|
297721
|
- |
|
openldap
|
openldap
|
bind.cpp in back-ndb in OpenLDAP 2.4.x before 2.4.24 does not require authentication for the root Distinguished Name (DN), which allows remote attackers to bypass intended access restrictions via an …
|
CWE-287
Improper Authentication
|
CVE-2011-1025
|
2024-11-21 10:25 |
2011-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297722
|
- |
|
openldap
|
openldap
|
chain.c in back-ldap in OpenLDAP 2.4.x before 2.4.24, when a master-slave configuration with a chain overlay and ppolicy_forward_updates (aka authentication-failure forwarding) is used, allows remote…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1024
|
2024-11-21 10:25 |
2011-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297723
|
- |
|
php
|
php
|
Use-after-free vulnerability in the substr_replace function in PHP 5.3.6 and earlier allows context-dependent attackers to cause a denial of service (memory corruption) or possibly have unspecified o…
|
CWE-399
Resource Management Errors
|
CVE-2011-1148
|
2024-11-21 10:25 |
2011-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297724
|
- |
|
php
|
php
|
Multiple format string vulnerabilities in phar_object.c in the phar extension in PHP 5.3.5 and earlier allow context-dependent attackers to obtain sensitive information from process memory, cause a d…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2011-1153
|
2024-11-21 10:25 |
2011-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297725
|
- |
|
redhat
|
kdelibs
|
kio/kio/tcpslavebase.cpp in KDE KSSL in kdelibs before 4.6.1 does not properly verify that the server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-…
|
CWE-20
Improper Input Validation
|
CVE-2011-1094
|
2024-11-21 10:25 |
2011-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297726
|
- |
|
hp
|
client_automation_enterprise
|
Unspecified vulnerability in HP Client Automation Enterprise (aka HPCA or Radia Notify) 5.11, 7.2, 7.5, 7.8, and 7.9 allows remote attackers to execute arbitrary code via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2011-0889
|
2024-11-21 10:25 |
2011-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297727
|
- |
|
digium
|
asterisk
s800i
asterisknow
|
Multiple stack-based and heap-based buffer overflows in the (1) decode_open_type and (2) udptl_rx_packet functions in main/udptl.c in Asterisk Open Source 1.4.x before 1.4.39.2, 1.6.1.x before 1.6.1.…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1147
|
2024-11-21 10:25 |
2011-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297728
|
- |
|
redhat
|
libvirt
|
libvirt.c in the API in Red Hat libvirt 0.8.8 does not properly restrict operations in a read-only connection, which allows remote attackers to cause a denial of service (host OS crash) or possibly e…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1146
|
2024-11-21 10:25 |
2011-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297729
|
- |
|
php
|
php
|
Integer overflow in ext/shmop/shmop.c in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (crash) and possibly read sensitive memory via a large third argument to the …
|
CWE-189
Numeric Errors
|
CVE-2011-1092
|
2024-11-21 10:25 |
2011-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297730
|
- |
|
pidgin
|
pidgin
|
libymsg.c in the Yahoo! protocol plugin in libpurple in Pidgin 2.6.0 through 2.7.10 allows (1) remote authenticated users to cause a denial of service (NULL pointer dereference and application crash)…
|
NVD-CWE-Other
|
CVE-2011-1091
|
2024-11-21 10:25 |
2011-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
