|
302841
|
- |
|
mozilla
|
firefox
seamonkey
|
Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, does not properly implement autocompletion for forms, which allows remote attackers to read form history entries vi…
|
CWE-20
Improper Input Validation
|
CVE-2011-0067
|
2024-11-21 10:23 |
2011-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302842
|
- |
|
mozilla
|
firefox
seamonkey
|
Use-after-free vulnerability in Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, allows remote attackers to execute arbitrary code via vectors related to OBJECT's m…
|
CWE-399
Resource Management Errors
|
CVE-2011-0066
|
2024-11-21 10:23 |
2011-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302843
|
- |
|
mozilla
|
firefox
seamonkey
|
Use-after-free vulnerability in Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, allows remote attackers to execute arbitrary code via vectors related to OBJECT's m…
|
CWE-399
Resource Management Errors
|
CVE-2011-0065
|
2024-11-21 10:23 |
2011-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302844
|
- |
|
indusoft
advantech
|
web_studio
thin_client
advantech_studio
|
Multiple buffer overflows in the ISSymbol ActiveX control in ISSymbol.ocx 61.6.0.0 and 301.1009.2904.0 in the ISSymbol virtual machine, as distributed in Advantech Studio 6.1 SP6 61.6.01.05, InduSoft…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0340
|
2024-11-21 10:23 |
2011-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302845
|
- |
|
sun
|
sunos
|
Oracle Solaris 8, 9, and 10 stores back-out patch files (undo.Z) unencrypted with world-readable permissions under /var/sadm/pkg/, which allows local users to obtain password hashes and conduct brute…
|
CWE-255
Credentials Management
|
CVE-2011-0412
|
2024-11-21 10:23 |
2011-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302846
|
- |
|
rim
|
blackberry_enterprise_server
blackberry_enterprise_server_express
|
Cross-site scripting (XSS) vulnerability in webdesktop/app in the BlackBerry Web Desktop Manager component in Research In Motion (RIM) BlackBerry Enterprise Server (BES) software before 5.0.2 MR5 and…
|
CWE-79
Cross-site Scripting
|
CVE-2011-0286
|
2024-11-21 10:23 |
2011-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302847
|
- |
|
redhat
|
spice-xpi
|
The SPICE Firefox plug-in (spice-xpi) 2.4, 2.3, 2.2, and possibly other versions allows local users to overwrite arbitrary files via a symlink attack on the usbrdrctl log file, which has a predictabl…
|
CWE-59
Link Following
|
CVE-2011-0012
|
2024-11-21 10:23 |
2011-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302848
|
- |
|
apple
|
iphone_os
|
The generate-id XPath function in libxslt in Apple iOS 4.3.x before 4.3.2 allows remote attackers to obtain potentially sensitive information about heap memory addresses via a crafted web site. NOTE…
|
CWE-200
Information Exposure
|
CVE-2011-0195
|
2024-11-21 10:23 |
2011-04-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302849
|
- |
|
mit
|
kerberos_5
|
The process_chpw_request function in schpw.c in the password-changing functionality in kadmind in MIT Kerberos 5 (aka krb5) 1.7 through 1.9 frees an invalid pointer, which allows remote attackers to …
|
CWE-20
Improper Input Validation
|
CVE-2011-0285
|
2024-11-21 10:23 |
2011-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302850
|
- |
|
microsoft
|
office
|
Untrusted search path vulnerability in Microsoft Office XP SP3, Office 2003 SP3, and Office 2007 SP2 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as …
|
NVD-CWE-Other
|
CVE-2011-0107
|
2024-11-21 10:23 |
2011-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
