|
296581
|
- |
|
cisco
|
secure_access_control_server
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Solution Engine in Cisco Secure Access Control Server (ACS) 5.2 allow remote attackers to hijack the authentication of administrators…
|
CWE-352
Origin Validation Error
|
CVE-2011-3293
|
2024-11-21 10:30 |
2012-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296582
|
- |
|
cisco
|
ios
|
Cisco IOS 12.4 and 15.0 through 15.2 allows physically proximate attackers to bypass the No Service Password-Recovery feature and read the start-up configuration via unspecified vectors, aka Bug ID C…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-3289
|
2024-11-21 10:30 |
2012-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296583
|
- |
|
cisco
|
adaptive_security_appliance_software
5500_series_adaptive_security_appliance
|
CRLF injection vulnerability in /+CSCOE+/logon.html on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.0 through 8.4 allows remote attackers to inject arbitrary HTTP head…
|
CWE-94
CWE-20
Code Injection
Improper Input Validation
|
CVE-2011-3285
|
2024-11-21 10:30 |
2012-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296584
|
- |
|
cisco
|
carrier_routing_system
|
Cisco Carrier Routing System 3.9.1 allows remote attackers to cause a denial of service (Metro subsystem crash) via a fragmented GRE packet, aka Bug ID CSCts14887.
|
CWE-20
Improper Input Validation
|
CVE-2011-3283
|
2024-11-21 10:30 |
2012-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296585
|
- |
|
apple
|
safari
|
Use-after-free vulnerability in WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption and application cr…
|
CWE-399
Resource Management Errors
|
CVE-2011-3443
|
2024-11-21 10:30 |
2012-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296586
|
- |
|
craig_barratt
|
backuppc
|
Cross-site scripting (XSS) vulnerability in CGI/Browse.pm in BackupPC 3.2.0 and possibly other versions before 3.2.1 allows remote attackers to inject arbitrary web script or HTML via the num paramet…
|
CWE-79
Cross-site Scripting
|
CVE-2011-3361
|
2024-11-21 10:30 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296587
|
- |
|
sun
oracle
|
jre
|
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, 5.0 Update 33 and earlier, and 1.4.2_35 and earlier allows…
|
NVD-CWE-noinfo
|
CVE-2011-3563
|
2024-11-21 10:30 |
2012-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296588
|
- |
|
apple
|
mac_os_x_server
mac_os_x
|
WebDAV Sharing in Apple Mac OS X 10.7.x before 10.7.3 does not properly perform authentication, which allows local users to gain privileges by leveraging access to (1) the server or (2) a bound direc…
|
CWE-287
Improper Authentication
|
CVE-2011-3463
|
2024-11-21 10:30 |
2012-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296589
|
- |
|
apple
|
mac_os_x_server
mac_os_x
|
Time Machine in Apple Mac OS X before 10.7.3 does not verify the unique identifier of its remote AFP volume or Time Capsule, which allows remote attackers to obtain sensitive information contained in…
|
NVD-CWE-noinfo
|
CVE-2011-3462
|
2024-11-21 10:30 |
2012-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296590
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Buffer overflow in QuickTime in Apple Mac OS X before 10.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PNG file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3460
|
2024-11-21 10:30 |
2012-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
