Security Vulnerabilities, CVEs, Published In October 2012 (Information Leak)
services/flickr/flickr.c in libsocialweb before 0.25.21 automatically connects to Flickr when no Flickr account is set, which might allow remote attackers to obtain sensitive information via a man-in-the-middle (MITM) attack.
Max CVSS
5.8
EPSS Score
0.21%
Published
2012-10-22
Updated
2017-01-05
Vino 2.28, 2.32, 3.4.2, and earlier allows remote attackers to read clipboard activity by listening on TCP port 5900.
Max CVSS
5.0
EPSS Score
0.60%
Published
2012-10-01
Updated
2017-08-29
The rds_recvmsg function in net/rds/recv.c in the Linux kernel before 3.0.44 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a (1) recvfrom or (2) recvmsg system call on an RDS socket.
Max CVSS
2.1
EPSS Score
0.04%
Published
2012-10-03
Updated
2023-02-13
IBM Rational Business Developer 8.x before 8.0.1.4 allows remote attackers to obtain potentially sensitive information via a connection to a web service created with the Rational Business Developer product.
Max CVSS
5.0
EPSS Score
0.31%
Published
2012-10-01
Updated
2017-08-29
(1) services/twitter/twitter-contact-view.c and (2) services/twitter/twitter-item-view.c in libsocialweb before 0.25.20 automatically connect to Twitter when no Twitter account is set, which might allow remote attackers to obtain sensitive information via a man-in-the-middle (MITM) attack.
Max CVSS
5.8
EPSS Score
0.22%
Published
2012-10-22
Updated
2017-01-05
5 vulnerabilities found