|
301761
|
- |
|
microsoft
|
windows_server_2008
windows_xp
windows_7
windows_vista
windows_server_2003
windows_2003_server
|
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP…
|
NVD-CWE-Other
|
CVE-2011-1225
|
2024-11-21 10:25 |
2011-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301762
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 and 7 does not properly restrict script access to content from a (1) different domain or (2) different zone, which allows remote attackers to obtain sensitive informatio…
|
CWE-200
Information Exposure
|
CVE-2011-1245
|
2024-11-21 10:25 |
2011-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301763
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6, 7, and 8 does not enforce intended domain restrictions on content access, which allows remote attackers to obtain sensitive information or conduct clickjacking attacks …
|
CWE-1021
Improper Restriction of Rendered UI Layers or Frames
|
CVE-2011-1244
|
2024-11-21 10:25 |
2011-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301764
|
- |
|
microsoft
|
windows_xp
|
The Windows Messenger ActiveX control in msgsc.dll in Microsoft Windows XP SP2 and SP3 allows remote attackers to execute arbitrary code via unspecified vectors that "corrupt the system state," aka "…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1243
|
2024-11-21 10:25 |
2011-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301765
|
- |
|
roy_marples
|
dhcpcd
|
dhcpcd before 5.2.12 allows remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP message.
|
CWE-20
Improper Input Validation
|
CVE-2011-0996
|
2024-11-21 10:25 |
2011-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301766
|
- |
|
mark_pilgrim
|
feedparser
|
Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) 5.x before 5.0.1 allows remote attackers to inject arbitrary web script or HTM…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1158
|
2024-11-21 10:25 |
2011-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301767
|
- |
|
mark_pilgrim
|
feedparser
|
Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) 5.x before 5.0.1 allows remote attackers to inject arbitrary web script or HTM…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1157
|
2024-11-21 10:25 |
2011-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301768
|
- |
|
mark_pilgrim
|
feedparser
|
feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) before 5.0.1 allows remote attackers to cause a denial of service (application crash) via a malformed DOCTYPE declaration.
|
CWE-399
Resource Management Errors
|
CVE-2011-1156
|
2024-11-21 10:25 |
2011-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301769
|
- |
|
gnu
|
glibc
|
locale/programs/locale.c in locale in the GNU C Library (aka glibc or libc6) before 2.13 does not quote its output, which might allow local users to gain privileges via a crafted localization environ…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1095
|
2024-11-21 10:25 |
2011-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301770
|
- |
|
gnu
|
glibc
|
The addmntent function in the GNU C Library (aka glibc or libc6) 2.13 and earlier does not report an error status for failed attempts to write to the /etc/mtab file, which makes it easier for local u…
|
CWE-16
Configuration
|
CVE-2011-1089
|
2024-11-21 10:25 |
2011-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
