|
300031
|
- |
|
microsoft
|
windows_2003_server
|
The server in Microsoft Active Directory on Windows Server 2003 SP2 does not properly handle an update request for a service principal name (SPN), which allows remote attackers to cause a denial of s…
|
CWE-20
Improper Input Validation
|
CVE-2011-0040
|
2024-11-21 10:23 |
2011-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300032
|
- |
|
microsoft
|
windows_2003_server
windows_xp
|
The Local Security Authority Subsystem Service (LSASS) in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly process authentication requests, which allows local users to gain priv…
|
CWE-287
Improper Authentication
|
CVE-2011-0039
|
2024-11-21 10:23 |
2011-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300033
|
- |
|
microsoft
|
windows_server_2008
windows_7
|
The (1) JScript 5.8 and (2) VBScript 5.8 scripting engines in Microsoft Windows Server 2008 R2 and Windows 7 do not properly load decoded scripts obtained from web pages, which allows remote attacker…
|
CWE-200
Information Exposure
|
CVE-2011-0031
|
2024-11-21 10:23 |
2011-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300034
|
- |
|
microsoft
|
windows_2003_server
windows_xp
|
The Client/Server Run-time Subsystem (CSRSS) in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly kill processes after a logout, which allows local users to obtain sensitive info…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-0030
|
2024-11-21 10:23 |
2011-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300035
|
- |
|
topazsystems
|
sigplus_pro_activex_control
|
Multiple heap-based buffer overflows in Topaz Systems SigPlus Pro ActiveX Control 3.95, and possibly other versions before 4.29, allow remote attackers to execute arbitrary code via a long (1) KeyStr…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0324
|
2024-11-21 10:23 |
2011-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300036
|
- |
|
topazsystems
|
sigplus_pro_activex_control
|
Topaz Systems SigPlus Pro ActiveX Control 3.95, and possibly other versions before 4.29, allows remote attackers to execute arbitrary code by calling the exposed unsafe (1) SetLogFilePath and (2) Sig…
|
NVD-CWE-Other
|
CVE-2011-0323
|
2024-11-21 10:23 |
2011-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300037
|
- |
|
redhat
|
icedtea
|
IcedTea 1.7 before 1.7.8, 1.8 before 1.8.5, and 1.9 before 1.9.5 does not properly verify signatures for JAR files that (1) are "partially signed" or (2) signed by multiple entities, which allows rem…
|
CWE-20
Improper Input Validation
|
CVE-2011-0025
|
2024-11-21 10:23 |
2011-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300038
|
- |
|
mj2
|
majordomo_2
|
Directory traversal vulnerability in the _list_file_get function in lib/Majordomo.pm in Majordomo 2 before 20110131 allows remote attackers to read arbitrary files via .. (dot dot) sequences in the h…
|
CWE-22
Path Traversal
|
CVE-2011-0049
|
2024-11-21 10:23 |
2011-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300039
|
- |
|
mediawiki
|
mediawiki
|
Cross-site scripting (XSS) vulnerability in MediaWiki before 1.16.2 allows remote attackers to inject arbitrary web script or HTML via crafted Cascading Style Sheets (CSS) comments, aka "CSS injectio…
|
CWE-79
Cross-site Scripting
|
CVE-2011-0047
|
2024-11-21 10:23 |
2011-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300040
|
- |
|
cisco
|
tandberg_endpoint
tandberg_personal_video_unit_software
tandberg_personal_video_unit
|
The default configuration of Cisco Tandberg C Series Endpoints, and Tandberg E and EX Personal Video units, with software before TC4.0.0 has a blank password for the root account, which makes it easi…
|
CWE-255
Credentials Management
|
CVE-2011-0354
|
2024-11-21 10:23 |
2011-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
