|
302471
|
- |
|
sun
|
sunos
|
Oracle Solaris 8, 9, and 10 stores back-out patch files (undo.Z) unencrypted with world-readable permissions under /var/sadm/pkg/, which allows local users to obtain password hashes and conduct brute…
|
CWE-255
Credentials Management
|
CVE-2011-0412
|
2024-11-21 10:23 |
2011-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302472
|
- |
|
rim
|
blackberry_enterprise_server
blackberry_enterprise_server_express
|
Cross-site scripting (XSS) vulnerability in webdesktop/app in the BlackBerry Web Desktop Manager component in Research In Motion (RIM) BlackBerry Enterprise Server (BES) software before 5.0.2 MR5 and…
|
CWE-79
Cross-site Scripting
|
CVE-2011-0286
|
2024-11-21 10:23 |
2011-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302473
|
- |
|
redhat
|
spice-xpi
|
The SPICE Firefox plug-in (spice-xpi) 2.4, 2.3, 2.2, and possibly other versions allows local users to overwrite arbitrary files via a symlink attack on the usbrdrctl log file, which has a predictabl…
|
CWE-59
Link Following
|
CVE-2011-0012
|
2024-11-21 10:23 |
2011-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302474
|
- |
|
apple
|
iphone_os
|
The generate-id XPath function in libxslt in Apple iOS 4.3.x before 4.3.2 allows remote attackers to obtain potentially sensitive information about heap memory addresses via a crafted web site. NOTE…
|
CWE-200
Information Exposure
|
CVE-2011-0195
|
2024-11-21 10:23 |
2011-04-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302475
|
- |
|
mit
|
kerberos_5
|
The process_chpw_request function in schpw.c in the password-changing functionality in kadmind in MIT Kerberos 5 (aka krb5) 1.7 through 1.9 frees an invalid pointer, which allows remote attackers to …
|
CWE-20
Improper Input Validation
|
CVE-2011-0285
|
2024-11-21 10:23 |
2011-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302476
|
- |
|
microsoft
|
office
|
Untrusted search path vulnerability in Microsoft Office XP SP3, Office 2003 SP3, and Office 2007 SP2 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as …
|
NVD-CWE-Other
|
CVE-2011-0107
|
2024-11-21 10:23 |
2011-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302477
|
- |
|
microsoft
|
open_xml_file_format_converter
office
excel
|
Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac obtain a certain length value from an uninitialized memory location, which allows remote attackers t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0105
|
2024-11-21 10:23 |
2011-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302478
|
- |
|
microsoft
|
open_xml_file_format_converter
office
excel
|
Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac allow remote attackers to execute arbitrary code or cause a denial of service (memory c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0104
|
2024-11-21 10:23 |
2011-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302479
|
- |
|
microsoft
|
open_xml_file_format_converter
office
excel
|
Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac allow remote attackers to execute arbitrary code or cause a denial of service (memory c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0103
|
2024-11-21 10:23 |
2011-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302480
|
- |
|
microsoft
|
excel
|
Microsoft Excel 2002 SP3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted RealTimeData record, related to a stTopic field, double-byte …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0101
|
2024-11-21 10:23 |
2011-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
