|
297711
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
Buffer overflow in the clusterip_proc_write function in net/ipv4/netfilter/ipt_CLUSTERIP.c in the Linux kernel before 2.6.39 might allow local users to cause a denial of service or have unspecified o…
|
CWE-120
Classic Buffer Overflow
|
CVE-2011-2534
|
2024-11-21 10:28 |
2011-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297712
|
- |
|
freedesktop
|
dbus
|
The configure script in D-Bus (aka DBus) 1.2.x before 1.2.28 allows local users to overwrite arbitrary files via a symlink attack on an unspecified file in /tmp/.
|
CWE-59
Link Following
|
CVE-2011-2533
|
2024-11-21 10:28 |
2011-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297713
|
- |
|
prosody
|
prosody
|
The json.decode function in util/json.lua in Prosody 0.8.x before 0.8.1 might allow remote attackers to cause a denial of service (infinite loop) via invalid JSON data, as demonstrated by truncated d…
|
CWE-399
Resource Management Errors
|
CVE-2011-2532
|
2024-11-21 10:28 |
2011-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297714
|
- |
|
prosody
|
prosody
|
Prosody 0.8.x before 0.8.1, when MySQL is used, assigns an incorrect data type to the value column in certain tables, which might allow remote attackers to cause a denial of service (data truncation)…
|
CWE-399
Resource Management Errors
|
CVE-2011-2531
|
2024-11-21 10:28 |
2011-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297715
|
- |
|
rockwellautomation
|
rslinx
eds_hardware_installation_tool
|
Buffer overflow in RSEds.dll in RSHWare.exe in the EDS Hardware Installation Tool 1.0.5.1 and earlier in Rockwell Automation RSLinx Classic before 2.58 allows user-assisted remote attackers to cause …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-2530
|
2024-11-21 10:28 |
2011-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297716
|
- |
|
icinga
|
icinga
|
Multiple cross-site scripting (XSS) vulnerabilities in config.c in config.cgi in Icinga before 1.4.1, when escape_html_tags is disabled, allow remote attackers to inject arbitrary web script or HTML …
|
CWE-79
Cross-site Scripting
|
CVE-2011-2477
|
2024-11-21 10:28 |
2011-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297717
|
- |
|
coppermine-gallery
|
coppermine_photo_gallery
|
Cross-site scripting (XSS) vulnerability in Coppermine Photo Gallery (CPG) before 1.5.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerabil…
|
CWE-79
Cross-site Scripting
|
CVE-2011-2476
|
2024-11-21 10:28 |
2011-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297718
|
- |
|
sybase
|
onebridge_mobile_data_suite
|
Format string vulnerability in ECTrace.dll in the iMailGateway service in the Internet Mail Gateway in OneBridge Server and DMZ Proxy in Sybase OneBridge Mobile Data Suite 5.5 and 5.6 allows remote a…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2011-2475
|
2024-11-21 10:28 |
2011-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297719
|
- |
|
sybase
|
easerver
|
Directory traversal vulnerability in the HTTP Server in Sybase EAServer 6.3.1 Developer Edition allows remote attackers to read arbitrary files via a /.\../\../\ sequence in a path.
|
CWE-22
Path Traversal
|
CVE-2011-2474
|
2024-11-21 10:28 |
2011-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297720
|
- |
|
maynard_johnson
|
oprofile
|
The do_dump_data function in utils/opcontrol in OProfile 0.9.6 and earlier might allow local users to create or overwrite arbitrary files via a crafted --session-dir argument in conjunction with a sy…
|
CWE-59
Link Following
|
CVE-2011-2473
|
2024-11-21 10:28 |
2011-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
