|
295531
|
- |
|
phpmyadmin
|
phpmyadmin
|
phpmyadmin.css.php in phpMyAdmin 3.4.x before 3.4.6 allows remote attackers to obtain sensitive information via an array-typed js_frame parameter to phpmyadmin.css.php, which reveals the installation…
|
CWE-20
Improper Input Validation
|
CVE-2011-3646
|
2024-11-21 10:30 |
2011-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295532
|
- |
|
clamav
|
clamav
|
The bytecode engine in ClamAV before 0.97.3 allows remote attackers to cause a denial of service (crash) via vectors related to "recursion level" and (1) libclamav/bytecode.c and (2) libclamav/byteco…
|
CWE-189
Numeric Errors
|
CVE-2011-3627
|
2024-11-21 10:30 |
2011-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295533
|
- |
|
xelerance
|
openswan
|
Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a denial of service (NULL pointer dereference and pluto IKE daemon crash) via an ISAKMP message with an invalid KEY_LENGTH attribute, w…
|
NVD-CWE-Other
|
CVE-2011-3380
|
2024-11-21 10:30 |
2011-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295534
|
- |
|
apache
|
tomcat
|
org/apache/catalina/core/DefaultInstanceManager.java in Apache Tomcat 7.x before 7.0.22 does not properly restrict ContainerServlets in the Manager application, which allows local users to gain privi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-3376
|
2024-11-21 10:30 |
2011-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295535
|
- |
|
apple
|
iphone_os
|
The kernel in Apple iOS before 5.0.1 does not ensure the validity of flag combinations for an mmap system call, which allows local users to execute arbitrary unsigned code via a crafted app.
|
CWE-399
Resource Management Errors
|
CVE-2011-3442
|
2024-11-21 10:30 |
2011-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295536
|
- |
|
apple
|
iphone_os
|
libinfo in Apple iOS before 5.0.1 does not properly formulate domain-name queries, which allows remote attackers to obtain sensitive information via a crafted DNS hostname.
|
CWE-200
Information Exposure
|
CVE-2011-3441
|
2024-11-21 10:30 |
2011-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295537
|
- |
|
apple
|
iphone_os
ipad2
|
The Passcode Lock feature in Apple iOS before 5.0.1 on the iPad 2 does not properly implement the locked state, which allows physically proximate attackers to access data by opening a Smart Cover dur…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-3440
|
2024-11-21 10:30 |
2011-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295538
|
- |
|
apple
suse
|
iphone_os
linux_enterprise_server
linux_enterprise_desktop
linux_enterprise_software_development_kit
|
FreeType in CoreGraphics in Apple iOS before 5.0.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font in a document.
|
CWE-787
Out-of-bounds Write
|
CVE-2011-3439
|
2024-11-21 10:30 |
2011-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295539
|
- |
|
mozilla
|
firefox
thunderbird
|
Mozilla Firefox 4.x through 7.0 and Thunderbird 5.0 through 7.0 perform access control without checking for use of the NoWaiverWrapper wrapper, which allows remote attackers to gain privileges via a …
|
CWE-94
Code Injection
|
CVE-2011-3655
|
2024-11-21 10:30 |
2011-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295540
|
- |
|
mozilla
|
firefox
thunderbird
|
The browser engine in Mozilla Firefox before 8.0 and Thunderbird before 8.0 does not properly handle links from SVG mpath elements to non-SVG elements, which allows remote attackers to cause a denial…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3654
|
2024-11-21 10:30 |
2011-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
