|
297541
|
- |
|
gentoo
|
logrotate
|
The shred_file function in logrotate.c in logrotate 3.7.9 and earlier might allow context-dependent attackers to execute arbitrary commands via shell metacharacters in a log filename, as demonstrated…
|
CWE-20
Improper Input Validation
|
CVE-2011-1154
|
2024-11-21 10:25 |
2011-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297542
|
- |
|
gentoo
|
logrotate
|
Race condition in the createOutputFile function in logrotate.c in logrotate 3.7.9 and earlier allows local users to read log data by opening a file before the intended permissions are in place.
|
CWE-362
Race Condition
|
CVE-2011-1098
|
2024-11-21 10:25 |
2011-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297543
|
- |
|
samba
|
rsync
|
rsync 3.x before 3.0.8, when certain recursion, deletion, and ownership options are used, allows remote rsync servers to cause a denial of service (heap memory corruption and application crash) or po…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1097
|
2024-11-21 10:25 |
2011-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297544
|
- |
|
ibm
|
rational_clearquest
rational_clearcase
rational_common_licensing
|
Multiple buffer overflows in unspecified COM objects in Rational Common Licensing 7.0 through 7.1.1.4 in IBM Rational ClearCase 7.0.0.4 through 7.1.1.4, ClearQuest 7.0.0.4 through 7.1.1.4, and other …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1205
|
2024-11-21 10:25 |
2011-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297545
|
- |
|
mpm-itk_project
debian
|
mpm-itk
debian_linux
|
The configuration merger in itk.c in the Steinar H. Gunderson mpm-itk Multi-Processing Module 2.2.11-01 and 2.2.11-02 for the Apache HTTP Server does not properly handle certain configuration section…
|
NVD-CWE-noinfo
|
CVE-2011-1176
|
2024-11-21 10:25 |
2011-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297546
|
- |
|
hp
|
diagnostics
|
Cross-site scripting (XSS) vulnerability in HP Diagnostics 7.5x and 8.0x before 8.05.54.225 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-0892
|
2024-11-21 10:25 |
2011-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297547
|
- |
|
libtiff
|
libtiff
|
Heap-based buffer overflow in the thunder (aka ThunderScan) decoder in tif_thunder.c in LibTIFF 3.9.4 and earlier allows remote attackers to execute arbitrary code via crafted THUNDER_2BITDELTAS data…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1167
|
2024-11-21 10:25 |
2011-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297548
|
- |
|
hp
|
discovery\&dependency_mapping_inventory
|
HP Discovery & Dependency Mapping Inventory (DDMI) 7.50, 7.51, 7.60, 7.61, 7.70, and 9.30 launches the Windows SNMP service with its default configuration, which allows remote attackers to obtain pot…
|
CWE-200
Information Exposure
|
CVE-2011-0890
|
2024-11-21 10:25 |
2011-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297549
|
- |
|
balbir_singh
|
libcgroup
|
The cgre_receive_netlink_msg function in daemon/cgrulesengd.c in cgrulesengd in the Control Group Configuration Library (aka libcgroup or libcg) before 0.37.1 does not verify that netlink messages or…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1022
|
2024-11-21 10:25 |
2011-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297550
|
- |
|
balbir_singh
|
libcgroup
|
Heap-based buffer overflow in the parse_cgroup_spec function in tools/tools-common.c in the Control Group Configuration Library (aka libcgroup or libcg) before 0.37.1 allows local users to gain privi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1006
|
2024-11-21 10:25 |
2011-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
