|
295281
|
- |
|
apache
|
qpid
|
Apache Qpid 0.12 does not properly verify credentials during the joining of a cluster, which allows remote attackers to obtain access to the messaging functionality and job functionality of a cluster…
|
CWE-287
Improper Authentication
|
CVE-2011-3620
|
2024-11-21 10:30 |
2012-05-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295282
|
- |
|
cisco
|
secure_access_control_server
|
Multiple cross-site scripting (XSS) vulnerabilities in the Solution Engine in Cisco Secure Access Control Server (ACS) 5.2 allow remote attackers to inject arbitrary web script or HTML via unspecifie…
|
CWE-79
Cross-site Scripting
|
CVE-2011-3317
|
2024-11-21 10:30 |
2012-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295283
|
- |
|
cisco
|
adaptive_security_appliance_software
5500_series_adaptive_security_appliance
|
Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.2 through 8.4 process IKE requests despite a vpnclient mode configuration, which allows remote attackers to obtain potenti…
|
CWE-200
Information Exposure
|
CVE-2011-3309
|
2024-11-21 10:30 |
2012-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295284
|
- |
|
cisco
|
ios_xr
|
The NETIO and IPV4_IO processes in Cisco IOS XR 3.8 through 4.1, as used in Cisco Carrier Routing System and other products, allow remote attackers to cause a denial of service (CPU consumption) via …
|
CWE-20
Improper Input Validation
|
CVE-2011-3295
|
2024-11-21 10:30 |
2012-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295285
|
- |
|
cisco
|
secure_access_control_server
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Solution Engine in Cisco Secure Access Control Server (ACS) 5.2 allow remote attackers to hijack the authentication of administrators…
|
CWE-352
Origin Validation Error
|
CVE-2011-3293
|
2024-11-21 10:30 |
2012-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295286
|
- |
|
cisco
|
ios
|
Cisco IOS 12.4 and 15.0 through 15.2 allows physically proximate attackers to bypass the No Service Password-Recovery feature and read the start-up configuration via unspecified vectors, aka Bug ID C…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-3289
|
2024-11-21 10:30 |
2012-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295287
|
- |
|
cisco
|
adaptive_security_appliance_software
5500_series_adaptive_security_appliance
|
CRLF injection vulnerability in /+CSCOE+/logon.html on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.0 through 8.4 allows remote attackers to inject arbitrary HTTP head…
|
CWE-94
CWE-20
Code Injection
Improper Input Validation
|
CVE-2011-3285
|
2024-11-21 10:30 |
2012-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295288
|
- |
|
cisco
|
carrier_routing_system
|
Cisco Carrier Routing System 3.9.1 allows remote attackers to cause a denial of service (Metro subsystem crash) via a fragmented GRE packet, aka Bug ID CSCts14887.
|
CWE-20
Improper Input Validation
|
CVE-2011-3283
|
2024-11-21 10:30 |
2012-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295289
|
- |
|
apple
|
safari
|
Use-after-free vulnerability in WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption and application cr…
|
CWE-399
Resource Management Errors
|
CVE-2011-3443
|
2024-11-21 10:30 |
2012-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295290
|
- |
|
craig_barratt
|
backuppc
|
Cross-site scripting (XSS) vulnerability in CGI/Browse.pm in BackupPC 3.2.0 and possibly other versions before 3.2.1 allows remote attackers to inject arbitrary web script or HTML via the num paramet…
|
CWE-79
Cross-site Scripting
|
CVE-2011-3361
|
2024-11-21 10:30 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
