|
302651
|
- |
|
microsoft
|
visio
|
The LZW stream decompression functionality in ORMELEMS.DLL in Microsoft Visio 2002 SP2, 2003 SP3, and 2007 SP2 allows remote attackers to execute arbitrary code via a Visio file with a malformed Visi…
|
CWE-94
Code Injection
|
CVE-2011-0092
|
2024-11-21 10:23 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302652
|
- |
|
microsoft
|
windows_server_2008
windows_7
|
Kerberos in Microsoft Windows Server 2008 R2 and Windows 7 does not prevent a session from changing from strong encryption to DES encryption, which allows man-in-the-middle attackers to spoof network…
|
CWE-287
Improper Authentication
|
CVE-2011-0091
|
2024-11-21 10:23 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302653
|
- |
|
microsoft
|
windows_xp
windows_server_2003
windows_2003_server
|
Kerberos in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 supports weak hashing algorithms, which allows local users to gain privileges by operating a service that sends crafted service ticket…
|
CWE-310
Cryptographic Issues
|
CVE-2011-0043
|
2024-11-21 10:23 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302654
|
- |
|
microsoft
|
internet_explorer
|
Untrusted search path vulnerability in Microsoft Internet Explorer 8 might allow local users to gain privileges via a Trojan horse IEShims.dll in the current working directory, as demonstrated by a D…
|
NVD-CWE-Other
|
CVE-2011-0038
|
2024-11-21 10:23 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302655
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialize…
|
CWE-94
Code Injection
|
CVE-2011-0036
|
2024-11-21 10:23 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302656
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialize…
|
CWE-94
Code Injection
|
CVE-2011-0035
|
2024-11-21 10:23 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302657
|
- |
|
microsoft
|
windows_server_2008
windows_xp
windows_7
windows_vista
windows_server_2003
windows_2003_server
|
The OpenType Compact Font Format (CFF) driver in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not pr…
|
CWE-20
Improper Input Validation
|
CVE-2011-0033
|
2024-11-21 10:23 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302658
|
- |
|
hp
|
power_manager
|
Cross-site request forgery (CSRF) vulnerability in HP Power Manager (HPPM) 4.3.2 and earlier allows remote attackers to hijack the authentication of administrators for requests that create new admini…
|
CWE-352
Origin Validation Error
|
CVE-2011-0277
|
2024-11-21 10:23 |
2011-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302659
|
- |
|
microsoft
|
windows_server_2008
windows_xp
windows_7
windows_vista
windows_server_2003
windows_2003_server
|
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly v…
|
CWE-20
Improper Input Validation
|
CVE-2011-0090
|
2024-11-21 10:23 |
2011-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302660
|
- |
|
microsoft
|
windows_server_2008
windows_xp
windows_7
windows_vista
windows_server_2003
windows_2003_server
|
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly v…
|
CWE-20
Improper Input Validation
|
CVE-2011-0089
|
2024-11-21 10:23 |
2011-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
