|
294381
|
- |
|
tencent
|
microblogpad
wblog
|
The Tencent WBlog (com.tencent.WBlog) 3.3.1 and MicroBlogPad 1.4.0 applications for Android do not properly protect data, which allows remote attackers to read or modify message drafts and search key…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4865
|
2024-11-21 10:33 |
2012-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294382
|
- |
|
tencent
|
mobileqq
|
The Tencent MobileQQ (com.tencent.mobileqq) application 2.2 for Android does not properly protect data, which allows remote attackers to read or modify messages and a friends list via a crafted appli…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4864
|
2024-11-21 10:33 |
2012-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294383
|
- |
|
tencent
|
qqpimsecure
|
The Tencent QQPimSecure (com.tencent.qqpimsecure) application 3.0.2 for Android does not properly protect data, which allows remote attackers to read or modify SMS/MMS messages and a contact list via…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4863
|
2024-11-21 10:33 |
2012-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294384
|
- |
|
atvise
|
atvise
|
Unspecified vulnerability in the server in Certec EDV atvise before 2.1 allows remote attackers to cause a denial of service (daemon crash) via crafted requests to TCP port 4840.
|
NVD-CWE-noinfo
|
CVE-2011-4873
|
2024-11-21 10:33 |
2012-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294385
|
- |
|
ibm
|
websphere_application_server
|
The SibRaRecoverableSiXaResource class in the Default Messaging Component in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.41 does not properly handle a Service Integration Bus (SIB) dump o…
|
CWE-200
Information Exposure
|
CVE-2011-5066
|
2024-11-21 10:33 |
2012-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294386
|
- |
|
ibm
|
websphere_application_server
|
Cross-site scripting (XSS) vulnerability in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.41 allows remote attackers to inject arbitrary web script or HTML via vectors related to web messag…
|
CWE-79
Cross-site Scripting
|
CVE-2011-5065
|
2024-11-21 10:33 |
2012-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294387
|
- |
|
isc
|
dhcp
|
The logging functionality in dhcpd in ISC DHCP before 4.2.3-P2, when using Dynamic DNS (DDNS) and issuing IPv6 addresses, does not properly handle the DHCPv6 lease structure, which allows remote atta…
|
CWE-399
Resource Management Errors
|
CVE-2011-4868
|
2024-11-21 10:33 |
2012-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294388
|
- |
|
apache
|
tomcat
|
DigestAuthenticator.java in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 uses Catalina as the hard-coded server …
|
CWE-310
Cryptographic Issues
|
CVE-2011-5064
|
2024-11-21 10:33 |
2012-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294389
|
- |
|
apache
|
tomcat
|
The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check realm values, which might allow remote attackers to …
|
CWE-287
Improper Authentication
|
CVE-2011-5063
|
2024-11-21 10:33 |
2012-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294390
|
- |
|
apache
|
tomcat
|
The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check qop values, which might allow remote attackers to by…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5062
|
2024-11-21 10:33 |
2012-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
