|
300011
|
- |
|
cisco
vmware
|
1000v_virtual_ethernet_module_\(vem\)
esx
esxi
|
Cisco Nexus 1000V Virtual Ethernet Module (VEM) 4.0(4) SV1(1) through SV1(3b), as used in VMware ESX 4.0 and 4.1 and ESXi 4.0 and 4.1, does not properly handle dropped packets, which allows guest OS …
|
CWE-399
Resource Management Errors
|
CVE-2011-0355
|
2024-11-21 10:23 |
2011-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300012
|
- |
|
rubyonrails
|
rails
|
Multiple cross-site scripting (XSS) vulnerabilities in the mail_to helper in Ruby on Rails before 2.3.11, and 3.x before 3.0.4, when javascript encoding is used, allow remote attackers to inject arbi…
|
CWE-79
Cross-site Scripting
|
CVE-2011-0446
|
2024-11-21 10:23 |
2011-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300013
|
- |
|
mit
|
kerberos_5
|
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.9 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a malformed request packet that…
|
NVD-CWE-Other
|
CVE-2011-0283
|
2024-11-21 10:23 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300014
|
- |
|
mit
|
kerberos
kerberos_5
|
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x through 1.9, when an LDAP backend is used, allows remote attackers to cause a denial of service (NULL pointer dereference or buffe…
|
NVD-CWE-Other
|
CVE-2011-0282
|
2024-11-21 10:23 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300015
|
- |
|
mit
|
kerberos
kerberos_5
|
The unparse implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x through 1.9, when an LDAP backend is used, allows remote attackers to cause a denial of service (fil…
|
CWE-310
Cryptographic Issues
|
CVE-2011-0281
|
2024-11-21 10:23 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300016
|
- |
|
microsoft
|
visio
|
ELEMENTS.DLL in Microsoft Visio 2002 SP2, 2003 SP3, and 2007 SP2 does not properly parse structures during the opening of a Visio file, which allows remote attackers to execute arbitrary code via a f…
|
CWE-94
Code Injection
|
CVE-2011-0093
|
2024-11-21 10:23 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300017
|
- |
|
microsoft
|
visio
|
The LZW stream decompression functionality in ORMELEMS.DLL in Microsoft Visio 2002 SP2, 2003 SP3, and 2007 SP2 allows remote attackers to execute arbitrary code via a Visio file with a malformed Visi…
|
CWE-94
Code Injection
|
CVE-2011-0092
|
2024-11-21 10:23 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300018
|
- |
|
microsoft
|
windows_server_2008
windows_7
|
Kerberos in Microsoft Windows Server 2008 R2 and Windows 7 does not prevent a session from changing from strong encryption to DES encryption, which allows man-in-the-middle attackers to spoof network…
|
CWE-287
Improper Authentication
|
CVE-2011-0091
|
2024-11-21 10:23 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300019
|
- |
|
microsoft
|
windows_xp
windows_server_2003
windows_2003_server
|
Kerberos in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 supports weak hashing algorithms, which allows local users to gain privileges by operating a service that sends crafted service ticket…
|
CWE-310
Cryptographic Issues
|
CVE-2011-0043
|
2024-11-21 10:23 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300020
|
- |
|
microsoft
|
internet_explorer
|
Untrusted search path vulnerability in Microsoft Internet Explorer 8 might allow local users to gain privileges via a Trojan horse IEShims.dll in the current working directory, as demonstrated by a D…
|
NVD-CWE-Other
|
CVE-2011-0038
|
2024-11-21 10:23 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
