|
300611
|
- |
|
novell
|
cloud_manager
|
The RPC implementation in the server in Novell Cloud Manager 1.1.2 before Patch 3 does not properly initialize objects, which allows remote attackers to execute arbitrary code by making RPC calls tha…
|
CWE-20
Improper Input Validation
|
CVE-2011-2654
|
2024-11-21 10:28 |
2011-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300612
|
- |
|
lifesize
|
lifesize_room_appliance_software
|
The web interface on the LifeSize Room appliance LS_RM1_3.5.3 (11) and 4.7.18 allows remote attackers to execute arbitrary commands via a modified request to the LSRoom_Remoting.doCommand function in…
|
CWE-20
Improper Input Validation
|
CVE-2011-2763
|
2024-11-21 10:28 |
2011-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300613
|
- |
|
lifesize
|
lifesize_room_appliance_software
|
The web interface on the LifeSize Room appliance LS_RM1_3.5.3 (11) allows remote attackers to bypass authentication via unspecified data associated with a "true" authentication status, related to AMF…
|
CWE-287
Improper Authentication
|
CVE-2011-2762
|
2024-11-21 10:28 |
2011-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300614
|
- |
|
kmplayer
|
kmplayer
|
Heap-based buffer overflow in KMPlayer 3.0.0.1441, and possibly other versions, allows remote attackers to execute arbitrary code via a playlist (.KPL) file with a long Title field.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-2594
|
2024-11-21 10:28 |
2011-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300615
|
- |
|
cisco
|
telepresence_codec_c40
telepresence_codec_c60
telepresence_codec_c90
telepresence_ex60
telepresence_ex90
telepresence_c_series_software
telepresence_6000_mxp
telepresence_9000_mx…
|
Unspecified vulnerability in Cisco TelePresence C Series Endpoints, E/EX Personal Video units, and MXP Series Codecs, when using software versions before TC 4.0.0 or F9.1, allows remote attackers to …
|
NVD-CWE-noinfo
|
CVE-2011-2577
|
2024-11-21 10:28 |
2011-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300616
|
- |
|
gnome
|
libsoup
|
Directory traversal vulnerability in soup-uri.c in SoupServer in libsoup before 2.35.4 allows remote attackers to read arbitrary files via a %2e%2e (encoded dot dot) in a URI.
|
CWE-22
Path Traversal
|
CVE-2011-2524
|
2024-11-21 10:28 |
2011-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300617
|
- |
|
cisco
|
telepresence_recording_server_software
|
Cisco TelePresence Recording Server 1.7.2.x before 1.7.2.1 has a default password for the root administrator account, which makes it easier for remote attackers to modify the configuration via an SSH…
|
CWE-255
Credentials Management
|
CVE-2011-2555
|
2024-11-21 10:28 |
2011-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300618
|
- |
|
linux
|
linux_kernel
|
Integer underflow in the l2cap_config_req function in net/bluetooth/l2cap_core.c in the Linux kernel before 3.0 allows remote attackers to cause a denial of service (heap memory corruption) or possib…
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2011-2497
|
2024-11-21 10:28 |
2011-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300619
|
- |
|
otrs
|
otrs
|
Unspecified vulnerability in Kernel/Modules/AdminPackageManager.pm in OTRS-Core in Open Ticket Request System (OTRS) 2.x before 2.4.11 and 3.x before 3.0.10 allows remote authenticated administrators…
|
NVD-CWE-noinfo
|
CVE-2011-2746
|
2024-11-21 10:28 |
2011-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300620
|
- |
|
apache
|
wicket
|
Cross-site scripting (XSS) vulnerability in Apache Wicket 1.4.x before 1.4.18, when setAutomaticMultiWindowSupport is enabled, allows remote attackers to inject arbitrary web script or HTML via unspe…
|
CWE-79
Cross-site Scripting
|
CVE-2011-2712
|
2024-11-21 10:28 |
2011-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
