|
294791
|
- |
|
restorepoint
|
restorepoint
|
The Tadasoft Restorepoint 3.2 evaluation image uses weak permissions (www write access) for unspecified scripts, which allows local users to gain privileges by modifying a script file.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4202
|
2024-11-21 10:32 |
2011-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294792
|
- |
|
restorepoint
|
restorepoint
|
remote_support.cgi in the Tadasoft Restorepoint 3.2 evaluation image allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) pid1 or (2) pid2 parameter in a stop_rem…
|
CWE-94
Code Injection
|
CVE-2011-4201
|
2024-11-21 10:32 |
2011-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294793
|
- |
|
brandon_long
|
clearsilver
|
Format string vulnerability in the p_cgi_error function in python/neo_cgi.c in the Python CGI Kit (neo_cgi) module for Clearsilver 0.10.5 and earlier allows remote attackers to cause a denial of serv…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2011-4357
|
2024-11-21 10:32 |
2011-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294794
|
- |
|
freedesktop
|
colord
|
Multiple SQL injection vulnerabilities in (1) cd-mapping-db.c and (2) cd-device-db.c in colord before 0.1.15 allow local users to execute arbitrary SQL commands via vectors related to color devices a…
|
CWE-89
SQL Injection
|
CVE-2011-4349
|
2024-11-21 10:32 |
2011-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294795
|
- |
|
redhat
|
satellite
|
Cross-site scripting (XSS) vulnerability in the web interface in Red Hat Network (RHN) Satellite 5.4.1 allows remote authenticated users to inject arbitrary web script or HTML via the Description fie…
|
CWE-79
Cross-site Scripting
|
CVE-2011-4346
|
2024-11-21 10:32 |
2011-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294796
|
- |
|
google
acer
samsung
|
chrome_os
ac700_chromebook
cr-48_chromebook
series_5_chromebook
|
Multiple unspecified vulnerabilities in Google Chrome before 16.0.912.63 on the Acer AC700, Samsung Series 5, and Cr-48 Chromebook platforms have unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2011-4719
|
2024-11-21 10:32 |
2011-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294797
|
- |
|
f5
fedoraproject
suse
|
nginx
fedora
webyast
studio_onsite
studio
|
Heap-based buffer overflow in compression-pointer processing in core/ngx_resolver.c in nginx before 1.0.10 allows remote resolvers to cause a denial of service (daemon crash) or possibly have unspeci…
|
CWE-787
Out-of-bounds Write
|
CVE-2011-4315
|
2024-11-21 10:32 |
2011-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294798
|
- |
|
dream-multimedia-tv
|
dreambox_dm800_hd_se_firmware
dreambox_dm800_hd_se
dreambox_dm800_hd_pvr_firmware
dreambox_dm800_hd_pvr
|
Directory traversal vulnerability in file in DreamBox DM800 1.6rc3, 1.5rc1, and earlier allows remote attackers to read arbitrary files via the file parameter.
|
CWE-22
Path Traversal
|
CVE-2011-4716
|
2024-11-21 10:32 |
2011-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294799
|
- |
|
koha
|
liblime_koha
koha
|
Directory traversal vulnerability in cgi-bin/koha/mainpage.pl in Koha 3.4 before 3.4.7 and 3.6 before 3.6.1, and LibLime Koha 4.2 and earlier allows remote attackers to read arbitrary files via a .. …
|
CWE-22
Path Traversal
|
CVE-2011-4715
|
2024-11-21 10:32 |
2011-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294800
|
- |
|
vvertex
|
muster
|
Directory traversal vulnerability in Virtual Vertex Muster before 6.20 allows remote attackers to read arbitrary files via a \.. (backslash dot dot) in the URL.
|
CWE-22
Path Traversal
|
CVE-2011-4714
|
2024-11-21 10:32 |
2011-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
