|
302721
|
- |
|
debian
|
shadow
|
Multiple CRLF injection vulnerabilities in (1) chfn and (2) chsh in shadow 1:4.1.4 allow local users to add new users or groups to /etc/passwd via the GECOS field.
|
CWE-20
Improper Input Validation
|
CVE-2011-0721
|
2024-11-21 10:24 |
2011-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302722
|
- |
|
redhat
sun
|
icedtea-web
jdk
|
The JNLPClassLoader class in IcedTea-Web before 1.0.1, as used in OpenJDK Runtime Environment 1.6.0, allows remote attackers to gain privileges via unknown vectors related to multiple signers and the…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-0706
|
2024-11-21 10:24 |
2011-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302723
|
- |
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
Multiple buffer overflows in the caiaq Native Instruments USB audio functionality in the Linux kernel before 2.6.38-rc4-next-20110215 might allow attackers to cause a denial of service or possibly ha…
|
CWE-120
Classic Buffer Overflow
|
CVE-2011-0712
|
2024-11-21 10:24 |
2011-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302724
|
- |
|
linux
|
linux_kernel
|
The task_show_regs function in arch/s390/kernel/traps.c in the Linux kernel before 2.6.38-rc4-next-20110216 on the s390 platform allows local users to obtain the values of the registers of an arbitra…
|
CWE-200
Information Exposure
|
CVE-2011-0710
|
2024-11-21 10:24 |
2011-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302725
|
7.5 |
HIGH
Network
|
linux
|
linux_kernel
|
The br_mdb_ip_get function in net/bridge/br_multicast.c in the Linux kernel before 2.6.35-rc5 allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) via an I…
|
CWE-476
NULL Pointer Dereference
|
CVE-2011-0709
|
2024-11-21 10:24 |
2011-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302726
|
- |
|
f-secure
|
internet_gatekeeper
|
F-Secure Internet Gatekeeper for Linux 3.x before 3.03 does not require authentication for reading access logs, which allows remote attackers to obtain potentially sensitive information via a TCP ses…
|
CWE-287
Improper Authentication
|
CVE-2011-0453
|
2024-11-21 10:24 |
2011-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302727
|
- |
|
apache
|
continuum
archiva
|
Cross-site scripting (XSS) vulnerability in Apache Continuum 1.1 through 1.2.3.1, 1.3.6, and 1.4.0 Beta; and Archiva 1.3.0 through 1.3.3 and 1.0 through 1.22 allows remote attackers to inject arbitra…
|
CWE-79
Cross-site Scripting
|
CVE-2011-0533
|
2024-11-21 10:24 |
2011-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302728
|
- |
|
microsoft
|
windows_2003_server
windows_server_2003
|
Integer underflow in the BowserWriteErrorLogEntry function in the Common Internet File System (CIFS) browser service in Mrxsmb.sys or bowser.sys in Active Directory in Microsoft Windows XP SP2 and SP…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0654
|
2024-11-21 10:24 |
2011-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302729
|
- |
|
feh_project
|
feh
|
The feh_unique_filename function in utils.c in feh before 1.11.2 might allow local users to overwrite arbitrary files via a symlink attack on a /tmp/feh_ temporary file.
|
CWE-59
Link Following
|
CVE-2011-0702
|
2024-11-21 10:24 |
2011-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302730
|
- |
|
djangoproject
|
django
|
Directory traversal vulnerability in Django 1.1.x before 1.1.4 and 1.2.x before 1.2.5 on Windows might allow remote attackers to read or execute files via a / (slash) character in a key in a session …
|
CWE-22
Path Traversal
|
CVE-2011-0698
|
2024-11-21 10:24 |
2011-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
