|
295321
|
- |
|
redhat
|
jboss_enterprise_portal_platform
|
Multiple cross-site scripting (XSS) vulnerabilities in Red Hat JBoss Enterprise Portal Platform before 5.2.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-4580
|
2024-11-21 10:32 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295322
|
- |
|
redhat
|
jboss_enterprise_application_platform
jboss_enterprise_brms_platform
jboss_communications_platform
jboss_enterprise_web_platform
|
JBoss Web, as used in Red Hat JBoss Communications Platform before 5.1.3, Enterprise Web Platform before 5.1.2, Enterprise Application Platform before 5.1.2, and other products, allows remote attacke…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4610
|
2024-11-21 10:32 |
2014-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295323
|
- |
|
canonical
debian
ubuntu
x.org
|
ubuntu_linux
debian_linux
linux
x_server
|
The X.Org X wrapper (xserver-wrapper.c) in Debian GNU/Linux and Ubuntu Linux does not properly verify the TTY of a user who is starting X, which allows local users to bypass intended access restricti…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4613
|
2024-11-21 10:32 |
2014-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295324
|
- |
|
openbsd
|
openssh
|
ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information …
|
CWE-200
Information Exposure
|
CVE-2011-4327
|
2024-11-21 10:32 |
2014-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295325
|
- |
|
ffmpeg
|
ffmpeg
|
Buffer overflow in FFmpeg before 0.5.6, 0.6.x before 0.6.4, 0.7.x before 0.7.8, and 0.8.x before 0.8.8 allows remote attackers to execute arbitrary code via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4351
|
2024-11-21 10:32 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295326
|
- |
|
putty
|
putty
|
PuTTY 0.59 through 0.61 does not clear sensitive process memory when managing user replies that occur during keyboard-interactive authentication, which might allow local users to read login passwords…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4607
|
2024-11-21 10:32 |
2013-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295327
|
- |
|
php
|
php
|
Session fixation vulnerability in the Sessions subsystem in PHP before 5.5.2 allows remote attackers to hijack web sessions by specifying a session ID.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4718
|
2024-11-21 10:32 |
2013-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295328
|
- |
|
linux
|
linux_kernel
|
Race condition in the sctp_rcv function in net/sctp/input.c in the Linux kernel before 2.6.29 allows remote attackers to cause a denial of service (system hang) via SCTP packets. NOTE: in some envir…
|
CWE-362
Race Condition
|
CVE-2011-4348
|
2024-11-21 10:32 |
2013-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295329
|
- |
|
linux
|
linux_kernel
|
The kvm_vm_ioctl_assign_device function in virt/kvm/assigned-dev.c in the KVM subsystem in the Linux kernel before 3.1.10 does not verify permission to access PCI configuration space and BAR resource…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4347
|
2024-11-21 10:32 |
2013-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295330
|
- |
|
linux
|
linux_kernel
|
The bat_socket_read function in net/batman-adv/icmp_socket.c in the Linux kernel before 3.3 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4604
|
2024-11-21 10:32 |
2013-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
