|
297331
|
- |
|
schneider-electric
|
quantum_ethernet_module_140noe77101
quantum_ethernet_module_140noe77100
quantum_ethernet_module_140noe77111
|
The ComputePassword function in the Schneider Electric Quantum Ethernet Module on the NOE 771 device (aka the Quantum 140NOE771* module) generates the password for the fwupgrade account by performing…
|
CWE-287
Improper Authentication
|
CVE-2011-4860
|
2024-11-21 10:33 |
2011-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297332
|
- |
|
schneider-electric
|
quantum_ethernet_module_140noe77101
quantum_ethernet_module_140cpu65260
quantum_ethernet_module_140cpu65160
quantum_ethernet_module_140noe77100
quantum_ethernet_module_140cpu65150
quan…
|
The Schneider Electric Quantum Ethernet Module, as used in the Quantum 140NOE771* and 140CPU65* modules, the Premium TSXETY* and TSXP57* modules, the M340 BMXNOE01* and BMXP3420* modules, and the STB…
|
NVD-CWE-Other
|
CVE-2011-4859
|
2024-11-21 10:33 |
2011-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297333
|
- |
|
nullsoft
|
winamp
|
Heap-based buffer overflow in the in_mod.dll plugin in Winamp before 5.623 allows remote attackers to execute arbitrary code via crafted song message data in an Impulse Tracker (IT) file. NOTE: some…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4857
|
2024-11-21 10:33 |
2011-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297334
|
- |
|
parallels
|
parallels_plesk_panel
|
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 sends incorrect Content-Type headers for certain resources, which might allow remote attackers to have an unspecified impact by leve…
|
NVD-CWE-Other
|
CVE-2011-4856
|
2024-11-21 10:33 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297335
|
- |
|
parallels
|
parallels_plesk_panel
|
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 omits the Content-Type header's charset parameter for certain resources, which might allow remote attackers to have an unspecified i…
|
NVD-CWE-Other
|
CVE-2011-4855
|
2024-11-21 10:33 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297336
|
- |
|
parallels
|
parallels_plesk_panel
|
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 does not ensure that Content-Type HTTP headers match the corresponding Content-Type data in HTML META elements, which might allow re…
|
NVD-CWE-Other
|
CVE-2011-4854
|
2024-11-21 10:33 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297337
|
- |
|
parallels
|
parallels_plesk_panel
|
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 includes an RFC 1918 IP address within a web page, which allows remote attackers to obtain potentially sensitive information by read…
|
CWE-200
Information Exposure
|
CVE-2011-4853
|
2024-11-21 10:33 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297338
|
- |
|
parallels
|
parallels_plesk_panel
|
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 generates web pages containing external links in response to GET requests with query strings for enterprise/mobile-monitor/ and cert…
|
CWE-200
Information Exposure
|
CVE-2011-4852
|
2024-11-21 10:33 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297339
|
- |
|
parallels
|
parallels_plesk_panel
|
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 generates a password form field without disabling the autocomplete feature, which makes it easier for remote attackers to bypass aut…
|
CWE-255
Credentials Management
|
CVE-2011-4851
|
2024-11-21 10:33 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297340
|
- |
|
parallels
|
parallels_plesk_panel
|
The Control Panel in Parallels Plesk Panel 10.4.4_build20111103.18 does not include the HTTPOnly flag in a Set-Cookie header for a cookie, which makes it easier for remote attackers to obtain potenti…
|
CWE-200
Information Exposure
|
CVE-2011-4850
|
2024-11-21 10:33 |
2011-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
