|
258751
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
App Store in Apple Mac OS X before 10.6.8 creates a log entry containing a user's AppleID password, which might allow local users to obtain sensitive information by reading a log file, as demonstrate…
|
CWE-200
Information Exposure
|
CVE-2011-0197
|
2011-10-27 12:21 |
2011-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258752
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Heap-based buffer overflow in Apple Type Services (ATS) in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code via a crafted embedded TrueType font.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0198
|
2011-10-27 12:21 |
2011-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258753
|
- |
|
apple
|
mac_os_x_server
|
Absolute path traversal vulnerability in xftpd in the FTP Server component in Apple Mac OS X before 10.6.8 allows remote attackers to list arbitrary directories by using the root directory as the sta…
|
CWE-22
Path Traversal
|
CVE-2011-0203
|
2011-10-27 12:21 |
2011-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258754
|
- |
|
apple
|
imageio
mac_os_x
mac_os_x_server
|
Heap-based buffer overflow in ImageIO in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JPEG2000 image.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0205
|
2011-10-27 12:21 |
2011-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258755
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The MobileMe component in Apple Mac OS X before 10.6.8 uses a cleartext HTTP session for the Mail application to read e-mail aliases, which allows remote attackers to obtain potentially sensitive ali…
|
CWE-310
Cryptographic Issues
|
CVE-2011-0207
|
2011-10-27 12:21 |
2011-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258756
|
- |
|
apple
|
quicktime
mac_os_x
mac_os_x_server
|
QuickTime in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted sample tables in a movie…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0210
|
2011-10-27 12:21 |
2011-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258757
|
- |
|
apple
|
mac_os_x_server
|
servermgrd in Apple Mac OS X before 10.6.8 allows remote attackers to read arbitrary files, and possibly send HTTP requests to intranet servers or cause a denial of service (CPU and memory consumptio…
|
CWE-399
Resource Management Errors
|
CVE-2011-0212
|
2011-10-27 12:21 |
2011-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258758
|
- |
|
citadel
|
citadel
|
modules/xmpp/serv_xmpp.c in Citadel 7.86 and earlier does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory and CPU consumption…
|
CWE-399
Resource Management Errors
|
CVE-2011-1756
|
2011-10-26 13:00 |
2011-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258759
|
- |
|
redhat
|
jboss_enterprise_application_platform
jboss_enterprise_soa_platform
jboss_seam_2_framework
|
jboss-seam.jar in the JBoss Seam 2 framework 2.2.x and earlier, as distributed in Red Hat JBoss Enterprise SOA Platform 4.3.0.CP04 and 5.1.0 and JBoss Enterprise Application Platform (aka JBoss EAP o…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1484
|
2011-10-26 11:58 |
2011-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258760
|
- |
|
citrix
|
xen
|
Xen 4.1 before 4.1.1 and 4.0 before 4.0.2, when using PCI passthrough on Intel VT-d chipsets that do not have interrupt remapping, allows guest OS users to gain host OS privileges by "using DMA to ge…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1898
|
2011-10-26 11:58 |
2011-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
