|
300551
|
- |
|
microsoft
|
windows_xp
|
The Windows Messenger ActiveX control in msgsc.dll in Microsoft Windows XP SP2 and SP3 allows remote attackers to execute arbitrary code via unspecified vectors that "corrupt the system state," aka "…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1243
|
2024-11-21 10:25 |
2011-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300552
|
- |
|
roy_marples
|
dhcpcd
|
dhcpcd before 5.2.12 allows remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a DHCP message.
|
CWE-20
Improper Input Validation
|
CVE-2011-0996
|
2024-11-21 10:25 |
2011-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300553
|
- |
|
mark_pilgrim
|
feedparser
|
Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) 5.x before 5.0.1 allows remote attackers to inject arbitrary web script or HTM…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1158
|
2024-11-21 10:25 |
2011-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300554
|
- |
|
mark_pilgrim
|
feedparser
|
Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) 5.x before 5.0.1 allows remote attackers to inject arbitrary web script or HTM…
|
CWE-79
Cross-site Scripting
|
CVE-2011-1157
|
2024-11-21 10:25 |
2011-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300555
|
- |
|
mark_pilgrim
|
feedparser
|
feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) before 5.0.1 allows remote attackers to cause a denial of service (application crash) via a malformed DOCTYPE declaration.
|
CWE-399
Resource Management Errors
|
CVE-2011-1156
|
2024-11-21 10:25 |
2011-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300556
|
- |
|
gnu
|
glibc
|
locale/programs/locale.c in locale in the GNU C Library (aka glibc or libc6) before 2.13 does not quote its output, which might allow local users to gain privileges via a crafted localization environ…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1095
|
2024-11-21 10:25 |
2011-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300557
|
- |
|
gnu
|
glibc
|
The addmntent function in the GNU C Library (aka glibc or libc6) 2.13 and earlier does not report an error status for failed attempts to write to the /etc/mtab file, which makes it easier for local u…
|
CWE-16
Configuration
|
CVE-2011-1089
|
2024-11-21 10:25 |
2011-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300558
|
- |
|
novell
|
file_reporter
|
Stack-based buffer overflow in NFRAgent.exe in Novell File Reporter (NFR) before 1.0.2 allows remote attackers to execute arbitrary code via unspecified XML data.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0994
|
2024-11-21 10:25 |
2011-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300559
|
- |
|
linux
suse
redhat
|
linux_kernel
linux_enterprise_server
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_eus
|
The osf_partition function in fs/partitions/osf.c in the Linux kernel before 2.6.38 does not properly handle an invalid number of partitions, which might allow local users to obtain potentially sensi…
|
CWE-20
Improper Input Validation
|
CVE-2011-1163
|
2024-11-21 10:25 |
2011-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300560
|
- |
|
apache
|
tomcat
|
Apache Tomcat 7.0.11, when web.xml has no login configuration, does not follow security constraints, which allows remote attackers to bypass intended access restrictions via HTTP requests to a meta-d…
|
NVD-CWE-Other
|
CVE-2011-1183
|
2024-11-21 10:25 |
2011-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
