|
305451
|
- |
|
maynard_johnson
|
oprofile
|
The do_dump_data function in utils/opcontrol in OProfile 0.9.6 and earlier might allow local users to create or overwrite arbitrary files via a crafted --session-dir argument in conjunction with a sy…
|
CWE-59
Link Following
|
CVE-2011-2473
|
2024-11-21 10:28 |
2011-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305452
|
- |
|
maynard_johnson
|
oprofile
|
Directory traversal vulnerability in utils/opcontrol in OProfile 0.9.6 and earlier might allow local users to overwrite arbitrary files via a .. (dot dot) in the --save argument, related to the --ses…
|
CWE-22
Path Traversal
|
CVE-2011-2472
|
2024-11-21 10:28 |
2011-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305453
|
- |
|
maynard_johnson
|
oprofile
|
utils/opcontrol in OProfile 0.9.6 and earlier might allow local users to gain privileges via shell metacharacters in the (1) --vmlinux, (2) --session-dir, or (3) --xen argument, related to the daemon…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2471
|
2024-11-21 10:28 |
2011-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305454
|
- |
|
google
|
chrome
|
The DOM implementation in Google Chrome before 12.0.742.91 allows remote attackers to bypass the Same Origin Policy via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2011-2342
|
2024-11-21 10:28 |
2011-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305455
|
- |
|
google
|
chrome
|
Google V8, as used in Google Chrome before 12.0.742.91, allows remote attackers to bypass the Same Origin Policy via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2011-2332
|
2024-11-21 10:28 |
2011-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305456
|
- |
|
anymacro
|
anymacro_mail_system
|
Directory traversal vulnerability in the web interface in AnyMacro Mail System G4X allows remote attackers to read arbitrary files via directory traversal sequences in a request.
|
CWE-22
Path Traversal
|
CVE-2011-2468
|
2024-11-21 10:28 |
2011-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305457
|
- |
|
cisco
|
ios
|
The Neighbor Discovery (ND) protocol implementation in Cisco IOS on unspecified switches allows remote attackers to bypass the Router Advertisement Guarding functionality via a fragmented IPv6 packet…
|
CWE-16
Configuration
|
CVE-2011-2395
|
2024-11-21 10:28 |
2011-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305458
|
- |
|
visiwave
|
site_survey
|
VisiWaveReport.exe in AZO Technologies, Inc. VisiWave Site Survey before 2.1.9 allows user-assisted remote attackers to execute arbitrary code via a (1) vws and (2) vwr file with an invalid Type prop…
|
CWE-94
Code Injection
|
CVE-2011-2386
|
2024-11-21 10:28 |
2011-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305459
|
- |
|
microsoft
|
internet_explorer
ie
|
Microsoft Internet Explorer 9 and earlier does not properly restrict cross-zone drag-and-drop actions, which allows user-assisted remote attackers to read cookie files via vectors involving an IFRAME…
|
CWE-20
Improper Input Validation
|
CVE-2011-2383
|
2024-11-21 10:28 |
2011-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305460
|
- |
|
microsoft
|
internet_explorer
ie
|
Microsoft Internet Explorer 8 and earlier, and Internet Explorer 9 beta, does not properly restrict cross-zone drag-and-drop actions, which allows user-assisted remote attackers to read cookie files …
|
CWE-20
Improper Input Validation
|
CVE-2011-2382
|
2024-11-21 10:28 |
2011-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
