|
300861
|
- |
|
novell
|
mobility_pack
data_synchronizer
|
The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 sends the Admin LDAP password in cleartext, which allows remote attackers to obtain sensitive information by sniff…
|
CWE-310
Cryptographic Issues
|
CVE-2011-2223
|
2024-11-21 10:27 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300862
|
- |
|
novell
|
mobility_pack
data_synchronizer
|
Session fixation vulnerability in WebAdmin in the Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 allows remote attackers to hijack web sessions via unspecified vecto…
|
NVD-CWE-Other
|
CVE-2011-2222
|
2024-11-21 10:27 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300863
|
- |
|
novell
|
mobility_pack
data_synchronizer
|
The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 allows remote attackers to bypass WebAdmin authentication and obtain sensitive GroupWise information via unspecifi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2221
|
2024-11-21 10:27 |
2011-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300864
|
- |
|
redhat
|
jboss_seam_2_framework
jboss_enterprise_application_platform
jboss_enterprise_soa_platform
jboss_enterprise_web_platform
|
jboss-seam.jar in the JBoss Seam 2 framework 2.2.x and earlier, as distributed in Red Hat JBoss Enterprise SOA Platform 4.3.0.CP05 and 5.1.0; JBoss Enterprise Application Platform (aka JBoss EAP or J…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2196
|
2024-11-21 10:27 |
2011-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300865
|
- |
|
fabfile
|
fabric
|
Fabric before 1.1.0 allows local users to overwrite arbitrary files via a symlink attack on (1) a /tmp/fab.*.tar file or (2) certain other files in the top level of /tmp/.
|
CWE-59
Link Following
|
CVE-2011-2185
|
2024-11-21 10:27 |
2011-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300866
|
- |
|
debian
canonical
|
advanced_package_tool
ubuntu_linux
|
APT before 0.8.15.2 does not properly validate inline GPG signatures, which allows man-in-the-middle attackers to install modified packages via vectors involving lack of an initial clearsigned messag…
|
CWE-20
Improper Input Validation
|
CVE-2011-1829
|
2024-11-21 10:27 |
2011-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300867
|
- |
|
gimp
|
gimp
|
Heap-based buffer overflow in the read_channel_data function in file-psp.c in the Paint Shop Pro (PSP) plugin in GIMP 2.6.11 allows remote attackers to cause a denial of service (application crash) o…
|
CWE-787
Out-of-bounds Write
|
CVE-2011-1782
|
2024-11-21 10:27 |
2011-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300868
|
- |
|
chromium_project
apple
|
chromium
safari
webkit
|
WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differ…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1797
|
2024-11-21 10:27 |
2011-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300869
|
- |
|
apple
|
safari
webkit
|
WebKit in Apple Safari before 5.0.6 has improper libxslt security settings, which allows remote attackers to create arbitrary files, and consequently execute arbitrary code, via a crafted web site. …
|
CWE-20
Improper Input Validation
|
CVE-2011-1774
|
2024-11-21 10:27 |
2011-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300870
|
- |
|
oracle
|
sun_fire_x4270_m2
sparc_t3-4
sparc_t3-2
sysfw
sparc_t3-1b
sparc_t3-1
sun_fire_x4470
netra_sparc_t3-1b
sun_fire_x4170_m2
netra_sparc_t3-1
sun_blade_x6270_m2
sun_fire_x…
|
Unspecified vulnerability in Oracle SysFW 8.1.0.a in various Oracle SPARC T3, Netra SPARC T3, Sun Fire, and Sun Blade servers allows remote attackers to affect confidentiality, integrity, and availab…
|
NVD-CWE-noinfo
|
CVE-2011-2307
|
2024-11-21 10:27 |
2011-07-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
