|
297311
|
9.8 |
CRITICAL
Network
|
linux
redhat
|
dhcp6c
enterprise_linux
|
The DHCPv6 client (dhcp6c) as used in the dhcpv6 project through 2011-07-25 allows remote DHCP servers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP messag…
|
CWE-74
Injection
|
CVE-2011-2717
|
2024-11-21 10:28 |
2019-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297312
|
9.8 |
CRITICAL
Network
|
vsftpd_project
debian
|
vsftpd
debian_linux
|
vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on port 6200/tcp.
|
CWE-78
OS Command
|
CVE-2011-2523
|
2024-11-21 10:28 |
2019-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297313
|
5.3 |
MEDIUM
Local
|
packagekit_project
debian
redhat
|
packagekit
debian_linux
enterprise_linux_server
|
PackageKit 0.6.17 allows installation of unsigned RPM packages as though they were signed which may allow installation of non-trusted packages and execution of arbitrary code.
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2011-2515
|
2024-11-21 10:28 |
2019-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297314
|
7.5 |
HIGH
Network
|
freebsd
netbsd
|
freebsd
netbsd
|
Information Disclosure vulnerability in the 802.11 stack, as used in FreeBSD before 8.2 and NetBSD when using certain non-x86 architectures. A signedness error in the IEEE80211_IOC_CHANINFO ioctl all…
|
CWE-200
Information Exposure
|
CVE-2011-2480
|
2024-11-21 10:28 |
2019-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297315
|
7.5 |
HIGH
Network
|
drupal
debian
redhat
fedoraproject
|
drupal
debian_linux
enterprise_linux
fedora
|
An access bypass issue was found in Drupal 7.x before version 7.5. If a Drupal site has the ability to attach File upload fields to any entity type in the system or has the ability to point individua…
|
CWE-863
Incorrect Authorization
|
CVE-2011-2726
|
2024-11-21 10:28 |
2019-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297316
|
6.5 |
MEDIUM
Network
|
google
|
blink
|
Use after free vulnerability exists in WebKit in Google Chrome before Blink M12 in RenderLayerwhen removing elements with reflections.
|
CWE-416
Use After Free
|
CVE-2011-2334
|
2024-11-21 10:28 |
2019-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297317
|
7.5 |
HIGH
Network
|
google
|
blink
|
A double-free vulnerability exists in WebKit in Google Chrome before Blink M12 in the WebCore::CSSSelector function.
|
CWE-415
Double Free
|
CVE-2011-2335
|
2024-11-21 10:28 |
2019-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297318
|
9.8 |
CRITICAL
Network
|
google
|
blink
|
A wrong type is used for a return value from strlen in WebKit in Google Chrome before Blink M12 on 64-bit platforms.
|
CWE-704
Incorrect Type Conversion or Cast
|
CVE-2011-2337
|
2024-11-21 10:28 |
2019-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297319
|
6.5 |
MEDIUM
Network
|
google
|
blink
|
An issue exists in WebKit in Google Chrome before Blink M12. when clearing lists in AnimationControllerPrivate that signal when a hardware animation starts.
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2011-2336
|
2024-11-21 10:28 |
2019-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297320
|
6.5 |
MEDIUM
Network
|
google
|
blink
|
Use after free vulnerability in documentloader in WebKit in Google Chrome before Blink M13 in DocumentWriter::replaceDocument function.
|
CWE-416
Use After Free
|
CVE-2011-2353
|
2024-11-21 10:28 |
2019-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
