|
300581
|
- |
|
libtiff
|
libtiff
|
Heap-based buffer overflow in the thunder (aka ThunderScan) decoder in tif_thunder.c in LibTIFF 3.9.4 and earlier allows remote attackers to execute arbitrary code via crafted THUNDER_2BITDELTAS data…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1167
|
2024-11-21 10:25 |
2011-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300582
|
- |
|
hp
|
discovery\&dependency_mapping_inventory
|
HP Discovery & Dependency Mapping Inventory (DDMI) 7.50, 7.51, 7.60, 7.61, 7.70, and 9.30 launches the Windows SNMP service with its default configuration, which allows remote attackers to obtain pot…
|
CWE-200
Information Exposure
|
CVE-2011-0890
|
2024-11-21 10:25 |
2011-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300583
|
- |
|
balbir_singh
|
libcgroup
|
The cgre_receive_netlink_msg function in daemon/cgrulesengd.c in cgrulesengd in the Control Group Configuration Library (aka libcgroup or libcg) before 0.37.1 does not verify that netlink messages or…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1022
|
2024-11-21 10:25 |
2011-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300584
|
- |
|
balbir_singh
|
libcgroup
|
Heap-based buffer overflow in the parse_cgroup_spec function in tools/tools-common.c in the Control Group Configuration Library (aka libcgroup or libcg) before 0.37.1 allows local users to gain privi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1006
|
2024-11-21 10:25 |
2011-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300585
|
- |
|
openldap
|
openldap
|
modrdn.c in slapd in OpenLDAP 2.4.x before 2.4.24 allows remote attackers to cause a denial of service (daemon crash) via a relative Distinguished Name (DN) modification request (aka MODRDN operation…
|
CWE-399
Resource Management Errors
|
CVE-2011-1081
|
2024-11-21 10:25 |
2011-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300586
|
- |
|
lars_hjemli
fedoraproject
|
cgit
fedora
|
Off-by-one error in the convert_query_hexchar function in html.c in cgit.cgi in cgit before 0.8.3.5 allows remote attackers to cause a denial of service (infinite loop) via a string composed of a % (…
|
CWE-193
Off-by-one Error
|
CVE-2011-1027
|
2024-11-21 10:25 |
2011-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300587
|
- |
|
openldap
|
openldap
|
bind.cpp in back-ndb in OpenLDAP 2.4.x before 2.4.24 does not require authentication for the root Distinguished Name (DN), which allows remote attackers to bypass intended access restrictions via an …
|
CWE-287
Improper Authentication
|
CVE-2011-1025
|
2024-11-21 10:25 |
2011-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300588
|
- |
|
openldap
|
openldap
|
chain.c in back-ldap in OpenLDAP 2.4.x before 2.4.24, when a master-slave configuration with a chain overlay and ppolicy_forward_updates (aka authentication-failure forwarding) is used, allows remote…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1024
|
2024-11-21 10:25 |
2011-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300589
|
- |
|
php
|
php
|
Use-after-free vulnerability in the substr_replace function in PHP 5.3.6 and earlier allows context-dependent attackers to cause a denial of service (memory corruption) or possibly have unspecified o…
|
CWE-399
Resource Management Errors
|
CVE-2011-1148
|
2024-11-21 10:25 |
2011-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300590
|
- |
|
php
|
php
|
Multiple format string vulnerabilities in phar_object.c in the phar extension in PHP 5.3.5 and earlier allow context-dependent attackers to obtain sensitive information from process memory, cause a d…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2011-1153
|
2024-11-21 10:25 |
2011-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
