|
264021
|
- |
|
cisco
|
show_and_share
|
Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1) allows remote authenticated users to upload and execute arbitrary code by leveraging video upload privileges, aka Bug ID CSCto69857.
|
CWE-94
Code Injection
|
CVE-2011-2585
|
2012-01-12 13:03 |
2011-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264022
|
- |
|
cmscout
|
cmscout
|
SQL injection vulnerability in index.php in CMScout 2.0.8 allows remote attackers to execute arbitrary SQL commands via the album parameter in a photos action.
|
CWE-89
SQL Injection
|
CVE-2010-5059
|
2012-01-10 14:00 |
2011-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264023
|
- |
|
siemens
|
automation_license_manager
|
Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted content in a (1) get_tar…
|
CWE-20
Improper Input Validation
|
CVE-2011-4531
|
2012-01-10 07:52 |
2012-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264024
|
- |
|
siemens
|
automation_license_manager
|
Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 does not properly copy fields obtained from clients, which allows remote attackers to cause a denial of service (exception and daemon…
|
CWE-20
Improper Input Validation
|
CVE-2011-4530
|
2012-01-10 07:51 |
2012-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264025
|
- |
|
maradns
|
maradns
|
MaraDNS 1.3.07.12 and 1.4.08 computes hash values for DNS data without properly restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of serv…
|
CWE-20
Improper Input Validation
|
CVE-2011-5055
|
2012-01-10 03:30 |
2012-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264026
|
- |
|
siemens
|
tecnomatix_factorylink
|
An unspecified ActiveX control in ActBar.ocx in Siemens Tecnomatix FactoryLink 6.6.1 (aka 6.6 SP1), 7.5.217 (aka 7.5 SP2), and 8.0.2.54 allows remote attackers to create or overwrite arbitrary files …
|
NVD-CWE-noinfo
|
CVE-2011-4056
|
2012-01-10 02:55 |
2012-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264027
|
- |
|
siemens
|
automation_license_manager
|
Multiple buffer overflows in Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 allow remote attackers to execute arbitrary code via a long serialid field in an _licensekey command, as…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4529
|
2012-01-9 14:00 |
2012-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264028
|
- |
|
siemens
|
automation_license_manager
|
Absolute path traversal vulnerability in the ALMListView.ALMListCtrl ActiveX control in almaxcx.dll in the graphical user interface in Siemens Automation License Manager (ALM) 2.0 through 5.1+SP1+Upd…
|
CWE-22
Path Traversal
|
CVE-2011-4532
|
2012-01-9 14:00 |
2012-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264029
|
- |
|
invensys
|
wonderware_inbatch
|
Multiple buffer overflows in the (1) GUIControls, (2) BatchObjSrv, and (3) BatchSecCtrl ActiveX controls in Invensys Wonderware InBatch 9.0 and 9.0 SP1, and InBatch 8.1 SP1, 9.0 SP2, and 9.5 Server a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4870
|
2012-01-9 14:00 |
2012-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264030
|
- |
|
apache
|
activemq
|
Apache ActiveMQ before 5.6.0 allows remote attackers to cause a denial of service (file-descriptor exhaustion and broker crash or hang) by sending many openwire failover:tcp:// connection requests.
|
CWE-399
Resource Management Errors
|
CVE-2011-4905
|
2012-01-6 04:13 |
2012-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
