|
297631
|
- |
|
google
|
android
|
Android Picasa in Android 3.0 and 2.x through 2.3.4 uses a cleartext HTTP session when transmitting the authToken obtained from ClientLogin, which allows remote attackers to gain privileges and acces…
|
CWE-310
Cryptographic Issues
|
CVE-2011-2344
|
2024-11-21 10:28 |
2011-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297632
|
- |
|
ibm
|
rational_doors_web_access
|
The Login component in IBM Rational DOORS Web Access 1.4.x before 1.4.0.4 allows remote authenticated users to cause a denial of service (license consumption) by trying to login to DOORS Web Access w…
|
CWE-399
Resource Management Errors
|
CVE-2011-2682
|
2024-11-21 10:28 |
2011-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297633
|
- |
|
ibm
|
rational_doors_web_access
|
IBM Rational DOORS Web Access 1.4.x before 1.4.0.4 does not properly handle exceptions, which has unspecified impact and remote attack vectors.
|
CWE-20
Improper Input Validation
|
CVE-2011-2681
|
2024-11-21 10:28 |
2011-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297634
|
- |
|
ibm
|
rational_doors_web_access
|
Unspecified vulnerability in IBM Rational DOORS Web Access 1.4.x before 1.4.0.4 has unknown impact and remote attack vectors related to the "server error response."
|
NVD-CWE-noinfo
|
CVE-2011-2680
|
2024-11-21 10:28 |
2011-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297635
|
- |
|
ibm
|
rational_doors_web_access
|
Cross-site scripting (XSS) vulnerability in IBM Rational DOORS Web Access 1.4.x before 1.4.0.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-2679
|
2024-11-21 10:28 |
2011-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297636
|
- |
|
cisco
|
vpn_client
|
The Cisco VPN Client 5.0.7.0240 and 5.0.7.0290 on 64-bit Windows platforms uses weak permissions (NT AUTHORITY\INTERACTIVE:F) for cvpnd.exe, which allows local users to gain privileges by replacing t…
|
NVD-CWE-Other
|
CVE-2011-2678
|
2024-11-21 10:28 |
2011-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297637
|
- |
|
wireshark
|
wireshark
|
The Lucent/Ascend file parser in Wireshark 1.2.x before 1.2.18, 1.4.x through 1.4.7, and 1.6.0 allows remote attackers to cause a denial of service (infinite loop) via malformed packets.
|
CWE-399
Resource Management Errors
|
CVE-2011-2597
|
2024-11-21 10:28 |
2011-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297638
|
- |
|
digium
|
asterisk
|
The default configuration of the SIP channel driver in Asterisk Open Source 1.4.x through 1.4.41.2 and 1.6.2.x through 1.6.2.18.2 does not enable the alwaysauthreject option, which allows remote atta…
|
CWE-16
Configuration
|
CVE-2011-2666
|
2024-11-21 10:28 |
2011-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297639
|
- |
|
digium
|
asterisk
|
reqresp_parser.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.4.3 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a SIP pack…
|
NVD-CWE-Other
|
CVE-2011-2665
|
2024-11-21 10:28 |
2011-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297640
|
- |
|
digium
|
asterisk
|
chan_sip.c in the SIP channel driver in Asterisk Open Source 1.4.x before 1.4.41.2, 1.6.2.x before 1.6.2.18.2, and 1.8.x before 1.8.4.4, and Asterisk Business Edition C.3.x before C.3.7.3, disregards…
|
CWE-200
Information Exposure
|
CVE-2011-2536
|
2024-11-21 10:28 |
2011-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
