|
293641
|
5.5 |
MEDIUM
Local
|
crowbar_project
|
crowbar
|
The install-chef-suse.sh script shipped with crowbar before 2012-10-02 is creating files containing confidential data with insecure permissions, allowing local users to read confidential data.
|
CWE-200
Information Exposure
|
CVE-2012-0433
|
2024-11-21 10:34 |
2018-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293642
|
6.2 |
MEDIUM
Local
|
gnu
|
glibc
|
scanf and related functions in glibc before 2.15 allow local users to cause a denial of service (segmentation fault) via a large string of 0s.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-5320
|
2024-11-21 10:34 |
2017-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293643
|
7.5 |
HIGH
Network
|
busybox
debian
canonical
|
busybox
debian_linux
ubuntu_linux
|
Directory traversal vulnerability in the BusyBox implementation of tar before 1.22.0 v5 allows remote attackers to point to files outside the current working directory via a symlink.
|
CWE-22
Path Traversal
|
CVE-2011-5325
|
2024-11-21 10:34 |
2017-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293644
|
7.5 |
HIGH
Network
|
debian
enlightenment
|
debian_linux
imlib2
|
imlib2 before 1.4.9 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) by drawing a 2x1 ellipse.
|
CWE-189
Numeric Errors
|
CVE-2011-5326
|
2024-11-21 10:34 |
2016-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293645
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The tty_open function in drivers/tty/tty_io.c in the Linux kernel before 3.1.1 mishandles a driver-lookup failure, which allows local users to cause a denial of service (NULL pointer dereference and …
|
NVD-CWE-Other
|
CVE-2011-5321
|
2024-11-21 10:34 |
2016-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293646
|
- |
|
gehealthcare
|
centricity_pacs-iw
|
The TeraRecon server, as used in GE Healthcare Centricity PACS-IW 3.7.3.7, 3.7.3.8, and possibly other versions, has a password of (1) shared for the shared user and (2) scan for the scan user, which…
|
CWE-255
Credentials Management
|
CVE-2011-5324
|
2024-11-21 10:34 |
2015-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293647
|
- |
|
gehealthcare
|
centricity_pacs-iw
|
GE Healthcare Centricity PACS-IW 3.7.3.7, 3.7.3.8, and possibly other versions has a password of A11enda1e for the sa SQL server user, which has unspecified impact and attack vectors. NOTE: it is no…
|
CWE-255
Credentials Management
|
CVE-2011-5323
|
2024-11-21 10:34 |
2015-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293648
|
- |
|
gehealthcare
|
centricity_analytics_server
|
GE Healthcare Centricity Analytics Server 1.1 has a default password of (1) V0yag3r for the SQL Server sa user, (2) G3car3s for the analyst user, (3) G3car3s for the ccg user, (4) V0yag3r for the vie…
|
CWE-255
Credentials Management
|
CVE-2011-5322
|
2024-11-21 10:34 |
2015-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293649
|
- |
|
google
|
chrome
|
content/renderer/device_sensors/device_motion_event_pump.cc in Google Chrome before 41.0.2272.76 does not properly restrict access to high-rate accelerometer data, which makes it easier for remote at…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5319
|
2024-11-21 10:34 |
2015-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293650
|
- |
|
diafan
|
diafan.cms
|
Multiple cross-site request forgery (CSRF) vulnerabilities in diafan.CMS before 5.1 allow remote attackers to hijack the authentication of administrators for requests that (1) modify articles via a s…
|
CWE-352
Origin Validation Error
|
CVE-2011-5318
|
2024-11-21 10:34 |
2015-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
