|
295821
|
- |
|
canonical
debian
|
ubuntu_linux
advanced_package_tool
|
methods/https.cc in apt before 0.8.11 accepts connections when the certificate host name fails validation and Verify-Host is enabled, which allows man-in-the-middle attackers to obtain repository cre…
|
CWE-200
Information Exposure
|
CVE-2011-3634
|
2024-11-21 10:30 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295822
|
- |
|
litech
|
router_advertisement_daemon
|
The process_rs function in the router advertisement daemon (radvd) before 1.8.2, when UnicastOnly is enabled, allows remote attackers to cause a denial of service (temporary service hang) via a large…
|
CWE-20
Improper Input Validation
|
CVE-2011-3605
|
2024-11-21 10:30 |
2014-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295823
|
- |
|
litech
|
router_advertisement_daemon
|
The process_ra function in the router advertisement daemon (radvd) before 1.8.2 allows remote attackers to cause a denial of service (stack-based buffer over-read and crash) via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3604
|
2024-11-21 10:30 |
2014-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295824
|
- |
|
litech
|
router_advertisement_daemon
|
Buffer overflow in the process_ra function in the router advertisement daemon (radvd) before 1.8.2 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a negativ…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3601
|
2024-11-21 10:30 |
2014-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295825
|
- |
|
redhat
|
kexec-tools
|
The Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, includes all of root's SSH privat…
|
CWE-310
Cryptographic Issues
|
CVE-2011-3590
|
2024-11-21 10:30 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295826
|
- |
|
redhat
|
kexec-tools
|
The Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, uses world-readable permissions f…
|
CWE-310
Cryptographic Issues
|
CVE-2011-3589
|
2024-11-21 10:30 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295827
|
- |
|
redhat
|
kexec-tools
|
The SSH configuration in the Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, disables…
|
CWE-310
Cryptographic Issues
|
CVE-2011-3588
|
2024-11-21 10:30 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295828
|
- |
|
redhat
canonical
opensuse
|
icedtea-web
ubuntu_linux
opensuse
|
The web browser plug-in in IcedTea-Web 1.0.x before 1.0.6 and 1.1.x before 1.1.4 allows remote attackers to bypass the Same Origin Policy (SOP) and execute arbitrary script or establish network conne…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-3377
|
2024-11-21 10:30 |
2014-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295829
|
- |
|
redhat
|
spacewalk
network_satellite
|
Cross-site scripting (XSS) vulnerability in the Lookup Login/Password form in Spacewalk 1.6, as used in Red Hat Network (RHN) Satellite, allows remote attackers to inject arbitrary web script or HTML…
|
CWE-79
Cross-site Scripting
|
CVE-2011-3344
|
2024-11-21 10:30 |
2014-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295830
|
- |
|
linux
|
linux_kernel
|
The apparmor_setprocattr function in security/apparmor/lsm.c in the Linux kernel before 3.0 does not properly handle invalid parameters, which allows local users to cause a denial of service (NULL po…
|
CWE-20
Improper Input Validation
|
CVE-2011-3619
|
2024-11-21 10:30 |
2013-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
