|
296371
|
- |
|
apache
|
tomcat
|
The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check qop values, which might allow remote attackers to by…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5062
|
2024-11-21 10:33 |
2012-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296372
|
- |
|
whmcs
|
whmcompletesolution
|
functions.php in WHMCompleteSolution (WHMCS) 4.0.x through 5.0.x allows remote attackers to trigger arbitrary code execution in the Smarty templating system by submitting a crafted ticket, related to…
|
CWE-94
Code Injection
|
CVE-2011-5061
|
2024-11-21 10:33 |
2012-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296373
|
- |
|
roderich_schupp
|
par-packer_module
|
The par_mktmpdir function in the PAR module before 1.003 for Perl creates temporary files in a directory with a predictable name without verifying ownership and permissions of this directory, which a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5060
|
2024-11-21 10:33 |
2012-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296374
|
- |
|
clusterresources
cluster_resources
|
torque_resource_manager
|
Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) before 2.5.9, when munge authentication is used, allows remote authenticated users to impersonate arbitrary user account…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4925
|
2024-11-21 10:33 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296375
|
- |
|
hp
|
diagnostics
|
Stack-based buffer overflow in magentservice.exe in the server in HP LoadRunner 11.00 before patch 4 allows remote attackers to execute arbitrary code via a crafted size value in a packet. NOTE: it …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4789
|
2024-11-21 10:33 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296376
|
- |
|
hp
|
storageworks_p2000_g3_msa_fc\/iscsi_dual_combo_controller_lff_array_system
storageworks_p2000_g3_msa_fibre_channel_dual_controller_lff_array_system
storageworks_p2000_g3_msa_fibre_channel_dual_…
|
Absolute path traversal vulnerability in the web interface on HP StorageWorks P2000 G3 MSA array systems allows remote attackers to read arbitrary files via a pathname in the URI.
|
CWE-22
Path Traversal
|
CVE-2011-4788
|
2024-11-21 10:33 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296377
|
- |
|
hp
|
easy_printer_care_software
|
A certain ActiveX control in HPTicketMgr.dll in HP Easy Printer Care Software 2.5 and earlier allows remote attackers to download an arbitrary program onto a client machine, and execute this program,…
|
CWE-94
Code Injection
|
CVE-2011-4787
|
2024-11-21 10:33 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296378
|
- |
|
hp
|
easy_printer_care_software
|
A certain ActiveX control in HPTicketMgr.dll in HP Easy Printer Care Software 2.5 and earlier allows remote attackers to download an arbitrary program onto a client machine, and execute this program,…
|
CWE-94
Code Injection
|
CVE-2011-4786
|
2024-11-21 10:33 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296379
|
- |
|
finaldraft
|
finaldraft
|
Stack-based buffer overflow in Final Draft 8 before 8.02 allows remote attackers to execute arbitrary code via a crafted SmartType element, a different vulnerability than CVE-2011-5002. NOTE: the pr…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-5059
|
2024-11-21 10:33 |
2012-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296380
|
- |
|
3ssoftware
|
codesys
|
The CmbWebserver.dll module of the Control service in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to create arbitrary directories under the web root by specifying a non-existent directory usin…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5058
|
2024-11-21 10:33 |
2012-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
