|
298471
|
- |
|
roderich_schupp
|
par-packer_module
|
The par_mktmpdir function in the PAR module before 1.003 for Perl creates temporary files in a directory with a predictable name without verifying ownership and permissions of this directory, which a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5060
|
2024-11-21 10:33 |
2012-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298472
|
- |
|
clusterresources
cluster_resources
|
torque_resource_manager
|
Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) before 2.5.9, when munge authentication is used, allows remote authenticated users to impersonate arbitrary user account…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4925
|
2024-11-21 10:33 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298473
|
- |
|
hp
|
diagnostics
|
Stack-based buffer overflow in magentservice.exe in the server in HP LoadRunner 11.00 before patch 4 allows remote attackers to execute arbitrary code via a crafted size value in a packet. NOTE: it …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4789
|
2024-11-21 10:33 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298474
|
- |
|
hp
|
storageworks_p2000_g3_msa_fc\/iscsi_dual_combo_controller_lff_array_system
storageworks_p2000_g3_msa_fibre_channel_dual_controller_lff_array_system
storageworks_p2000_g3_msa_fibre_channel_dual_…
|
Absolute path traversal vulnerability in the web interface on HP StorageWorks P2000 G3 MSA array systems allows remote attackers to read arbitrary files via a pathname in the URI.
|
CWE-22
Path Traversal
|
CVE-2011-4788
|
2024-11-21 10:33 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298475
|
- |
|
hp
|
easy_printer_care_software
|
A certain ActiveX control in HPTicketMgr.dll in HP Easy Printer Care Software 2.5 and earlier allows remote attackers to download an arbitrary program onto a client machine, and execute this program,…
|
CWE-94
Code Injection
|
CVE-2011-4787
|
2024-11-21 10:33 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298476
|
- |
|
hp
|
easy_printer_care_software
|
A certain ActiveX control in HPTicketMgr.dll in HP Easy Printer Care Software 2.5 and earlier allows remote attackers to download an arbitrary program onto a client machine, and execute this program,…
|
CWE-94
Code Injection
|
CVE-2011-4786
|
2024-11-21 10:33 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298477
|
- |
|
finaldraft
|
finaldraft
|
Stack-based buffer overflow in Final Draft 8 before 8.02 allows remote attackers to execute arbitrary code via a crafted SmartType element, a different vulnerability than CVE-2011-5002. NOTE: the pr…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-5059
|
2024-11-21 10:33 |
2012-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298478
|
- |
|
3ssoftware
|
codesys
|
The CmbWebserver.dll module of the Control service in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to create arbitrary directories under the web root by specifying a non-existent directory usin…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5058
|
2024-11-21 10:33 |
2012-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298479
|
- |
|
apache
|
struts
|
Apache Struts 2.3.1.2 and earlier, 2.3.19-2.3.23, provides interfaces that do not properly restrict access to collections such as the session and request collections, which might allow remote attacke…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-5057
|
2024-11-21 10:33 |
2012-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298480
|
- |
|
maradns
|
maradns
|
The authoritative server in MaraDNS through 2.0.04 computes hash values for DNS data without restricting the ability to trigger hash collisions predictably, which might allow local users to cause a d…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2011-5056
|
2024-11-21 10:33 |
2012-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
