|
306621
|
- |
|
ibm
|
ts3100_tape_library_firmware
ts3200_tape_library_firmware
ts3100_tape_library
ts3200_tape_library
|
The Web User Interface on the IBM TS3100 and TS3200 tape libraries with firmware before A.60 allows remote attackers to bypass authentication and obtain administrative access via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2011-1372
|
2024-11-21 10:26 |
2011-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306622
|
- |
|
ibm
|
websphere_mq
|
IBM WebSphere MQ 6.0 on OpenVMS, when the default rights of the MQM group are established, does not properly verify User Authorization File (UAF) data, which allows local users to kill listener proce…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1378
|
2024-11-21 10:26 |
2011-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306623
|
- |
|
apple
|
mac_os_x
|
The kSBXProfileNoNetwork and kSBXProfileNoInternet sandbox profiles in Apple Mac OS X 10.5.x through 10.7.x do not propagate restrictions to all created processes, which allows remote attackers to ac…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1516
|
2024-11-21 10:26 |
2011-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306624
|
- |
|
ibm
|
aix
|
IBM AIX 6.1 and 7.1 does not restrict the wpar_limits_config and wpar_limits_modify system calls, which allows local users to cause a denial of service (system crash) via a crafted call.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1375
|
2024-11-21 10:26 |
2011-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306625
|
- |
|
ibm
|
db2
|
Unspecified vulnerability in IBM DB2 9.7 before FP5 on UNIX, when the Self Tuning Memory Manager (STMM) feature and the AUTOMATIC DATABASE_MEMORY setting are configured, allows local users to cause a…
|
NVD-CWE-noinfo
|
CVE-2011-1373
|
2024-11-21 10:26 |
2011-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306626
|
- |
|
e107
|
e107
|
Static code injection vulnerability in install_.php in e107 CMS 0.7.24 and probably earlier versions, when the installation script is not removed, allows remote attackers to inject arbitrary PHP code…
|
CWE-78
OS Command
|
CVE-2011-1513
|
2024-11-21 10:26 |
2011-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306627
|
- |
|
google
|
app_engine_python_sdk
|
Cross-site request forgery (CSRF) vulnerability in _ah/admin/interactive/execute (aka the Interactive Console) in the SDK Console (aka Admin Console) in the Google App Engine Python SDK before 1.5.4 …
|
CWE-352
Origin Validation Error
|
CVE-2011-1364
|
2024-11-21 10:26 |
2011-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306628
|
- |
|
ibm
|
rational_appscan
|
Unspecified vulnerability in the File Load feature in IBM Rational AppScan Standard and Express 7.8.x, 7.9.x, and 8.0.x before 8.0.0.3 allows remote attackers to execute arbitrary commands via a craf…
|
NVD-CWE-noinfo
|
CVE-2011-1367
|
2024-11-21 10:26 |
2011-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306629
|
- |
|
ibm
|
rational_appscan
|
Unspecified vulnerability in the Import feature in IBM Rational AppScan Enterprise and AppScan Reporting Console 5.2 through 7.9.x and 8.x before 8.0.1.1 allows remote attackers to execute arbitrary …
|
NVD-CWE-noinfo
|
CVE-2011-1366
|
2024-11-21 10:26 |
2011-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306630
|
- |
|
ibm
|
lotus_sametime
|
The default configuration of the Sametime configuration servlet (SCS) in the server in IBM Lotus Sametime 7.0 through 8.5.2 does not enable an authentication requirement, which allows remote attacker…
|
CWE-16
Configuration
|
CVE-2011-1370
|
2024-11-21 10:26 |
2011-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
