|
299731
|
7.5 |
HIGH
Network
|
pyro_project
|
pyro
|
pyro before 3.15 unsafely handles pid files in temporary directory locations and opening the pid file as root. An attacker can use this flaw to overwrite arbitrary files via symlinks.
|
CWE-59
Link Following
|
CVE-2011-2765
|
2024-11-21 10:28 |
2018-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299732
|
5.5 |
MEDIUM
Local
|
rkkda
|
foo2zjs
|
foo2zjs before 20110722dfsg-3ubuntu1 as packaged in Ubuntu, 20110722dfsg-1 as packaged in Debian unstable, and 20090908dfsg-5.1+squeeze0 as packaged in Debian squeeze create temporary files insecurel…
|
CWE-59
Link Following
|
CVE-2011-2684
|
2024-11-21 10:28 |
2017-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299733
|
5.9 |
MEDIUM
Network
|
reseed_project
|
reseed
|
reseed seeds random numbers from an insecure HTTP request to random.org during installation, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a man-in-the-…
|
CWE-254
7PK - Security Features
|
CVE-2011-2683
|
2024-11-21 10:28 |
2017-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299734
|
- |
|
tribiq
|
tribiq_cms
|
The (1) templatewrap/templatefoot.php, (2) cmsjs/plugin.js.php, and (3) cmsincludes/cms_plugin_api_link.inc.php scripts in Tribal Tribiq CMS before 5.2.7c allow remote attackers to obtain sensitive i…
|
CWE-200
Information Exposure
|
CVE-2011-2727
|
2024-11-21 10:28 |
2014-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299735
|
- |
|
gnu
|
glibc
eglibc
|
Integer signedness error in Glibc before 2.13 and eglibc before 2.13, when using Supplemental Streaming SIMD Extensions 3 (SSSE3) optimization, allows context-dependent attackers to execute arbitrary…
|
CWE-94
Code Injection
|
CVE-2011-2702
|
2024-11-21 10:28 |
2014-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299736
|
- |
|
citrix
|
access_gateway_plug-in
|
Integer overflow in the StartEpa method in the nsepacom ActiveX control (nsepa.exe) in Citrix Access Gateway Enterprise Edition Plug-in for Windows 9.x before 9.3-57.5 and 10.0 before 10.0-69.4 allow…
|
CWE-189
Numeric Errors
|
CVE-2011-2593
|
2024-11-21 10:28 |
2014-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299737
|
- |
|
citrix
|
access_gateway_plug-in
|
Heap-based buffer overflow in the StartEpa method in the nsepacom ActiveX control (nsepa.exe) in Citrix Access Gateway Enterprise Edition Plug-in for Windows 9.x before 9.3-57.5 and 10.0 before 10.0-…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-2592
|
2024-11-21 10:28 |
2014-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299738
|
- |
|
redhat
|
icedtea-web
icedtea6
|
The Java Network Launching Protocol (JNLP) implementation in IcedTea6 1.9.x before 1.9.9 and before 1.8.9, and IcedTea-Web 1.1.x before 1.1.1 and before 1.0.4, allows remote attackers to trick victim…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2514
|
2024-11-21 10:28 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299739
|
- |
|
redhat
|
icedtea-web
icedtea6
|
The Java Network Launching Protocol (JNLP) implementation in IcedTea6 1.9.x before 1.9.9 and before 1.8.9, and IcedTea-Web 1.1.x before 1.1.1 and before 1.0.4, allows remote attackers to obtain the u…
|
CWE-200
Information Exposure
|
CVE-2011-2513
|
2024-11-21 10:28 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299740
|
- |
|
linux-nfs
|
nfs-utils
|
The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils before 1.2.4 does not properly use DNS to verify access to NFS exports, which allows remote attackers to mount filesystem…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2500
|
2024-11-21 10:28 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
