259481
|
- |
|
citrix
|
xen
|
Multiple integer overflows in tools/libxc/xc_dom_bzimageloader.c in Xen 3.2, 3.3, 4.0, and 4.1 allow local users to cause a denial of service and possibly execute arbitrary code via a crafted paravir…
|
CWE-189
Numeric Errors
|
CVE-2011-1583
|
2011-08-24 12:17 |
2011-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259482
|
- |
|
digium
|
asterisk asterisknow s800i
|
Multiple stack-based and heap-based buffer overflows in the (1) decode_open_type and (2) udptl_rx_packet functions in main/udptl.c in Asterisk Open Source 1.4.x before 1.4.39.2, 1.6.1.x before 1.6.1.…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1147
|
2011-08-24 12:16 |
2011-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259483
|
- |
|
mark_pilgrim
|
feedparser
|
feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) before 5.0.1 allows remote attackers to cause a denial of service (application crash) via a malformed DOCTYPE declaration.
|
CWE-399
Resource Management Errors
|
CVE-2011-1156
|
2011-08-24 12:16 |
2011-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259484
|
- |
|
mark_pilgrim
|
feedparser
|
Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) 5.x before 5.0.1 allows remote attackers to inject arbitrary web script or HTM…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1157
|
2011-08-24 12:16 |
2011-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259485
|
- |
|
mark_pilgrim
|
feedparser
|
Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) 5.x before 5.0.1 allows remote attackers to inject arbitrary web script or HTM…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1158
|
2011-08-24 12:16 |
2011-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259486
|
- |
|
ruby-lang
|
ruby
|
The VpMemAlloc function in bigdecimal.c in the BigDecimal class in Ruby 1.9.2-p136 and earlier, as used on Apple Mac OS X before 10.6.7 and other platforms, does not properly allocate memory, which a…
|
CWE-189
Numeric Errors
|
CVE-2011-0188
|
2011-08-24 12:15 |
2011-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259487
|
- |
|
ruby-lang
|
ruby
|
Per: http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html
'This issue only affects 64-bit Ruby processes'.
|
CWE-189
Numeric Errors
|
CVE-2011-0188
|
2011-08-24 12:15 |
2011-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259488
|
- |
|
mark_pilgrim
|
feedparser
|
Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) before 5.0 allows remote attackers to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2009-5065
|
2011-08-24 12:06 |
2011-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259489
|
- |
|
postfix
|
postfix
|
The postfix.postinst script in the Debian GNU/Linux and Ubuntu postfix 2.5.5 package grants the postfix user write access to /var/spool/postfix/pid, which might allow local users to conduct symlink a…
|
CWE-59
Link Following
|
CVE-2009-2939
|
2011-08-24 12:02 |
2009-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259490
|
- |
|
apple
|
webkit
|
page/Geolocation.cpp in WebCore in WebKit before r56188 and before 1.2.5 does not properly restrict access to the lastPosition function, which has unspecified impact and remote attack vectors, aka rd…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-1386
|
2011-08-23 13:00 |
2010-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|