|
300491
|
- |
|
vmware
|
esx
esxi
fusion
player
workstation
|
mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7.1.x before 7.1.4, VMware Player 3.1.x before 3.1.4, VMware Fusion 3.1.x before 3.1.3, VMware ESXi 3.5 through 4.1, and…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2145
|
2024-11-21 10:27 |
2011-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300492
|
- |
|
wireshark
|
wireshark
|
The snoop_read function in wiretap/snoop.c in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 does not properly handle certain virtualizable buffers, which allows remote attackers to cause a den…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1959
|
2024-11-21 10:27 |
2011-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300493
|
- |
|
wireshark
|
wireshark
|
Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows user-assisted remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Diameter diction…
|
NVD-CWE-Other
|
CVE-2011-1958
|
2024-11-21 10:27 |
2011-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300494
|
- |
|
wireshark
|
wireshark
|
The dissect_dcm_main function in epan/dissectors/packet-dcm.c in the DICOM dissector in Wireshark 1.2.x before 1.2.17 and 1.4.x before 1.4.7 allows remote attackers to cause a denial of service (infi…
|
CWE-399
Resource Management Errors
|
CVE-2011-1957
|
2024-11-21 10:27 |
2011-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300495
|
- |
|
wireshark
|
wireshark
|
The bytes_repr_len function in Wireshark 1.4.5 uses an incorrect pointer argument, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via arbi…
|
NVD-CWE-Other
|
CVE-2011-1956
|
2024-11-21 10:27 |
2011-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300496
|
- |
|
postrev
|
post_revolution
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Post Revolution 0.8.0c-2 and earlier allow remote attackers to hijack the authentication of arbitrary users for requests to (1) ajax-webl…
|
CWE-352
Origin Validation Error
|
CVE-2011-1954
|
2024-11-21 10:27 |
2011-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300497
|
- |
|
postrev
|
post_revolution
|
Multiple cross-site scripting (XSS) vulnerabilities in common.php in Post Revolution before 0.8.0c-2 allow remote attackers to inject arbitrary web script or HTML via an attribute of a (1) P, a (2) S…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1953
|
2024-11-21 10:27 |
2011-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300498
|
- |
|
postrev
|
post_revolution
|
common.php in Post Revolution before 0.8.0c-2 allows remote attackers to cause a denial of service (infinite loop) via malformed HTML markup, as demonstrated by an a< sequence.
|
CWE-399
Resource Management Errors
|
CVE-2011-1952
|
2024-11-21 10:27 |
2011-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300499
|
- |
|
plone
|
plone
|
plone.app.users in Plone 4.0 and 4.1 allows remote authenticated users to modify the properties of arbitrary accounts via unspecified vectors, as exploited in the wild in June 2011.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1950
|
2024-11-21 10:27 |
2011-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300500
|
- |
|
plone
|
plone
|
Cross-site scripting (XSS) vulnerability in the safe_html filter in Products.PortalTransforms in Plone 2.1 through 4.1 allows remote authenticated users to inject arbitrary web script or HTML via uns…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1949
|
2024-11-21 10:27 |
2011-06-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
