|
301001
|
- |
|
microsoft
|
sharepoint_services
sharepoint_foundation
|
Cross-site scripting (XSS) vulnerability in Microsoft Windows SharePoint Services 3.0 SP2, and SharePoint Foundation 2010 Gold and SP1, allows remote attackers to inject arbitrary web script or HTML …
|
CWE-79
Cross-site Scripting
|
CVE-2011-1891
|
2024-11-21 10:27 |
2011-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301002
|
- |
|
microsoft
|
sharepoint_foundation
sharepoint_server
|
Cross-site scripting (XSS) vulnerability in EditForm.aspx in Microsoft Office SharePoint Server 2010 and SharePoint Foundation 2010 allows remote attackers to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2011-1890
|
2024-11-21 10:27 |
2011-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301003
|
- |
|
mark_stosberg
|
data\
|
The Data::FormValidator module 4.66 and earlier for Perl, when untaint_all_constraints is enabled, does not properly preserve the taint attribute of data, which might allow remote attackers to bypass…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2201
|
2024-11-21 10:27 |
2011-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301004
|
- |
|
linux
|
linux_kernel
|
The key_replace_session_keyring function in security/keys/process_keys.c in the Linux kernel before 2.6.39.1 does not initialize a certain structure member, which allows local users to cause a denial…
|
CWE-476
NULL Pointer Dereference
|
CVE-2011-2184
|
2024-11-21 10:27 |
2011-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301005
|
6.1 |
MEDIUM
Physics
|
linux
redhat
|
linux_kernel
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_server_eus
|
The is_gpt_valid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface (EFI) GUID Partition Table (GPT) entry, which allows phy…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-1776
|
2024-11-21 10:27 |
2011-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301006
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The cifs_close function in fs/cifs/file.c in the Linux kernel before 2.6.39 allows local users to cause a denial of service (NULL pointer dereference and BUG) or possibly have unspecified other impac…
|
CWE-476
NULL Pointer Dereference
|
CVE-2011-1771
|
2024-11-21 10:27 |
2011-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301007
|
- |
|
gnome
|
networkmanager
|
GNOME NetworkManager before 0.8.6 does not properly enforce the auth_admin element in PolicyKit, which allows local users to bypass intended wireless network sharing restrictions via unspecified vect…
|
CWE-287
Improper Authentication
|
CVE-2011-2176
|
2024-11-21 10:27 |
2011-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301008
|
- |
|
xmlsoft
|
libxml2
libxml
|
Integer overflow in xpath.c in libxml2 2.6.x through 2.6.32 and 2.7.x through 2.7.8, and libxml 1.8.16 and earlier, allows context-dependent attackers to cause a denial of service (crash) and possibl…
|
CWE-189
Numeric Errors
|
CVE-2011-1944
|
2024-11-21 10:27 |
2011-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301009
|
- |
|
systemtap
|
systemtap
|
SystemTap 1.4, when unprivileged (aka stapusr) mode is enabled, allows local users to cause a denial of service (divide-by-zero error and OOPS) via a crafted ELF program with DWARF expressions that a…
|
CWE-189
Numeric Errors
|
CVE-2011-1781
|
2024-11-21 10:27 |
2011-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301010
|
- |
|
systemtap
|
systemtap
|
SystemTap 1.4 and earlier, when unprivileged (aka stapusr) mode is enabled, allows local users to cause a denial of service (divide-by-zero error and OOPS) via a crafted ELF program with DWARF expres…
|
CWE-189
Numeric Errors
|
CVE-2011-1769
|
2024-11-21 10:27 |
2011-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
