|
294761
|
- |
|
investintech
|
slimpdf_reader
|
Investintech.com SlimPDF Reader does not prevent faulting-address data from affecting branch selection, which allows remote attackers to cause a denial of service (application crash) or possibly exec…
|
CWE-399
Resource Management Errors
|
CVE-2011-4219
|
2024-11-21 10:32 |
2011-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294762
|
- |
|
investintech
|
slimpdf_reader
|
Investintech.com SlimPDF Reader does not prevent faulting-instruction data from affecting write operations, which allows remote attackers to cause a denial of service (application crash) or possibly …
|
CWE-399
Resource Management Errors
|
CVE-2011-4218
|
2024-11-21 10:32 |
2011-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294763
|
- |
|
investintech
|
slimpdf_reader
|
Investintech.com SlimPDF Reader does not properly restrict read operations during block data moves, which allows remote attackers to cause a denial of service (application crash) or possibly execute …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4217
|
2024-11-21 10:32 |
2011-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294764
|
- |
|
investintech
|
slimpdf_reader
|
Investintech.com SlimPDF Reader does not properly restrict write operations, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a cr…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4216
|
2024-11-21 10:32 |
2011-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294765
|
- |
|
oneorzero
|
aims
|
SQL injection vulnerability in lib/ooz_access.php in OneOrZero Action & Information Management System (AIMS) 2.7.0 allows remote attackers to execute arbitrary SQL commands via the cookieName variabl…
|
CWE-89
SQL Injection
|
CVE-2011-4215
|
2024-11-21 10:32 |
2011-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294766
|
- |
|
oneorzero
|
aims
|
OneOrZero Action & Information Management System (AIMS) 2.7.0 allows remote attackers to bypass authentication and obtain administrator privileges via a crafted oozimsrememberme cookie.
|
CWE-287
Improper Authentication
|
CVE-2011-4214
|
2024-11-21 10:32 |
2011-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294767
|
- |
|
google
|
app_engine_python_sdk
|
The sandbox environment in the Google App Engine Python SDK before 1.5.4 does not properly prevent use of the os module, which allows local users to bypass intended access restrictions and execute ar…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4213
|
2024-11-21 10:32 |
2011-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294768
|
- |
|
google
|
app_engine_python_sdk
|
The sandbox environment in the Google App Engine Python SDK before 1.5.4 does not properly prevent os.popen calls, which allows local users to bypass intended access restrictions and execute arbitrar…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4212
|
2024-11-21 10:32 |
2011-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294769
|
- |
|
google
|
app_engine_python_sdk
|
The FakeFile implementation in the sandbox environment in the Google App Engine Python SDK before 1.5.4 does not properly control the opening of files, which allows local users to bypass intended acc…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4211
|
2024-11-21 10:32 |
2011-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294770
|
8.1 |
HIGH
Network
|
calibre-ebook
|
calibre
|
Race condition issues were found in Calibre at devices/linux_mount_helper.c allowing unprivileged users the ability to mount any device to anywhere.
|
-
|
CVE-2011-4126
|
2024-11-21 10:31 |
2021-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
