|
294381
|
- |
|
canonical
debian
ubuntu
x.org
|
ubuntu_linux
debian_linux
linux
x_server
|
The X.Org X wrapper (xserver-wrapper.c) in Debian GNU/Linux and Ubuntu Linux does not properly verify the TTY of a user who is starting X, which allows local users to bypass intended access restricti…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4613
|
2024-11-21 10:32 |
2014-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294382
|
- |
|
openbsd
|
openssh
|
ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information …
|
CWE-200
Information Exposure
|
CVE-2011-4327
|
2024-11-21 10:32 |
2014-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294383
|
- |
|
ffmpeg
|
ffmpeg
|
Buffer overflow in FFmpeg before 0.5.6, 0.6.x before 0.6.4, 0.7.x before 0.7.8, and 0.8.x before 0.8.8 allows remote attackers to execute arbitrary code via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4351
|
2024-11-21 10:32 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294384
|
- |
|
putty
|
putty
|
PuTTY 0.59 through 0.61 does not clear sensitive process memory when managing user replies that occur during keyboard-interactive authentication, which might allow local users to read login passwords…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4607
|
2024-11-21 10:32 |
2013-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294385
|
- |
|
php
|
php
|
Session fixation vulnerability in the Sessions subsystem in PHP before 5.5.2 allows remote attackers to hijack web sessions by specifying a session ID.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4718
|
2024-11-21 10:32 |
2013-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294386
|
- |
|
linux
|
linux_kernel
|
Race condition in the sctp_rcv function in net/sctp/input.c in the Linux kernel before 2.6.29 allows remote attackers to cause a denial of service (system hang) via SCTP packets. NOTE: in some envir…
|
CWE-362
Race Condition
|
CVE-2011-4348
|
2024-11-21 10:32 |
2013-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294387
|
- |
|
linux
|
linux_kernel
|
The kvm_vm_ioctl_assign_device function in virt/kvm/assigned-dev.c in the KVM subsystem in the Linux kernel before 3.1.10 does not verify permission to access PCI configuration space and BAR resource…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4347
|
2024-11-21 10:32 |
2013-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294388
|
- |
|
linux
|
linux_kernel
|
The bat_socket_read function in net/batman-adv/icmp_socket.c in the Linux kernel before 3.3 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4604
|
2024-11-21 10:32 |
2013-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294389
|
- |
|
microsys
|
promotic
|
Heap-based buffer overflow in an ActiveX component in MICROSYS PROMOTIC before 8.1.5 allows remote attackers to cause a denial of service via a crafted web page.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4520
|
2024-11-21 10:32 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294390
|
- |
|
microsys
|
promotic
|
Stack-based buffer overflow in an ActiveX component in MICROSYS PROMOTIC before 8.1.5 allows remote attackers to cause a denial of service via a crafted web page.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4519
|
2024-11-21 10:32 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
