|
296091
|
- |
|
bzip
|
bzip2
|
The bzexe command in bzip2 1.0.5 and earlier generates compressed executables that do not properly handle temporary files during extraction, which allows local users to execute arbitrary code by prec…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4089
|
2024-11-21 10:31 |
2014-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296092
|
- |
|
redhat
qemu
|
enterprise_linux_server_supplementary
enterprise_linux
qemu
|
Buffer overflow in the ccid_card_vscard_handle_message function in hw/ccid-card-passthru.c in QEMU before 0.15.2 and 1.x before 1.0-rc4 allows remote attackers to cause a denial of service (crash) an…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4111
|
2024-11-21 10:31 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296093
|
- |
|
redhat
|
sos
|
The sosreport utility in the Red Hat sos package before 1.7-9 and 2.x before 2.2-17 includes (1) Certificate-based Red Hat Network private entitlement keys and the (2) private key for the entitlement…
|
CWE-310
Cryptographic Issues
|
CVE-2011-4083
|
2024-11-21 10:31 |
2014-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296094
|
- |
|
oracle
armin_burgmeier
opensuse_project
opensuse
|
solaris
net6
opensuse
|
Integer overflow in inc/server.hpp in libnet6 (aka net6) before 1.3.14 might allow remote attackers to hijack connections and gain privileges as other users by making a large number of connections un…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2011-4093
|
2024-11-21 10:31 |
2014-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296095
|
- |
|
ubuntu_developers
|
obby
|
obby (aka libobby) does not verify SSL server certificates, which allows remote attackers to spoof servers via an arbitrary certificate.
|
CWE-20
Improper Input Validation
|
CVE-2011-4092
|
2024-11-21 10:31 |
2014-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296096
|
- |
|
opensuse
oracle
armin_burgmeier
|
opensuse
solaris
net6
|
The libobby server in inc/server.hpp in libnet6 (aka net6) before 1.3.14 does not perform authentication before checking the user name, which allows remote attackers to obtain sensitive information s…
|
CWE-287
Improper Authentication
|
CVE-2011-4091
|
2024-11-21 10:31 |
2014-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296097
|
- |
|
libcap
|
libcap
|
The capsh program in libcap before 2.22 does not change the current working directory when the --chroot option is specified, which allows local users to bypass the chroot restrictions via unspecified…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4099
|
2024-11-21 10:31 |
2014-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296098
|
- |
|
ffmpeg
|
ffmpeg
|
The dirac_decode_data_unit function in libavcodec/diracdec.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via a crafted value in the reference pictures number.
|
NVD-CWE-noinfo
|
CVE-2011-3950
|
2024-11-21 10:31 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296099
|
- |
|
ffmpeg
|
ffmpeg
|
The dirac_unpack_idwt_params function in libavcodec/diracdec.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via crafted Dirac data.
|
NVD-CWE-noinfo
|
CVE-2011-3949
|
2024-11-21 10:31 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296100
|
- |
|
ffmpeg
|
ffmpeg
|
The ff_h264_decode_sei function in libavcodec/h264_sei.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via crafted Supplemental enhancement information (SEI) data, which…
|
CWE-399
Resource Management Errors
|
CVE-2011-3946
|
2024-11-21 10:31 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
