|
263481
|
- |
|
siemens
|
automation_license_manager
|
Absolute path traversal vulnerability in the ALMListView.ALMListCtrl ActiveX control in almaxcx.dll in the graphical user interface in Siemens Automation License Manager (ALM) 2.0 through 5.1+SP1+Upd…
|
CWE-22
Path Traversal
|
CVE-2011-4532
|
2012-01-9 14:00 |
2012-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263482
|
- |
|
invensys
|
wonderware_inbatch
|
Multiple buffer overflows in the (1) GUIControls, (2) BatchObjSrv, and (3) BatchSecCtrl ActiveX controls in Invensys Wonderware InBatch 9.0 and 9.0 SP1, and InBatch 8.1 SP1, 9.0 SP2, and 9.5 Server a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4870
|
2012-01-9 14:00 |
2012-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263483
|
- |
|
apache
|
activemq
|
Apache ActiveMQ before 5.6.0 allows remote attackers to cause a denial of service (file-descriptor exhaustion and broker crash or hang) by sending many openwire failover:tcp:// connection requests.
|
CWE-399
Resource Management Errors
|
CVE-2011-4905
|
2012-01-6 04:13 |
2012-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263484
|
- |
|
semanticscuttle
|
semanticscuttle
|
Multiple cross-site request forgery (CSRF) vulnerabilities in SemanticScuttle before 0.91 allow remote attackers to (1) hijack the authentication of administrators via unknown vectors or (2) hijack t…
|
CWE-352
Origin Validation Error
|
CVE-2009-0708
|
2012-01-5 14:00 |
2009-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263485
|
- |
|
eeye
|
digital_security_audits
retina_network_security_scanner
|
eEye Audit ID 2499 in eEye Digital Security Audits 2406 through 2423 for eEye Retina Network Security Scanner on HP-UX, IRIX, and Solaris allows local users to gain privileges via a Trojan horse gaun…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-3337
|
2012-01-5 02:49 |
2012-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263486
|
- |
|
celeryproject
|
celery
|
Celery 2.1 and 2.2 before 2.2.8, 2.3 before 2.3.4, and 2.4 before 2.4.4 changes the effective id but not the real id during processing of the --uid and --gid arguments to celerybeat, celeryd_detach, …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4356
|
2012-01-4 01:38 |
2011-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263487
|
- |
|
ibm
|
rational_asset_manager
|
Cross-site scripting (XSS) vulnerability in IBM Rational Asset Manager before 7.5.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-4708
|
2012-01-3 14:00 |
2011-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263488
|
- |
|
novell
|
xtier_framework
|
Multiple integer overflows in the HTTP server in the Novell XTier framework 3.1.8 allow remote attackers to cause a denial of service (service crash) or possibly execute arbitrary code via crafted he…
|
CWE-189
Numeric Errors
|
CVE-2011-1710
|
2012-01-2 14:00 |
2011-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263489
|
- |
|
tor
|
tor
|
Tor before 0.2.2.24-alpha continues to use a reachable bridge that was previously configured but is not currently configured, which might allow remote attackers to obtain sensitive information about …
|
CWE-200
Information Exposure
|
CVE-2011-4896
|
2011-12-30 14:00 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263490
|
- |
|
tor
|
tor
|
Tor before 0.2.2.25-alpha, when configured as a relay without the Nickname configuration option, uses the local hostname as the Nickname value, which allows remote attackers to obtain potentially sen…
|
CWE-200
Information Exposure
|
CVE-2011-4897
|
2011-12-30 14:00 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
