|
298271
|
- |
|
ibm
|
websphere_application_server
|
The JavaServer Faces (JSF) application functionality in IBM WebSphere Application Server 8.x before 8.0.0.1 does not properly handle requests, which allows remote attackers to read unspecified files …
|
CWE-200
Information Exposure
|
CVE-2011-1368
|
2024-11-21 10:26 |
2011-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298272
|
- |
|
ibm
|
websphere_ilog_rule_team_server
|
Cross-site scripting (XSS) vulnerability in content/error.jsp in IBM WebSphere ILOG Rule Team Server 7.1.1 allows remote attackers to inject arbitrary web script or HTML via vectors that trigger an U…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1371
|
2024-11-21 10:26 |
2011-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298273
|
- |
|
ibm
|
http_server
|
Multiple cross-site scripting (XSS) vulnerabilities in IBM HTTP Server 2.0.47 and earlier, as used in WebSphere Application Server and other products, allow remote attackers to inject arbitrary web s…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1360
|
2024-11-21 10:26 |
2011-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298274
|
- |
|
linux
|
linux_kernel
|
The napi_reuse_skb function in net/core/dev.c in the Generic Receive Offload (GRO) implementation in the Linux kernel before 2.6.38 does not reset the values of certain structure members, which might…
|
CWE-476
NULL Pointer Dereference
|
CVE-2011-1478
|
2024-11-21 10:26 |
2011-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298275
|
7.5 |
HIGH
Network
|
cisco
|
ios
|
The ethernet-lldp component in Cisco IOS 12.2 before 12.2(33)SXJ1 does not properly support a large number of LLDP Management Address (MA) TLVs, which allows remote attackers to cause a denial of ser…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2011-1640
|
2024-11-21 10:26 |
2011-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298276
|
- |
|
mit
|
kerberos_5
|
The lookup_lockout_policy function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8 through 1.8.4 and 1.9 through 1.9.1, when the db2 (aka Berkeley DB) or LDAP back end is used, …
|
CWE-20
Improper Input Validation
|
CVE-2011-1529
|
2024-11-21 10:26 |
2011-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298277
|
- |
|
mit
|
kerberos_5
|
The krb5_ldap_lockout_audit function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8 through 1.8.4 and 1.9 through 1.9.1, when the LDAP back end is used, allows remote attackers…
|
CWE-20
Improper Input Validation
|
CVE-2011-1528
|
2024-11-21 10:26 |
2011-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298278
|
- |
|
mit
|
kerberos_5
|
The kdb_ldap plugin in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.9 through 1.9.1, when the LDAP back end is used, allows remote attackers to cause a denial of service (NULL poi…
|
CWE-20
Improper Input Validation
|
CVE-2011-1527
|
2024-11-21 10:26 |
2011-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298279
|
- |
|
novell
|
identity_manager_roles_based_provisioning_module
identity_manager_user_application
|
Cross-site scripting (XSS) vulnerability in Novell Identity Manager (aka IDM) User Application 3.5.0, 3.5.1, 3.6.0, 3.6.1, 3.7.0, and 4.0.0, and Identity Manager Roles Based Provisioning Module 3.6.0…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1696
|
2024-11-21 10:26 |
2011-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298280
|
- |
|
gitolite
|
gitolite
|
Directory traversal vulnerability in the Admin Defined Commands (ADC) feature in gitolite before 1.5.9.1 allows remote attackers to execute arbitrary commands via .. (dot dot) sequences in admin-defi…
|
CWE-22
Path Traversal
|
CVE-2011-1572
|
2024-11-21 10:26 |
2011-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
