|
294851
|
- |
|
tor
|
tor
|
Tor before 0.2.2.25-alpha, when configured as a relay without the Nickname configuration option, uses the local hostname as the Nickname value, which allows remote attackers to obtain potentially sen…
|
CWE-200
Information Exposure
|
CVE-2011-4897
|
2024-11-21 10:33 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294852
|
- |
|
tor
|
tor
|
Tor before 0.2.2.24-alpha continues to use a reachable bridge that was previously configured but is not currently configured, which might allow remote attackers to obtain sensitive information about …
|
CWE-200
Information Exposure
|
CVE-2011-4896
|
2024-11-21 10:33 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294853
|
- |
|
tor
|
tor
|
Tor before 0.2.2.34, when configured as a bridge, sets up circuits through a process different from the process used by a client, which makes it easier for remote attackers to enumerate bridges by ob…
|
CWE-200
Information Exposure
|
CVE-2011-4895
|
2024-11-21 10:33 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294854
|
- |
|
tor
|
tor
|
Tor before 0.2.2.34, when configured as a bridge, uses direct DirPort access instead of a Tor TLS connection for a directory fetch, which makes it easier for remote attackers to enumerate bridges by …
|
CWE-200
Information Exposure
|
CVE-2011-4894
|
2024-11-21 10:33 |
2011-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294855
|
- |
|
unbound
|
unbound
|
validator/val_nsec3.c in Unbound before 1.4.13p2 does not properly perform proof processing for NSEC3-signed zones, which allows remote DNS servers to cause a denial of service (daemon crash) via a m…
|
CWE-399
Resource Management Errors
|
CVE-2011-4869
|
2024-11-21 10:33 |
2011-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294856
|
- |
|
schneider-electric
|
quantum_ethernet_module_140noe77101
quantum_ethernet_module_140noe77100
quantum_ethernet_module_140noe77111
|
The modbus_125_handler function in the Schneider Electric Quantum Ethernet Module on the NOE 771 device (aka the Quantum 140NOE771* module) allows remote attackers to install arbitrary firmware updat…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4861
|
2024-11-21 10:33 |
2011-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294857
|
- |
|
schneider-electric
|
quantum_ethernet_module_140noe77101
quantum_ethernet_module_140noe77100
quantum_ethernet_module_140noe77111
|
The ComputePassword function in the Schneider Electric Quantum Ethernet Module on the NOE 771 device (aka the Quantum 140NOE771* module) generates the password for the fwupgrade account by performing…
|
CWE-287
Improper Authentication
|
CVE-2011-4860
|
2024-11-21 10:33 |
2011-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294858
|
- |
|
schneider-electric
|
quantum_ethernet_module_140noe77101
quantum_ethernet_module_140cpu65260
quantum_ethernet_module_140cpu65160
quantum_ethernet_module_140noe77100
quantum_ethernet_module_140cpu65150
quan…
|
The Schneider Electric Quantum Ethernet Module, as used in the Quantum 140NOE771* and 140CPU65* modules, the Premium TSXETY* and TSXP57* modules, the M340 BMXNOE01* and BMXP3420* modules, and the STB…
|
NVD-CWE-Other
|
CVE-2011-4859
|
2024-11-21 10:33 |
2011-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294859
|
- |
|
nullsoft
|
winamp
|
Heap-based buffer overflow in the in_mod.dll plugin in Winamp before 5.623 allows remote attackers to execute arbitrary code via crafted song message data in an Impulse Tracker (IT) file. NOTE: some…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4857
|
2024-11-21 10:33 |
2011-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294860
|
- |
|
parallels
|
parallels_plesk_panel
|
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 sends incorrect Content-Type headers for certain resources, which might allow remote attackers to have an unspecified impact by leve…
|
NVD-CWE-Other
|
CVE-2011-4856
|
2024-11-21 10:33 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
