB archives, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted file. | |||||
| CVE-2012-4924 | 1 Asus | 2 Ipswcom Activex Component, Net4switch | 2026-06-16 | 9.3 HIGH | N/A |
| Buffer overflow in the CxDbgPrint function in the ipswcom.dll ActiveX component 1.0.0.1 for ASUS Net4Switch 1.0.0020 allows remote attackers to execute arbitrary code via a long parameter to the Alert method. | |||||
| CVE-2012-4914 | 1 Coolpdf | 1 Coolpdf | 2026-06-16 | 9.3 HIGH | N/A |
| Stack-based buffer overflow in the reader in CoolPDF 3.0.2.256 allows remote attackers to execute arbitrary code via a PDF document with a crafted stream. | |||||
| CVE-2012-4896 | 1 Sumatrapdfreader | 1 Sumatrapdf | 2026-06-16 | 9.3 HIGH | N/A |
| Heap-based buffer overflow in SumatraPDF before 2.1 allows remote attackers to execute arbitrary code via a crafted PDF document, a different vulnerability than CVE-2012-4895. | |||||
| CVE-2012-4895 | 1 Sumatrapdfreader | 1 Sumatrapdf | 2026-06-16 | 9.3 HIGH | N/A |
| Heap-based buffer overflow in SumatraPDF before 2.1 allows remote attackers to execute arbitrary code via a crafted PDF document, a different vulnerability than CVE-2012-4896. | |||||
| CVE-2012-4894 | 1 Google | 1 Sketchup | 2026-06-16 | 9.3 HIGH | N/A |
| Google SketchUp before 8.0.14346 (aka 8 Maintenance 3) allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted SKP file. | |||||
| CVE-2012-4886 | 1 Kingsoft | 1 Office 2012 | 2026-06-16 | 10.0 HIGH | N/A |
| Stack-based buffer overflow in wpsio.dll in Kingsoft WPS Office 2012 possibly 8.1.0.3238 allows remote attackers to execute arbitrary code via a long BSTR string. | |||||
| CVE-2012-4876 | 1 Trendnet | 2 Securview Wireless Internet Camera, Securview Wireless Internet Camera Activex Control | 2026-06-16 | 10.0 HIGH | N/A |
| Stack-based buffer overflow in the UltraMJCam ActiveX Control in TRENDnet SecurView TV-IP121WN Wireless Internet Camera allows remote attackers to execute arbitrary code via a long string to the OpenFileDlg method. | |||||
| CVE-2012-4875 | 1 Artifex | 1 Gpl Ghostscript | 2026-06-16 | 9.3 HIGH | N/A |
| Heap-based buffer overflow in gdevwpr2.c in Ghostscript 9.04, when processing the OutputFile device parameter, allows user-assisted remote attackers to execute arbitrary code via a long file name in a PostScript document. NOTE: as of 20120314, the developer was not able to reproduce the issue and disputed it | |||||
| CVE-2012-4865 | 1 Oreans | 1 Themida | 2026-06-16 | 9.3 HIGH | N/A |
| Buffer overflow in Oreans Themida 2.1.8.0 allows remote attackers to execute arbitrary code via a crafted .TMD file. | |||||
| CVE-2012-4857 | 1 Ibm | 1 Informix Dynamic Server | 2026-06-16 | 9.0 HIGH | N/A |
| Buffer overflow in IBM Informix 11.50 through 11.50.xC9W2 and 11.70 before 11.70.xC7 allows remote authenticated users to execute arbitrary code via a crafted SQL statement. | |||||
| CVE-2012-4826 | 1 Ibm | 1 Db2 | 2026-06-16 | 8.5 HIGH | N/A |
| Stack-based buffer overflow in the SQL/PSM (aka SQL Persistent Stored Module) Stored Procedure (SP) infrastructure in IBM DB2 9.1, 9.5, 9.7 before FP7, 9.8, and 10.1 might allow remote authenticated users to execute arbitrary code by debugging a stored procedure. | |||||
| CVE-2012-4750 | 1 Ezhometech | 1 Ezserver | 2026-06-16 | 7.5 HIGH | 9.8 CRITICAL |
| A Code Execution vulnerability exists in the memcpy function when processing AMF requests in Ezhometech EzServer 7.0, which could let a remote malicious user execute arbitrary code or cause a Denial of Service | |||||
| CVE-2012-4729 | 1 Wftpserver | 1 Wing Ftp Server | 2026-06-16 | 6.8 MEDIUM | N/A |
| Wing FTP Server before 4.1.1 allows remote authenticated users to cause a denial of service (daemon crash) via two zip commands. | |||||
| CVE-2012-4715 | 1 Rockwellautomation | 1 Rslinx Enterprise | 2026-06-16 | 10.0 HIGH | N/A |
| Buffer overflow in LogReceiver.exe in Rockwell Automation RSLinx Enterprise CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a UDP packet with a certain integer length value that is (1) too large or (2) too small, leading to improper handling by Logger.dll. | |||||
| CVE-2012-4711 | 1 Wellintech | 1 Kingview | 2026-06-16 | 10.0 HIGH | N/A |
| Buffer overflow in kingMess.exe 65.20.2003.10300 in WellinTech KingView 6.52, kingMess.exe 65.20.2003.10400 in KingView 6.53, and kingMess.exe 65.50.2011.18049 in KingView 6.55 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted packet. | |||||
| CVE-2012-4709 | 1 Invensys | 1 Wonderware Intouch | 2026-06-16 | 6.9 MEDIUM | N/A |
| Invensys Wonderware InTouch HMI 2012 R2 and earlier allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue. | |||||