|
305101
|
- |
|
openbsd
|
openssh
|
The key_certify function in usr.bin/ssh/key.c in OpenSSH 5.6 and 5.7, when generating legacy certificates using the -t command-line option in ssh-keygen, does not initialize the nonce field, which mi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-0539
|
2024-11-21 10:24 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305102
|
- |
|
apache
|
tomcat
|
Apache Tomcat 7.0.0 through 7.0.6 and 6.0.0 through 6.0.30 does not enforce the maxHttpHeaderSize limit for requests involving the NIO HTTP connector, which allows remote attackers to cause a denial …
|
CWE-399
Resource Management Errors
|
CVE-2011-0534
|
2024-11-21 10:24 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305103
|
- |
|
adobe
|
flash_player
|
Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0559…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0608
|
2024-11-21 10:24 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305104
|
- |
|
adobe
|
flash_player
|
Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0559…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0607
|
2024-11-21 10:24 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305105
|
- |
|
adobe
|
coldfusion
|
Session fixation vulnerability in Adobe ColdFusion 8.0 through 9.0.1 allows remote attackers to hijack web sessions via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2011-0584
|
2024-11-21 10:24 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305106
|
- |
|
adobe
|
coldfusion
|
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 8.0 through 9.0.1 allows remote attackers to inject arbitrary web script or HTML via the cfform tag.
|
CWE-79
Cross-site Scripting
|
CVE-2011-0583
|
2024-11-21 10:24 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305107
|
- |
|
adobe
|
coldfusion
|
Unspecified vulnerability in the administrator console in Adobe ColdFusion 8.0 through 9.0.1 allows attackers to obtain sensitive information via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2011-0582
|
2024-11-21 10:24 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305108
|
- |
|
adobe
|
coldfusion
|
Multiple CRLF injection vulnerabilities in Adobe ColdFusion 8.0 through 9.0.1 allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified tags.
|
CWE-20
Improper Input Validation
|
CVE-2011-0581
|
2024-11-21 10:24 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305109
|
- |
|
adobe
|
coldfusion
|
Multiple cross-site scripting (XSS) vulnerabilities in the administrator console in Adobe ColdFusion 8.0 through 9.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified ve…
|
CWE-79
Cross-site Scripting
|
CVE-2011-0580
|
2024-11-21 10:24 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305110
|
- |
|
adobe
|
flash_player
|
Adobe Flash Player before 10.2.152.26 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors related to a constructor for an unspecified A…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0578
|
2024-11-21 10:24 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
