|
263781
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Format string vulnerability in the debug-logging feature in Application Firewall in Apple Mac OS X before 10.7.2 allows local users to gain privileges via a crafted name of an executable file.
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2011-0185
|
2012-01-14 12:51 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263782
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
CoreMedia in Apple Mac OS X through 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted QuickTime movie file.
|
CWE-94
Code Injection
|
CVE-2011-0224
|
2012-01-14 12:51 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263783
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Apple Type Services (ATS) in Apple Mac OS X through 10.6.8 does not properly handle embedded Type 1 fonts, which allows remote attackers to execute arbitrary code via a crafted document that triggers…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0229
|
2012-01-14 12:51 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263784
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Buffer overflow in the ATSFontDeactivate API in Apple Type Services (ATS) in Apple Mac OS X before 10.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (application c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0230
|
2012-01-14 12:51 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263785
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
CFNetwork in Apple Mac OS X before 10.7.2 does not properly follow an intended cookie-storage policy, which makes it easier for remote web servers to track users via a cookie, related to a "synchroni…
|
CWE-200
Information Exposure
|
CVE-2011-0231
|
2012-01-14 12:51 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263786
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The CoreProcesses component in Apple Mac OS X 10.7 before 10.7.2 does not prevent a system window from receiving keystrokes in the locked-screen state, which might allow physically proximate attacker…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-0260
|
2012-01-14 12:51 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263787
|
- |
|
finaldraft
|
finaldraft
|
Stack-based buffer overflow in Final Draft 8 before 8.02 allows remote attackers to execute arbitrary code via a crafted SmartType element, a different vulnerability than CVE-2011-5002. NOTE: the pr…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-5059
|
2012-01-13 14:00 |
2012-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263788
|
- |
|
pukiwiki
|
pukiwiki_plus\!
|
Cross-site scripting (XSS) vulnerability in plugin/comment.inc.php in PukiWiki Plus! 1.4.7plus-u2-i18n and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vecto…
|
CWE-79
Cross-site Scripting
|
CVE-2011-3990
|
2012-01-12 14:00 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263789
|
- |
|
sielcosistemi
|
winlog_lite
winlog_pro
|
Buffer overflow in Sielco Sistemi Winlog PRO before 2.07.09 and Winlog Lite before 2.07.09 allows user-assisted remote attackers to execute arbitrary code via invalid data in unspecified fields of a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4037
|
2012-01-12 14:00 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263790
|
- |
|
pmwiki
|
pmwiki
|
The PageListSort function in scripts/pagelist.php in PmWiki 2.x before 2.2.35 allows remote attackers to execute arbitrary code via PHP sequences in a crafted order parameter in a pagelist directive,…
|
CWE-94
Code Injection
|
CVE-2011-4453
|
2012-01-12 14:00 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
