|
306801
|
- |
|
marcus_schafer
novell
|
kiwi
suse_studio_onsite
|
Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows remote attackers to execute arbitrary code via a crafted filename for a custom RPM.
|
NVD-CWE-noinfo
|
CVE-2011-2645
|
2024-11-21 10:28 |
2011-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306802
|
- |
|
marcus_schafer
novell
|
kiwi
suse_studio_onsite
|
Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, relate…
|
CWE-79
Cross-site Scripting
|
CVE-2011-2644
|
2024-11-21 10:28 |
2011-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306803
|
- |
|
hp
|
openview_performance_insight
|
Cross-site scripting (XSS) vulnerability in HP OpenView Performance Insight 5.3, 5.31, 5.4, 5.41, 5.41.001, and 5.41.002 allows remote attackers to inject arbitrary web script or HTML via unspecified…
|
CWE-79
Cross-site Scripting
|
CVE-2011-2410
|
2024-11-21 10:28 |
2011-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306804
|
- |
|
emc
|
rsa_adaptive_authentication_on-premise
|
EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 SP1 Patch 2, SP1 Patch 3, SP2, SP2 Patch 1, and SP3 does not prevent reuse of authentication information during a session, which allows remot…
|
CWE-287
Improper Authentication
|
CVE-2011-2733
|
2024-11-21 10:28 |
2011-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306805
|
- |
|
mozilla
|
firefox
thunderbird
seamonkey
|
The appendChild function in Mozilla Firefox before 3.6.20, Thunderbird 3.x before 3.1.12, SeaMonkey 2.x, and possibly other products does not properly handle DOM objects, which allows remote attacker…
|
CWE-94
Code Injection
|
CVE-2011-2378
|
2024-11-21 10:28 |
2011-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306806
|
- |
|
isc
debian
canonical
|
dhcp
debian_linux
ubuntu_linux
|
The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service (daemon exit) via a crafted BOOTP packet.
|
CWE-20
Improper Input Validation
|
CVE-2011-2749
|
2024-11-21 10:28 |
2011-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306807
|
- |
|
isc
canonical
debian
|
dhcp
ubuntu_linux
debian_linux
|
The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-ESV-R3 allows remote attackers to cause a denial of service (daemon exit) via a crafted DHCP packet.
|
CWE-20
Improper Input Validation
|
CVE-2011-2748
|
2024-11-21 10:28 |
2011-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306808
|
- |
|
apache
|
tomcat
apache_commons_daemon
|
native/unix/native/jsvc-unix.c in jsvc in the Daemon component 1.0.3 through 1.0.6 in Apache Commons, as used in Apache Tomcat 5.5.32 through 5.5.33, 6.0.30 through 6.0.32, and 7.0.x before 7.0.20 on…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2729
|
2024-11-21 10:28 |
2011-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306809
|
- |
|
apache
|
tomcat
|
Apache Tomcat 7.0.x before 7.0.17 permits web applications to replace an XML parser used for other web applications, which allows local users to read or modify the (1) web.xml, (2) context.xml, or (3…
|
NVD-CWE-Other
|
CVE-2011-2481
|
2024-11-21 10:28 |
2011-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306810
|
- |
|
adobe
|
flash_player
adobe_air
|
Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 on Android, and Adobe AIR before 2.7.1 on Windows and Mac OS X and before 2.7.1.1961 on Android, al…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-2424
|
2024-11-21 10:28 |
2011-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
