|
302181
|
- |
|
gentoo
|
logrotate
|
The default configuration of logrotate on Gentoo Linux uses root privileges to process files in directories that permit non-root write access, which allows local users to conduct symlink and hard lin…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1549
|
2024-11-21 10:26 |
2011-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302182
|
- |
|
gentoo
|
logrotate
|
The default configuration of logrotate on Debian GNU/Linux uses root privileges to process files in directories that permit non-root write access, which allows local users to conduct symlink and hard…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1548
|
2024-11-21 10:26 |
2011-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302183
|
- |
|
nokia
|
e75_firmware
e75
|
The Nokia E75 phone with firmware before 211.12.01 allows physically proximate attackers to bypass the Device Lock code by entering an unspecified button sequence at boot time.
|
CWE-287
Improper Authentication
|
CVE-2011-1472
|
2024-11-21 10:26 |
2011-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302184
|
- |
|
symantec
|
liveupdate_administrator
|
Cross-site scripting (XSS) vulnerability in the management login GUI page in Symantec LiveUpdate Administrator (LUA) before 2.3 allows remote attackers to inject arbitrary web script or HTML via the …
|
CWE-79
Cross-site Scripting
|
CVE-2011-1524
|
2024-11-21 10:26 |
2011-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302185
|
- |
|
emc
oracle
|
data_protection_advisor_collector
solaris_sparc
|
EMC Data Protection Advisor Collector 5.7 and 5.7.1 on Solaris SPARC platforms uses weak permissions for unspecified files, which allows local users to gain privileges via unknown vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1420
|
2024-11-21 10:26 |
2011-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302186
|
- |
|
ibm
|
lotus_domino
|
The default configuration of the server console in IBM Lotus Domino does not require a password (aka Server_Console_Password), which allows physically proximate attackers to perform administrative ch…
|
CWE-287
Improper Authentication
|
CVE-2011-1520
|
2024-11-21 10:26 |
2011-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302187
|
- |
|
ibm
|
lotus_domino
|
The remote console in the Server Controller in IBM Lotus Domino 7.x and 8.x verifies credentials against a file located at a UNC share pathname specified by the client, which allows remote attackers …
|
CWE-287
Improper Authentication
|
CVE-2011-1519
|
2024-11-21 10:26 |
2011-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302188
|
- |
|
debian
canonical
|
tex-common
ubuntu_linux
debian_linux
|
The default configuration of the shell_escape_commands directive in conf/texmf.d/95NonPath.cnf in the tex-common package before 2.08.1 in Debian GNU/Linux squeeze, Ubuntu 10.10 and 10.04 LTS, and pos…
|
CWE-16
Configuration
|
CVE-2011-1400
|
2024-11-21 10:26 |
2011-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302189
|
- |
|
google
apple
|
chrome
iphone_os
itunes
safari
|
Google Chrome before 10.0.648.204 does not properly handle SVG text, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead…
|
CWE-20
Improper Input Validation
|
CVE-2011-1296
|
2024-11-21 10:26 |
2011-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302190
|
- |
|
google
apple
|
chrome
iphone_os
safari
|
WebKit, as used in Google Chrome before 10.0.648.204 and Apple Safari before 5.0.6, does not properly handle node parentage, which allows remote attackers to cause a denial of service (DOM tree corru…
|
CWE-20
Improper Input Validation
|
CVE-2011-1295
|
2024-11-21 10:26 |
2011-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
