|
299031
|
- |
|
mit
|
kerberos_5
|
The kdb_ldap plugin in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.9 through 1.9.1, when the LDAP back end is used, allows remote attackers to cause a denial of service (NULL poi…
|
CWE-20
Improper Input Validation
|
CVE-2011-1527
|
2024-11-21 10:26 |
2011-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299032
|
- |
|
novell
|
identity_manager_roles_based_provisioning_module
identity_manager_user_application
|
Cross-site scripting (XSS) vulnerability in Novell Identity Manager (aka IDM) User Application 3.5.0, 3.5.1, 3.6.0, 3.6.1, 3.7.0, and 4.0.0, and Identity Manager Roles Based Provisioning Module 3.6.0…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1696
|
2024-11-21 10:26 |
2011-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299033
|
- |
|
gitolite
|
gitolite
|
Directory traversal vulnerability in the Admin Defined Commands (ADC) feature in gitolite before 1.5.9.1 allows remote attackers to execute arbitrary commands via .. (dot dot) sequences in admin-defi…
|
CWE-22
Path Traversal
|
CVE-2011-1572
|
2024-11-21 10:26 |
2011-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299034
|
- |
|
manageengine
|
servicedesk_plus
|
Cross-site scripting (XSS) vulnerability in SolutionSearch.do in ManageEngine ServiceDesk Plus (SDP) before 8012 allows remote attackers to inject arbitrary web script or HTML via the searchText para…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1510
|
2024-11-21 10:26 |
2011-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299035
|
- |
|
manageengine
|
servicedesk_plus
|
The encryptPassword function in Login.js in ManageEngine ServiceDesk Plus (SDP) 8012 and earlier uses a Caesar cipher for encryption of passwords in cookies, which makes it easier for remote attacker…
|
CWE-310
Cryptographic Issues
|
CVE-2011-1509
|
2024-11-21 10:26 |
2011-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299036
|
- |
|
emc
|
avamar
|
EMC Avamar 4.x, 5.0.x, and 6.0.x before 6.0.0-592 allows remote authenticated users to modify client data or obtain sensitive information about product activities by leveraging privileged access to a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1740
|
2024-11-21 10:26 |
2011-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299037
|
- |
|
adobe
|
acrobat_reader
|
Unspecified vulnerability in Adobe Reader 10.x before 10.1.1 on Windows allows local users to gain privileges via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2011-1353
|
2024-11-21 10:26 |
2011-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299038
|
- |
|
ibm
|
websphere_application_server
|
Directory traversal vulnerability in the administration console in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.41, 7.0 before 7.0.0.19, and 8.0 before 8.0.0.1 allows remote attackers to r…
|
CWE-22
Path Traversal
|
CVE-2011-1359
|
2024-11-21 10:26 |
2011-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299039
|
- |
|
shibboleth
|
opensaml
shibboleth-identity-provider
|
Shibboleth OpenSAML library 2.4.x before 2.4.3 and 2.5.x before 2.5.1, and IdP before 2.3.2, allows remote attackers to forge messages and bypass authentication via an "XML Signature wrapping attack."
|
CWE-287
Improper Authentication
|
CVE-2011-1411
|
2024-11-21 10:26 |
2011-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299040
|
- |
|
linux
redhat
|
linux_kernel
enterprise_linux
enterprise_virtualization_hypervisor
|
The Generic Receive Offload (GRO) implementation in the Linux kernel 2.6.18 on Red Hat Enterprise Linux 5 and 2.6.32 on Red Hat Enterprise Linux 6, as used in Red Hat Enterprise Virtualization (RHEV)…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1576
|
2024-11-21 10:26 |
2011-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
