|
298111
|
- |
|
linux
|
linux_kernel
|
fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/io files, which allows local users to obtain sensitive I/O statistics by polling a file, as demonst…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2495
|
2024-11-21 10:28 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298112
|
- |
|
linux
|
linux_kernel
|
kernel/taskstats.c in the Linux kernel before 3.1 allows local users to obtain sensitive I/O statistics by sending taskstats commands to a netlink socket, as demonstrated by discovering the length of…
|
CWE-200
Information Exposure
|
CVE-2011-2494
|
2024-11-21 10:28 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298113
|
- |
|
linux
|
linux_kernel
|
The ext4_fill_super function in fs/ext4/super.c in the Linux kernel before 2.6.39 does not properly initialize a certain error-report data structure, which allows local users to cause a denial of ser…
|
NVD-CWE-Other
|
CVE-2011-2493
|
2024-11-21 10:28 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298114
|
- |
|
hp
|
linux_imaging_and_printing_project
|
The send_data_to_stdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing (HPLIP) 3.x before 3.11.10 allows local users to overwrite arbitrary files via a symlink attack on the /t…
|
CWE-59
Link Following
|
CVE-2011-2722
|
2024-11-21 10:28 |
2012-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298115
|
6.0 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The ptrace_setxregs function in arch/xtensa/kernel/ptrace.c in the Linux kernel before 3.1 does not validate user-space pointers, which allows local users to obtain sensitive information from kernel …
|
CWE-200
Information Exposure
|
CVE-2011-2707
|
2024-11-21 10:28 |
2012-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298116
|
7.5 |
HIGH
Network
|
linux
redhat
|
linux_kernel
enterprise_linux
enterprise_mrg
|
The IPv6 implementation in the Linux kernel before 3.1 does not generate Fragment Identification values separately for each destination, which makes it easier for remote attackers to cause a denial o…
|
NVD-CWE-Other
|
CVE-2011-2699
|
2024-11-21 10:28 |
2012-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298117
|
- |
|
linux
|
linux_kernel
|
The x86_assign_hw_event function in arch/x86/kernel/cpu/perf_event.c in the Performance Events subsystem in the Linux kernel before 2.6.39 does not properly calculate counter values, which allows loc…
|
CWE-189
Numeric Errors
|
CVE-2011-2521
|
2024-11-21 10:28 |
2012-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298118
|
- |
|
linux
|
linux_kernel
|
The tomoyo_mount_acl function in security/tomoyo/mount.c in the Linux kernel before 2.6.39.2 calls the kern_path function with arguments taken directly from a mount system call, which allows local us…
|
CWE-20
Improper Input Validation
|
CVE-2011-2518
|
2024-11-21 10:28 |
2012-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298119
|
- |
|
linux
redhat
|
linux_kernel
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux
enterprise_linux_desktop
|
Multiple buffer overflows in net/wireless/nl80211.c in the Linux kernel before 2.6.39.2 allow local users to gain privileges by leveraging the CAP_NET_ADMIN capability during scan operations with a l…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-2517
|
2024-11-21 10:28 |
2012-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298120
|
- |
|
cisco
|
ios
|
The HTTP client in Cisco IOS 12.4 and 15.0 allows user-assisted remote attackers to cause a denial of service (device crash) via a malformed HTTP response to a request for service installation, aka B…
|
CWE-20
Improper Input Validation
|
CVE-2011-2586
|
2024-11-21 10:28 |
2012-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
