|
298151
|
- |
|
keepalived
|
keepalived
|
The pidfile_write function in core/pidfile.c in keepalived 1.2.2 and earlier uses 0666 permissions for the (1) keepalived.pid, (2) checkers.pid, and (3) vrrp.pid files in /var/run/, which allows loca…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1784
|
2024-11-21 10:27 |
2011-05-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298152
|
- |
|
ibm
|
datacap_taskmaster_capture
|
The eDocument Conversion Actions implementation in IBM Datacap Taskmaster Capture 8.0.1 FP1 and earlier allows remote attackers to cause a denial of service (batch abort) via a long subject line in a…
|
CWE-399
Resource Management Errors
|
CVE-2011-2144
|
2024-11-21 10:27 |
2011-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298153
|
- |
|
ibm
|
datacap_taskmaster_capture
|
IBM Datacap Taskmaster Capture 8.0.1 before FP1, when Windows Authentication is enabled, allows remote attackers to obtain login access by using an incorrect password in conjunction with an account n…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2143
|
2024-11-21 10:27 |
2011-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298154
|
- |
|
ibm
|
datacap_taskmaster_capture
|
The Web Client Service in IBM Datacap Taskmaster Capture 8.0.1 before FP1 requires a cleartext password, which has unspecified impact and attack vectors.
|
CWE-310
Cryptographic Issues
|
CVE-2011-2142
|
2024-11-21 10:27 |
2011-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298155
|
- |
|
ibm
|
datacap_taskmaster_capture
|
SQL injection vulnerability in TMWeb in IBM Datacap Taskmaster Capture 8.0.1 before FP1 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2011-2141
|
2024-11-21 10:27 |
2011-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298156
|
- |
|
hp
|
business_availability_center
|
Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 8.06 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-1856
|
2024-11-21 10:27 |
2011-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298157
|
- |
|
evan_dandrea
|
usb-creator
|
usb-creator-helper in usb-creator before 0.2.28.3 does not enforce intended PolicyKit restrictions, which allows local users to perform arbitrary unmount operations via the UnmountFile method in a db…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1828
|
2024-11-21 10:27 |
2011-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298158
|
- |
|
ca
|
ehealth
|
Multiple cross-site scripting (XSS) vulnerabilities in CA eHealth 6.0.x, 6.1.x, 6.2.1, and 6.2.2 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters.
|
CWE-79
Cross-site Scripting
|
CVE-2011-1899
|
2024-11-21 10:27 |
2011-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298159
|
- |
|
google
|
chrome
|
Multiple integer overflows in the SVG Filters implementation in WebCore in WebKit in Google Chrome before 11.0.696.68 allow remote attackers to cause a denial of service or possibly have unspecified …
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2011-1800
|
2024-11-21 10:27 |
2011-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298160
|
- |
|
google
debian
|
chrome
debian_linux
|
Google Chrome before 11.0.696.68 does not properly perform casts of variables during interaction with the WebKit engine, which allows remote attackers to cause a denial of service or possibly have un…
|
CWE-704
Incorrect Type Conversion or Cast
|
CVE-2011-1799
|
2024-11-21 10:27 |
2011-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
