|
298591
|
- |
|
topazsystems
|
sigplus_pro_activex_control
|
Topaz Systems SigPlus Pro ActiveX Control 3.95, and possibly other versions before 4.29, allows remote attackers to execute arbitrary code by calling the exposed unsafe (1) SetLogFilePath and (2) Sig…
|
NVD-CWE-Other
|
CVE-2011-0323
|
2024-11-21 10:23 |
2011-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298592
|
- |
|
redhat
|
icedtea
|
IcedTea 1.7 before 1.7.8, 1.8 before 1.8.5, and 1.9 before 1.9.5 does not properly verify signatures for JAR files that (1) are "partially signed" or (2) signed by multiple entities, which allows rem…
|
CWE-20
Improper Input Validation
|
CVE-2011-0025
|
2024-11-21 10:23 |
2011-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298593
|
- |
|
mj2
|
majordomo_2
|
Directory traversal vulnerability in the _list_file_get function in lib/Majordomo.pm in Majordomo 2 before 20110131 allows remote attackers to read arbitrary files via .. (dot dot) sequences in the h…
|
CWE-22
Path Traversal
|
CVE-2011-0049
|
2024-11-21 10:23 |
2011-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298594
|
- |
|
mediawiki
|
mediawiki
|
Cross-site scripting (XSS) vulnerability in MediaWiki before 1.16.2 allows remote attackers to inject arbitrary web script or HTML via crafted Cascading Style Sheets (CSS) comments, aka "CSS injectio…
|
CWE-79
Cross-site Scripting
|
CVE-2011-0047
|
2024-11-21 10:23 |
2011-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298595
|
- |
|
cisco
|
tandberg_endpoint
tandberg_personal_video_unit_software
tandberg_personal_video_unit
|
The default configuration of Cisco Tandberg C Series Endpoints, and Tandberg E and EX Personal Video units, with software before TC4.0.0 has a blank password for the root account, which makes it easi…
|
CWE-255
Credentials Management
|
CVE-2011-0354
|
2024-11-21 10:23 |
2011-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298596
|
- |
|
hp
|
openview_performance_insight
|
HP OpenView Performance Insight Server 5.2, 5.3, 5.31, 5.4, and 5.41 contains a "hidden account" in the com.trinagy.security.XMLUserManager Java class, which allows remote attackers to execute arbitr…
|
NVD-CWE-Other
|
CVE-2011-0276
|
2024-11-21 10:23 |
2011-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298597
|
- |
|
exim
|
exim
|
The open_log function in log.c in Exim 4.72 and earlier does not check the return value from (1) setuid or (2) setgid system calls, which allows local users to append log data to arbitrary files via …
|
CWE-20
CWE-59
Improper Input Validation
Link Following
|
CVE-2011-0017
|
2024-11-21 10:23 |
2011-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298598
|
- |
|
emc
|
networker
|
librpc.dll in nsrexecd in EMC NetWorker before 7.5 SP4, 7.5.3.x before 7.5.3.5, and 7.6.x before 7.6.1.2 does not properly mitigate the possibility of a spoofed localhost source IP address, which all…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-0321
|
2024-11-21 10:23 |
2011-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298599
|
- |
|
isc
|
dhcp
|
The DHCPv6 server in ISC DHCP 4.0.x and 4.1.x before 4.1.2-P1, 4.0-ESV and 4.1-ESV before 4.1-ESV-R1, and 4.2.x before 4.2.1b1 allows remote attackers to cause a denial of service (assertion failure …
|
CWE-20
Improper Input Validation
|
CVE-2011-0413
|
2024-11-21 10:23 |
2011-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298600
|
- |
|
microsoft
|
windows_server_2008
windows_xp
windows_7
windows_vista
windows_server_2003
windows_2003_server
|
The MHTML protocol handler in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not …
|
CWE-79
Cross-site Scripting
|
CVE-2011-0096
|
2024-11-21 10:23 |
2011-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
