|
263771
|
- |
|
paristemi
|
paristemi
|
Multiple PHP remote file inclusion vulnerabilities in Paristemi 0.8.3 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the SERVER_DIRECTORY parameter to unspecified scrip…
|
CWE-94
Code Injection
|
CVE-2006-6689
|
2011-09-8 13:00 |
2006-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263772
|
- |
|
papoo
|
papoo
|
Multiple SQL injection vulnerabilities in Papoo 2.1.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) menuid parameter to (a) index.php and (b) guestbook.php, and the…
|
CWE-89
SQL Injection
|
CVE-2005-4478
|
2011-09-8 13:00 |
2005-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263773
|
- |
|
ffmpeg
mplayerhq
|
ffmpeg
mplayer
|
The VC-1 decoding functionality in FFmpeg before 0.5.4, as used in MPlayer and other products, does not properly restrict read operations, which allows remote attackers to have an unspecified impact …
|
CWE-20
Improper Input Validation
|
CVE-2011-2160
|
2011-09-7 12:17 |
2011-05-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263774
|
- |
|
nrl
|
opie
|
Multiple off-by-one errors in opiesu.c in opiesu in OPIE 2.4.1-test1 and earlier might allow local users to gain privileges via a crafted command line.
|
CWE-189
Numeric Errors
|
CVE-2011-2489
|
2011-09-7 12:17 |
2011-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263775
|
- |
|
nrl
|
opie
|
opielogin.c in opielogin in OPIE 2.4.1-test1 and earlier does not check the return value of the setuid system call, which allows local users to gain privileges by arranging for an account to already …
|
CWE-20
Improper Input Validation
|
CVE-2011-2490
|
2011-09-7 12:17 |
2011-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263776
|
- |
|
digium
|
asterisk
|
chan_sip.c in the SIP channel driver in Asterisk Open Source 1.4.x before 1.4.41.2, 1.6.2.x before 1.6.2.18.2, and 1.8.x before 1.8.4.4, and Asterisk Business Edition C.3.x before C.3.7.3, disregards…
|
CWE-200
Information Exposure
|
CVE-2011-2536
|
2011-09-7 12:17 |
2011-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263777
|
- |
|
provideo
|
alarm_activex_control
gmax_activex_control
paxplayer_activex_control
|
Multiple buffer overflows in the Provideo ActiveX controls allow remote attackers to execute arbitrary code via crafted input fields, as demonstrated by (1) a long strIp argument to the voice method …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-2591
|
2011-09-7 12:17 |
2011-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263778
|
- |
|
opera
|
opera_browser
|
Unspecified vulnerability in Opera before 11.50 has unknown impact and attack vectors, related to a "moderately severe issue."
|
NVD-CWE-noinfo
|
CVE-2011-2610
|
2011-09-7 12:17 |
2011-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263779
|
- |
|
digium
|
asterisk
|
reqresp_parser.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.4.3 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a SIP pack…
|
NVD-CWE-Other
|
CVE-2011-2665
|
2011-09-7 12:17 |
2011-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263780
|
- |
|
digium
|
asterisk
|
Per: http://cwe.mitre.org/data/definitions/476.html
'CWE-476: NULL Pointer Dereference'
|
NVD-CWE-Other
|
CVE-2011-2665
|
2011-09-7 12:17 |
2011-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
