|
298231
|
- |
|
tor
|
tor
|
Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha allows remote attackers to cause a denial of service (assertion failure and daemon exit) via blobs that trigger a certain file size, as demonstra…
|
CWE-399
Resource Management Errors
|
CVE-2011-0492
|
2024-11-21 10:24 |
2011-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298232
|
- |
|
tor
|
tor
|
The tor_realloc function in Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha does not validate a certain size value during memory allocation, which might allow remote attackers to cause a denial…
|
CWE-20
Improper Input Validation
|
CVE-2011-0491
|
2024-11-21 10:24 |
2011-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298233
|
- |
|
tor
|
tor
|
Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha makes calls to Libevent within Libevent log handlers, which might allow remote attackers to cause a denial of service (daemon crash) via vectors …
|
NVD-CWE-Other
|
CVE-2011-0490
|
2024-11-21 10:24 |
2011-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298234
|
- |
|
objectivity
|
objectivity\/db
|
The server components in Objectivity/DB 10.0 do not require authentication for administrative commands, which allows remote attackers to modify data, obtain sensitive information, or cause a denial o…
|
CWE-287
Improper Authentication
|
CVE-2011-0489
|
2024-11-21 10:24 |
2011-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298235
|
- |
|
advantech
indusoft
|
advantech_studio
web_studio
|
Stack-based buffer overflow in NTWebServer.exe in the test web service in InduSoft NTWebServer, as distributed in Advantech Studio 6.1 and InduSoft Web Studio 7.0, allows remote attackers to cause a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0488
|
2024-11-21 10:24 |
2011-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298236
|
- |
|
icq
|
icq
|
ICQ 7 does not verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a crafted file that is fetched through an automatic-update mechanism.
|
CWE-94
Code Injection
|
CVE-2011-0487
|
2024-11-21 10:24 |
2011-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298237
|
- |
|
ibm
|
cognos_8_business_intelligence
|
Cross-site scripting (XSS) vulnerability in cognos.cgi in IBM Cognos 8 Business Intelligence (BI) 8.4.1 before FP1 allows remote attackers to inject arbitrary web script or HTML via the pathinfo para…
|
CWE-79
Cross-site Scripting
|
CVE-2011-0486
|
2024-11-21 10:24 |
2011-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298238
|
- |
|
google
|
chrome_os
chrome
|
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly handle speech data, which allows remote attackers to execute arbitrary code via unspecified vectors that lead to a "s…
|
CWE-20
Improper Input Validation
|
CVE-2011-0485
|
2024-11-21 10:24 |
2011-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298239
|
- |
|
google
|
chrome_os
chrome
|
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform DOM node removal, which allows remote attackers to cause a denial of service or possibly have unspecified oth…
|
CWE-20
Improper Input Validation
|
CVE-2011-0484
|
2024-11-21 10:24 |
2011-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298240
|
- |
|
google
|
chrome_os
chrome
|
Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform a cast of an unspecified variable during handling of video, which allows remote attackers to cause a denial o…
|
CWE-704
Incorrect Type Conversion or Cast
|
CVE-2011-0483
|
2024-11-21 10:24 |
2011-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
