|
301541
|
- |
|
flashtux
|
weechat
|
Wee Enhanced Environment for Chat (aka WeeChat) 0.3.4 and earlier does not properly verify that the server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in…
|
CWE-20
Improper Input Validation
|
CVE-2011-1428
|
2024-11-21 10:26 |
2011-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301542
|
- |
|
kodak
|
insite
|
Multiple cross-site scripting (XSS) vulnerabilities in Kodak InSite 5.5.2 allow remote attackers to inject arbitrary web script or HTML via the (1) Language parameter to Pages/login.aspx, (2) HeaderW…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1427
|
2024-11-21 10:26 |
2011-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301543
|
- |
|
apache
|
tomcat
|
Apache Tomcat 7.x before 7.0.11, when web.xml has no security constraints, does not follow ServletSecurity annotations, which allows remote attackers to bypass intended access restrictions via HTTP r…
|
NVD-CWE-Other
|
CVE-2011-1419
|
2024-11-21 10:26 |
2011-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301544
|
- |
|
apple
|
iphone_os
apple_tv
tvos
|
The stateless address autoconfiguration (aka SLAAC) functionality in the IPv6 networking implementation in Apple iOS before 4.3 and Apple TV before 4.2 places the MAC address into the IPv6 address, w…
|
CWE-200
Information Exposure
|
CVE-2011-1418
|
2024-11-21 10:26 |
2011-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301545
|
- |
|
apple
|
mac_os_x_server
mac_os_x
iphone_os
|
Integer overflow in QuickLook, as used in Apple Mac OS X before 10.6.7 and MobileSafari in Apple iOS before 4.2.7 and 4.3.x before 4.3.2, allows remote attackers to execute arbitrary code or cause a …
|
CWE-189
Numeric Errors
|
CVE-2011-1417
|
2024-11-21 10:26 |
2011-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301546
|
- |
|
rim
|
blackberry_torch_9800_firmware
blackberry_torch_9800
|
The Research In Motion (RIM) BlackBerry Torch 9800 with firmware 6.0.0.246 allows attackers to read the contents of memory locations via unknown vectors, as demonstrated by Vincenzo Iozzo, Willem Pin…
|
CWE-200
Information Exposure
|
CVE-2011-1416
|
2024-11-21 10:26 |
2011-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301547
|
- |
|
google
|
chrome
|
Google Chrome before 10.0.648.127 on Linux does not properly mitigate an unspecified flaw in an X server, which allows remote attackers to cause a denial of service (application crash) via vectors in…
|
NVD-CWE-noinfo
|
CVE-2011-1413
|
2024-11-21 10:26 |
2011-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301548
|
- |
|
microsoft
|
internet_explorer
|
Unspecified vulnerability in Microsoft Internet Explorer 8 on Windows 7 allows remote attackers to bypass Protected Mode and create arbitrary files by leveraging access to a Low integrity process, as…
|
NVD-CWE-noinfo
|
CVE-2011-1347
|
2024-11-21 10:26 |
2011-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301549
|
- |
|
microsoft
|
internet_explorer
|
Unspecified vulnerability in Microsoft Internet Explorer 8 on Windows 7 allows remote attackers to execute arbitrary code via unknown vectors, as demonstrated by Stephen Fewer as the second of three …
|
NVD-CWE-noinfo
|
CVE-2011-1346
|
2024-11-21 10:26 |
2011-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301550
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialize…
|
NVD-CWE-noinfo
|
CVE-2011-1345
|
2024-11-21 10:26 |
2011-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
