|
297081
|
- |
|
microsoft
|
windows_server_2008
windows_7
windows_vista
|
Tcpip.sys in the TCP/IP stack in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to cause a denial of service (reboot) via a s…
|
CWE-399
Resource Management Errors
|
CVE-2011-1871
|
2024-11-21 10:27 |
2011-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297082
|
- |
|
redhat
|
libvirt
|
The virSecurityManagerGetPrivateData function in security/security_manager.c in libvirt 0.8.8 through 0.9.1 uses the wrong argument for a sizeof call, which causes incorrect processing of "security m…
|
NVD-CWE-Other
|
CVE-2011-2178
|
2024-11-21 10:27 |
2011-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297083
|
- |
|
novell
|
mobility_pack
data_synchronizer
|
The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 does not include the HTTPOnly flag in a Set-Cookie header, which makes it easier for remote attackers to conduct c…
|
CWE-79
Cross-site Scripting
|
CVE-2011-2224
|
2024-11-21 10:27 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297084
|
- |
|
novell
|
mobility_pack
data_synchronizer
|
The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 sends the Admin LDAP password in cleartext, which allows remote attackers to obtain sensitive information by sniff…
|
CWE-310
Cryptographic Issues
|
CVE-2011-2223
|
2024-11-21 10:27 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297085
|
- |
|
novell
|
mobility_pack
data_synchronizer
|
Session fixation vulnerability in WebAdmin in the Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 allows remote attackers to hijack web sessions via unspecified vecto…
|
NVD-CWE-Other
|
CVE-2011-2222
|
2024-11-21 10:27 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297086
|
- |
|
novell
|
mobility_pack
data_synchronizer
|
The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 allows remote attackers to bypass WebAdmin authentication and obtain sensitive GroupWise information via unspecifi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2221
|
2024-11-21 10:27 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297087
|
- |
|
redhat
|
jboss_seam_2_framework
jboss_enterprise_application_platform
jboss_enterprise_soa_platform
jboss_enterprise_web_platform
|
jboss-seam.jar in the JBoss Seam 2 framework 2.2.x and earlier, as distributed in Red Hat JBoss Enterprise SOA Platform 4.3.0.CP05 and 5.1.0; JBoss Enterprise Application Platform (aka JBoss EAP or J…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2196
|
2024-11-21 10:27 |
2011-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297088
|
- |
|
fabfile
|
fabric
|
Fabric before 1.1.0 allows local users to overwrite arbitrary files via a symlink attack on (1) a /tmp/fab.*.tar file or (2) certain other files in the top level of /tmp/.
|
CWE-59
Link Following
|
CVE-2011-2185
|
2024-11-21 10:27 |
2011-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297089
|
- |
|
debian
canonical
|
advanced_package_tool
ubuntu_linux
|
APT before 0.8.15.2 does not properly validate inline GPG signatures, which allows man-in-the-middle attackers to install modified packages via vectors involving lack of an initial clearsigned messag…
|
CWE-20
Improper Input Validation
|
CVE-2011-1829
|
2024-11-21 10:27 |
2011-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297090
|
- |
|
gimp
|
gimp
|
Heap-based buffer overflow in the read_channel_data function in file-psp.c in the Paint Shop Pro (PSP) plugin in GIMP 2.6.11 allows remote attackers to cause a denial of service (application crash) o…
|
CWE-787
Out-of-bounds Write
|
CVE-2011-1782
|
2024-11-21 10:27 |
2011-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
