|
299581
|
- |
|
geoff_wong
|
hammerhead
|
hammerhead.cc in Hammerhead 2.1.4 allows local users to write to arbitrary files via a symlink attack on (1) /tmp/hammer.log (aka the HH_LOG file) or (2) the REPORT_LOG file.
|
CWE-59
Link Following
|
CVE-2011-3204
|
2024-11-21 10:29 |
2011-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299582
|
- |
|
rsyslog
|
rsyslog
|
Stack-based buffer overflow in the parseLegacySyslogMsg function in tools/syslogd.c in rsyslogd in rsyslog 4.6.x before 4.6.8 and 5.2.0 through 5.8.4 might allow remote attackers to cause a denial of…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3200
|
2024-11-21 10:29 |
2011-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299583
|
- |
|
squid-cache
|
squid
|
Buffer overflow in the gopherToHTML function in gopher.cc in the Gopher reply parser in Squid 3.0 before 3.0.STABLE26, 3.1 before 3.1.15, and 3.2 before 3.2.0.11 allows remote Gopher servers to cause…
|
NVD-CWE-Other
|
CVE-2011-3205
|
2024-11-21 10:29 |
2011-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299584
|
- |
|
tibco
|
spotfire_server
spotfire_analytics_server
|
Unspecified vulnerability in TIBCO Spotfire Server 3.0.x before 3.0.2, 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.1, and Spotfire Analytics Server before 10.1.1, allows remote attac…
|
NVD-CWE-noinfo
|
CVE-2011-3134
|
2024-11-21 10:29 |
2011-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299585
|
- |
|
tibco
|
spotfire_server
spotfire_analytics_server
|
Session fixation vulnerability in TIBCO Spotfire Server 3.0.x before 3.0.2, 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.1, and Spotfire Analytics Server before 10.1.1, allows remote …
|
NVD-CWE-Other
|
CVE-2011-3133
|
2024-11-21 10:29 |
2011-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299586
|
- |
|
tibco
|
spotfire_server
spotfire_analytics_server
|
Cross-site scripting (XSS) vulnerability in TIBCO Spotfire Server 3.0.x before 3.0.2, 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.1, and Spotfire Analytics Server before 10.1.1, allo…
|
CWE-79
Cross-site Scripting
|
CVE-2011-3132
|
2024-11-21 10:29 |
2011-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299587
|
- |
|
rhythm
|
tcptrack
|
Heap-based buffer overflow in tcptrack before 1.4.2 might allow attackers to execute arbitrary code via a long command line argument. NOTE: this is only a vulnerability in limited scenarios in which …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-2903
|
2024-11-21 10:29 |
2011-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299588
|
- |
|
apache
|
tomcat
|
Certain AJP protocol connector implementations in Apache Tomcat 7.0.0 through 7.0.20, 6.0.0 through 6.0.33, 5.5.0 through 5.5.33, and possibly other versions allow remote attackers to spoof AJP reque…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-3190
|
2024-11-21 10:29 |
2011-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299589
|
- |
|
redhat
|
system-config-printer
|
pysmb.py in system-config-printer 0.6.x and 0.7.x, as used in foomatic-gui and possibly other products, allows remote SMB servers to execute arbitrary commands via shell metacharacters in the (1) Net…
|
CWE-20
Improper Input Validation
|
CVE-2011-2899
|
2024-11-21 10:29 |
2011-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299590
|
- |
|
rubyonrails
|
rails
|
The to_s method in actionpack/lib/action_dispatch/middleware/remote_ip.rb in Ruby on Rails 3.0.5 does not validate the X-Forwarded-For header in requests from IP addresses on a Class C network, which…
|
CWE-20
Improper Input Validation
|
CVE-2011-3187
|
2024-11-21 10:29 |
2011-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
