The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
12,638 vulnerabilities with CWE-20
CVE-2012-0068
Wireshark 1.4.x < 1.4.11 and 1.6.x < 1.6.5 - Denial of Service via Novell Capture File
CVE-2012-0067
Wireshark 1.4.x-1.4.10 and 1.6.x-1.6.4 - Denial of Service via Long Packet in AIX iptrace File
CVE-2012-0066
Wireshark 1.4.x < 1.4.11 and 1.6.x < 1.6.5 - Denial of Service via Long Packet in File Parsing
CVE-2012-0041
Wireshark 1.4.x < 1.4.11 and 1.6.x < 1.6.5 - Denial of Service via Long Packet in Capture File
CVE-2012-0163
Microsoft .NET Framework Remote Code Execution via Improper Function Parameter Validation
CVE-2012-0151
HIGH
KEV
Microsoft Windows - Remote Code Execution via Authenticode Signature Verification Bypass
CVSS 7.8
CVE-2012-0146
Microsoft Forefront Unified Access Gateway 2010 SP1 and SP1 Update 1 - Open Redirect via Crafted URL
CVE-2012-0128
HP Onboard Administrator < 3.50 - Open Redirect
CVE-2012-0221
Rockwell Automation FactoryTalk CPR9-SR5 and RSLogix 5000 17-20 - Denial of Service via RNADiagReceiver Service
CVE-2012-0385
Cisco IOS 12.2, 15.0, 15.1, 15.2 - Denial of Service via Malformed Smart Install Message
CVE-2012-1929
Opera < 11.62 - Address Field and Security Dialog Spoofing via Crafted Styling
CVE-2012-1928
Opera < 11.62 - Address Field Spoofing via Page Reload and Redirect
CVE-2012-1927
Opera < 11.62 - Address Field Spoofing via Dialog Window
CVE-2012-1662
CA ARCserve Backup r12.0-SP2, r12.5 < SP2, r15-SP1, r16 < SP1 - Denial of Service via Crafted Network Request
CVE-2012-0710
IBM DB2 <9.1 FP11, <9.5 FP9, <9.7 FP5, <9.8 FP4 - DoS
CVE-2012-0709
IBM DB2 <9.5 FP9, 9.7 FP5, 9.8 FP4 - Privilege Escalation
CVE-2012-1785
Video Embed & Thumbnail Generator < 2.0 - Remote Code Execution via kg_callffmpeg.php
CVE-2012-1783
Tiny Server <= 1.1.9 - Denial of Service via Long GET Request
CVE-2012-0356
Cisco ASA/FWSM <8.5.1.2-4.1.8 - RCE
CVE-2012-0355
Cisco ASA 8.4-8.4(2.11)/8.5-8.5(1.4) DoS via IPv4/IPv6 Packet Processing
CVE-2012-0354
Cisco ASA 8.0-8.6 DoS via Shun Event Trigger
CVE-2012-0353
Cisco ASA < 8.0(5.25), 8.1 < 8.1(2.50), 8.2 < 8.2(5.5), 8.3 < 8.3(2.22), 8.4 < 8.4(2.1), 8.5 < 8.5(1.2) DoS via UDP
CVE-2012-0463
Mozilla Firefox <3.6.28-10.0 - Memory Corruption
CVE-2012-0157
HIGH
Windows win32k.sys - Local Privilege Escalation via PostMessage Function
CVSS 8.4
CVE-2012-0156
Microsoft Windows Vista SP2, Server 2008 SP2/R2/R2 SP1, 7 Gold/SP1 - DoS via DirectWrite Unicode Rendering
Details
Vulnerabilities
12,638
Exploit Likelihood
High