259711
|
- |
|
infradead
|
openconnect
|
OpenConnect before 2.26 places the webvpn cookie value in the debugging output, which might allow remote attackers to obtain sensitive information by reading this output, as demonstrated by output po…
|
CWE-200
Information Exposure
|
CVE-2010-3902
|
2011-04-9 12:29 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259712
|
- |
|
ibm
|
websphere_application_server
|
The Plug-in component in IBM WebSphere Application Server (WAS) before 7.0.0.15 does not properly handle trace requests, which has unspecified impact and attack vectors.
|
CWE-20
Improper Input Validation
|
CVE-2011-1309
|
2011-04-7 13:00 |
2011-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259713
|
- |
|
ibm
|
websphere_application_server
|
The Administrative Scripting Tools component in IBM WebSphere Application Server (WAS) 6.1.0.x before 6.1.0.35 and 7.x before 7.0.0.15, when tracing is enabled, places wsadmin command parameters into…
|
CWE-200
Information Exposure
|
CVE-2011-1310
|
2011-04-7 13:00 |
2011-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259714
|
- |
|
ibm
|
websphere_application_server
|
The Security component in IBM WebSphere Application Server (WAS) before 7.0.0.15, when a J2EE 1.4 application is used, determines the security role mapping on the basis of the ibm-application-bnd.xml…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1311
|
2011-04-7 13:00 |
2011-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259715
|
- |
|
ibm
|
websphere_application_server
|
The Administrative Console component in IBM WebSphere Application Server (WAS) 6.1.0.x before 6.1.0.31 and 7.x before 7.0.0.15 does not prevent modifications of the primary admin id, which allows rem…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1312
|
2011-04-7 13:00 |
2011-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259716
|
- |
|
ibm
|
websphere_application_server
|
Double free vulnerability in IBM WebSphere Application Server (WAS) 6.1.0.x before 6.1.0.35 and 7.x before 7.0.0.15 allows remote backend IIOP servers to cause a denial of service (S0C4 ABEND and sto…
|
CWE-399
Resource Management Errors
|
CVE-2011-1313
|
2011-04-7 13:00 |
2011-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259717
|
- |
|
ibm
|
websphere_application_server
|
The Service Integration Bus (SIB) messaging engine in IBM WebSphere Application Server (WAS) before 7.0.0.15 allows remote attackers to cause a denial of service (daemon hang) by performing close ope…
|
CWE-399
Resource Management Errors
|
CVE-2011-1314
|
2011-04-7 13:00 |
2011-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259718
|
- |
|
ibm
|
websphere_application_server
|
Memory leak in the messaging engine in IBM WebSphere Application Server (WAS) before 7.0.0.15 allows remote attackers to cause a denial of service (memory consumption) via network connections associa…
|
CWE-399
Resource Management Errors
|
CVE-2011-1315
|
2011-04-7 13:00 |
2011-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259719
|
- |
|
ibm
|
websphere_application_server
|
The Session Initiation Protocol (SIP) Proxy in the HTTP Transport component in IBM WebSphere Application Server (WAS) before 7.0.0.15 allows remote attackers to cause a denial of service (worker thre…
|
CWE-399
Resource Management Errors
|
CVE-2011-1316
|
2011-04-7 13:00 |
2011-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259720
|
- |
|
ibm
|
websphere_application_server
|
Memory leak in com.ibm.ws.jsp.runtime.WASJSPStrBufferImpl in the JavaServer Pages (JSP) component in IBM WebSphere Application Server (WAS) 6.1.0.x before 6.1.0.37 and 7.x before 7.0.0.15 allows remo…
|
CWE-399
Resource Management Errors
|
CVE-2011-1317
|
2011-04-7 13:00 |
2011-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|