|
298071
|
9.8 |
CRITICAL
Network
|
google
|
blink
|
A wrong type is used for a return value from strlen in WebKit in Google Chrome before Blink M12 on 64-bit platforms.
|
CWE-704
Incorrect Type Conversion or Cast
|
CVE-2011-2337
|
2024-11-21 10:28 |
2019-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298072
|
6.5 |
MEDIUM
Network
|
google
|
blink
|
An issue exists in WebKit in Google Chrome before Blink M12. when clearing lists in AnimationControllerPrivate that signal when a hardware animation starts.
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2011-2336
|
2024-11-21 10:28 |
2019-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298073
|
6.5 |
MEDIUM
Network
|
google
|
blink
|
Use after free vulnerability in documentloader in WebKit in Google Chrome before Blink M13 in DocumentWriter::replaceDocument function.
|
CWE-416
Use After Free
|
CVE-2011-2353
|
2024-11-21 10:28 |
2019-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298074
|
7.2 |
HIGH
Network
|
cisco
|
telepresence_video_communication_server
|
Cisco Video Communications Server (VCS) before X7.0.3 contains a command injection vulnerability which allows remote, authenticated attackers to execute arbitrary commands.
|
CWE-74
Injection
|
CVE-2011-2538
|
2024-11-21 10:28 |
2019-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298075
|
9.8 |
CRITICAL
Network
|
apache
debian
redhat
canonical
|
mod_perl
debian_linux
enterprise_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
ubuntu_linux
|
mod_perl 2.0 through 2.0.10 allows attackers to execute arbitrary Perl code by placing it in a user-owned .htaccess file, because (contrary to the documentation) there is no configuration option that…
|
CWE-94
Code Injection
|
CVE-2011-2767
|
2024-11-21 10:28 |
2018-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298076
|
7.5 |
HIGH
Network
|
pyro_project
|
pyro
|
pyro before 3.15 unsafely handles pid files in temporary directory locations and opening the pid file as root. An attacker can use this flaw to overwrite arbitrary files via symlinks.
|
CWE-59
Link Following
|
CVE-2011-2765
|
2024-11-21 10:28 |
2018-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298077
|
5.5 |
MEDIUM
Local
|
rkkda
|
foo2zjs
|
foo2zjs before 20110722dfsg-3ubuntu1 as packaged in Ubuntu, 20110722dfsg-1 as packaged in Debian unstable, and 20090908dfsg-5.1+squeeze0 as packaged in Debian squeeze create temporary files insecurel…
|
CWE-59
Link Following
|
CVE-2011-2684
|
2024-11-21 10:28 |
2017-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298078
|
5.9 |
MEDIUM
Network
|
reseed_project
|
reseed
|
reseed seeds random numbers from an insecure HTTP request to random.org during installation, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a man-in-the-…
|
CWE-254
7PK - Security Features
|
CVE-2011-2683
|
2024-11-21 10:28 |
2017-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298079
|
- |
|
tribiq
|
tribiq_cms
|
The (1) templatewrap/templatefoot.php, (2) cmsjs/plugin.js.php, and (3) cmsincludes/cms_plugin_api_link.inc.php scripts in Tribal Tribiq CMS before 5.2.7c allow remote attackers to obtain sensitive i…
|
CWE-200
Information Exposure
|
CVE-2011-2727
|
2024-11-21 10:28 |
2014-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298080
|
- |
|
gnu
|
glibc
eglibc
|
Integer signedness error in Glibc before 2.13 and eglibc before 2.13, when using Supplemental Streaming SIMD Extensions 3 (SSSE3) optimization, allows context-dependent attackers to execute arbitrary…
|
CWE-94
Code Injection
|
CVE-2011-2702
|
2024-11-21 10:28 |
2014-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
