|
299561
|
- |
|
php
|
php
|
The _zip_name_locate function in zip_name_locate.c in the Zip extension in PHP before 5.3.6 does not properly handle a ZIPARCHIVE::FL_UNCHANGED argument, which might allow context-dependent attackers…
|
NVD-CWE-Other
|
CVE-2011-0421
|
2024-11-21 10:23 |
2011-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299562
|
- |
|
mit
|
kerberos_5
|
Double free vulnerability in the prepare_error_as function in do_as_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 through 1.9, when the PKINIT feature is enabled, allows…
|
CWE-399
Resource Management Errors
|
CVE-2011-0284
|
2024-11-21 10:23 |
2011-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299563
|
- |
|
emc
|
avamar
|
The service utility in EMC Avamar 5.x before 5.0.4 uses cleartext to transmit event details in (1) service requests and (2) e-mail messages, which might allow remote attackers to obtain sensitive inf…
|
CWE-310
Cryptographic Issues
|
CVE-2011-0442
|
2024-11-21 10:23 |
2011-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299564
|
- |
|
postfix
|
postfix
|
The STARTTLS implementation in Postfix 2.4.x before 2.4.16, 2.5.x before 2.5.12, 2.6.x before 2.6.9, and 2.7.x before 2.7.3 does not properly restrict I/O buffering, which allows man-in-the-middle at…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-0411
|
2024-11-21 10:23 |
2011-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299565
|
- |
|
rsa
|
access_manager_server
|
Unspecified vulnerability in EMC RSA Access Manager Server 5.5.x, 6.0.x, and 6.1.x allows remote attackers to access resources via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2011-0322
|
2024-11-21 10:23 |
2011-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299566
|
- |
|
arthurdejong
|
nss-pam-ldapd
|
nslcd/pam.c in the nss-pam-ldapd 0.8.0 PAM module returns a success code when a user is not found in LDAP, which allows remote attackers to bypass authentication.
|
CWE-287
Improper Authentication
|
CVE-2011-0438
|
2024-11-21 10:23 |
2011-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299567
|
- |
|
mj2
|
majordomo_2
|
The _list_file_get function in lib/Majordomo.pm in Majordomo 2 20110203 and earlier allows remote attackers to conduct directory traversal attacks and read arbitrary files via a ./.../ sequence in th…
|
CWE-22
Path Traversal
|
CVE-2011-0063
|
2024-11-21 10:23 |
2011-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299568
|
- |
|
zaal
|
tgt
|
Double free vulnerability in the iscsi_rx_handler function (usr/iscsi/iscsid.c) in the tgt daemon (tgtd) in Linux SCSI target framework (tgt) before 1.0.14, aka scsi-target-utils, allows remote attac…
|
CWE-399
Resource Management Errors
|
CVE-2011-0001
|
2024-11-21 10:23 |
2011-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299569
|
- |
|
simon_pamies
|
pywebdav
|
Multiple SQL injection vulnerabilities in the get_userinfo method in the MySQLAuthHandler class in DAVServer/mysqlauth.py in PyWebDAV before 0.9.4.1 allow remote attackers to execute arbitrary SQL co…
|
CWE-89
SQL Injection
|
CVE-2011-0432
|
2024-11-21 10:23 |
2011-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299570
|
- |
|
hp
|
power_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in HP Power Manager (HPPM) 4.3.2 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the logType parameter to Content…
|
CWE-79
Cross-site Scripting
|
CVE-2011-0280
|
2024-11-21 10:23 |
2011-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
