263801
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
CoreMedia in Apple Mac OS X through 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted QuickTime movie file.
|
CWE-94
Code Injection
|
CVE-2011-0224
|
2012-01-14 12:51 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
263802
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Apple Type Services (ATS) in Apple Mac OS X through 10.6.8 does not properly handle embedded Type 1 fonts, which allows remote attackers to execute arbitrary code via a crafted document that triggers…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0229
|
2012-01-14 12:51 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
263803
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Buffer overflow in the ATSFontDeactivate API in Apple Type Services (ATS) in Apple Mac OS X before 10.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (application c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0230
|
2012-01-14 12:51 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
263804
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
CFNetwork in Apple Mac OS X before 10.7.2 does not properly follow an intended cookie-storage policy, which makes it easier for remote web servers to track users via a cookie, related to a "synchroni…
|
CWE-200
Information Exposure
|
CVE-2011-0231
|
2012-01-14 12:51 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
263805
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
The CoreProcesses component in Apple Mac OS X 10.7 before 10.7.2 does not prevent a system window from receiving keystrokes in the locked-screen state, which might allow physically proximate attacker…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-0260
|
2012-01-14 12:51 |
2011-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
263806
|
- |
|
finaldraft
|
finaldraft
|
Stack-based buffer overflow in Final Draft 8 before 8.02 allows remote attackers to execute arbitrary code via a crafted SmartType element, a different vulnerability than CVE-2011-5002. NOTE: the pr…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-5059
|
2012-01-13 14:00 |
2012-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
263807
|
- |
|
pukiwiki
|
pukiwiki_plus\!
|
Cross-site scripting (XSS) vulnerability in plugin/comment.inc.php in PukiWiki Plus! 1.4.7plus-u2-i18n and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vecto…
|
CWE-79
Cross-site Scripting
|
CVE-2011-3990
|
2012-01-12 14:00 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
263808
|
- |
|
sielcosistemi
|
winlog_lite winlog_pro
|
Buffer overflow in Sielco Sistemi Winlog PRO before 2.07.09 and Winlog Lite before 2.07.09 allows user-assisted remote attackers to execute arbitrary code via invalid data in unspecified fields of a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4037
|
2012-01-12 14:00 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
263809
|
- |
|
pmwiki
|
pmwiki
|
The PageListSort function in scripts/pagelist.php in PmWiki 2.x before 2.2.35 allows remote attackers to execute arbitrary code via PHP sequences in a crafted order parameter in a pagelist directive,…
|
CWE-94
Code Injection
|
CVE-2011-4453
|
2012-01-12 14:00 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
263810
|
- |
|
oracle
|
solaris
|
Unspecified vulnerability in Oracle Solaris 9 and 11 Express allows local users to affect confidentiality and integrity via unknown vectors related to xscreensaver.
|
NVD-CWE-noinfo
|
CVE-2011-2292
|
2012-01-12 13:03 |
2011-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|