|
298581
|
- |
|
php
|
php
|
Unspecified vulnerability in the NumberFormatter::setSymbol (aka numfmt_set_symbol) function in the Intl extension in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service …
|
NVD-CWE-noinfo
|
CVE-2011-1467
|
2024-11-21 10:26 |
2011-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298582
|
- |
|
php
|
php
|
Integer overflow in the SdnToJulian function in the Calendar extension in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (application crash) via a large integer in t…
|
CWE-189
Numeric Errors
|
CVE-2011-1466
|
2024-11-21 10:26 |
2011-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298583
|
- |
|
google
|
chrome
|
The SPDY implementation in net/http/http_network_transaction.cc in Google Chrome before 11.0.696.14 drains the bodies from SPDY responses, which might allow remote SPDY servers to cause a denial of s…
|
NVD-CWE-noinfo
|
CVE-2011-1465
|
2024-11-21 10:26 |
2011-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298584
|
- |
|
php
|
php
|
Buffer overflow in the strval function in PHP before 5.3.6, when the precision configuration option has a large value, might allow context-dependent attackers to cause a denial of service (applicatio…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1464
|
2024-11-21 10:26 |
2011-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298585
|
- |
|
otrs
|
otrs
|
The (1) AgentInterface and (2) CustomerInterface components in Open Ticket Request System (OTRS) before 3.0.6 place cleartext credentials into the session data in the database, which makes it easier …
|
CWE-310
Cryptographic Issues
|
CVE-2011-1433
|
2024-11-21 10:26 |
2011-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298586
|
- |
|
sco
|
scoofficeserver
|
The STARTTLS implementation in SCO SCOoffice Server does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted SMTP sessions by sending a cle…
|
NVD-CWE-Other
|
CVE-2011-1432
|
2024-11-21 10:26 |
2011-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298587
|
- |
|
frederik_vermeulen
|
netqmail
|
The STARTTLS implementation in qmail-smtpd.c in qmail-smtpd in the netqmail-1.06-tls patch for netqmail 1.06 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to inse…
|
NVD-CWE-Other
|
CVE-2011-1431
|
2024-11-21 10:26 |
2011-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298588
|
- |
|
ipswitch
|
imail
|
The STARTTLS implementation in the server in Ipswitch IMail 11.03 and earlier does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted SMTP…
|
CWE-20
Improper Input Validation
|
CVE-2011-1430
|
2024-11-21 10:26 |
2011-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298589
|
- |
|
mutt
|
mutt
|
Mutt does not verify that the smtps server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL SMTP server via an arbitra…
|
CWE-20
Improper Input Validation
|
CVE-2011-1429
|
2024-11-21 10:26 |
2011-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298590
|
- |
|
flashtux
|
weechat
|
Wee Enhanced Environment for Chat (aka WeeChat) 0.3.4 and earlier does not properly verify that the server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in…
|
CWE-20
Improper Input Validation
|
CVE-2011-1428
|
2024-11-21 10:26 |
2011-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
