|
302821
|
- |
|
sitracker
|
support_incident_tracker
|
Cross-site scripting (XSS) vulnerability in search.php in Support Incident Tracker (aka SiT!) 3.65 allows remote attackers to inject arbitrary web script or HTML via the search_string parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2011-3830
|
2024-11-21 10:31 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302822
|
- |
|
sitracker
|
support_incident_tracker
|
ftp_upload_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to obtain sensitive information via the file name, which reveals the installation path in an error me…
|
CWE-200
Information Exposure
|
CVE-2011-3829
|
2024-11-21 10:31 |
2012-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302823
|
- |
|
linux
suse
|
linux_kernel
linux_enterprise_server
|
The cleanup_journal_tail function in the Journaling Block Device (JBD) functionality in the Linux kernel 2.6 allows local users to cause a denial of service (assertion error and kernel oops) via an e…
|
CWE-20
Improper Input Validation
|
CVE-2011-4132
|
2024-11-21 10:31 |
2012-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302824
|
- |
|
linux
|
linux_kernel
|
The user_update function in security/keys/user_defined.c in the Linux kernel 2.6 allows local users to cause a denial of service (NULL pointer dereference and kernel oops) via vectors related to a us…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4110
|
2024-11-21 10:31 |
2012-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302825
|
- |
|
linux
|
linux_kernel
|
Buffer overflow in the xfs_readlink function in fs/xfs/xfs_vnodeops.c in XFS in the Linux kernel 2.6, when CONFIG_XFS_DEBUG is disabled, allows local users to cause a denial of service (memory corrup…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4077
|
2024-11-21 10:31 |
2012-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302826
|
- |
|
google
|
android
|
Stack-based buffer overflow in libsysutils in Android 2.2.x through 2.2.2 and 2.3.x through 2.3.6 allows user-assisted remote attackers to execute arbitrary code via an application that calls the Fra…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3874
|
2024-11-21 10:31 |
2012-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302827
|
- |
|
rsa
|
envision
|
EMC RSA enVision 4.0 before SP4 P5 and 4.1 before P3 allows remote attackers to obtain sensitive information about environment variables in the web system via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2011-4143
|
2024-11-21 10:31 |
2012-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302828
|
- |
|
google
apple
|
chrome
iphone_os
safari
|
Use-after-free vulnerability in Google Chrome before 16.0.912.77 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to DOM handling.
|
CWE-416
Use After Free
|
CVE-2011-3928
|
2024-11-21 10:31 |
2012-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302829
|
- |
|
google
|
chrome
|
Skia, as used in Google Chrome before 16.0.912.77, does not perform all required initialization of values, which allows remote attackers to cause a denial of service or possibly have unspecified othe…
|
CWE-665
Improper Initialization
|
CVE-2011-3927
|
2024-11-21 10:31 |
2012-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302830
|
- |
|
google
apple
|
chrome
itunes
safari
iphone_os
|
Heap-based buffer overflow in the tree builder in Google Chrome before 16.0.912.77 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.
|
CWE-787
Out-of-bounds Write
|
CVE-2011-3926
|
2024-11-21 10:31 |
2012-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
