CVE-2011-2xxx

There are 909 CVE in this subgroup.
Last updated: 
← Back to 2011
ID Summary Flags Max Score
CVE-2011-2000 Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows rem...
S
CVE-2011-2001 Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows rem...
S
CVE-2011-2002 win32k.sys in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, a...
CVE-2011-2003 Buffer overflow in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Window...
CVE-2011-2004 Array index error in win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2008 R2 and R...
CVE-2011-2005 afd.sys in the Ancillary Function Driver in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 doe...
KEV S
CVE-2011-2006 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2007 Microsoft Host Integration Server (HIS) 2004 SP1, 2006 SP1, 2009, and 2010 allows remote attackers t...
CVE-2011-2008 Microsoft Host Integration Server (HIS) 2004 SP1, 2006 SP1, 2009, and 2010 allows remote attackers t...
CVE-2011-2009 Untrusted search path vulnerability in Windows Media Center in Microsoft Windows Vista SP2 and Windo...
CVE-2011-2010 The Microsoft Office Input Method Editor (IME) for Simplified Chinese in Microsoft Pinyin IME 2010, ...
CVE-2011-2011 Use-after-free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 an...
CVE-2011-2012 Microsoft Forefront Unified Access Gateway (UAG) 2010 Gold, Update 1, Update 2, and SP1 does not pro...
CVE-2011-2013 Integer overflow in the TCP/IP implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP...
CVE-2011-2014 The LDAP over SSL (aka LDAPS) implementation in Active Directory, Active Directory Application Mode ...
CVE-2011-2015 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2016 Untrusted search path vulnerability in Windows Mail and Windows Meeting Space in Microsoft Windows V...
CVE-2011-2017 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2018 The kernel in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows ...
CVE-2011-2019 Untrusted search path vulnerability in Microsoft Internet Explorer 9 on Windows Server 2008 R2 and R...
S
CVE-2011-2020 Cross-site scripting (XSS) vulnerability in TIBCO iProcess Engine before 11.1.3 and iProcess Workspa...
CVE-2011-2021 Session fixation vulnerability in TIBCO iProcess Engine before 11.1.3 and iProcess Workspace before ...
CVE-2011-2022 The agp_generic_remove_memory function in drivers/char/agp/generic.c in the Linux kernel before 2.6....
S
CVE-2011-2023 Cross-site scripting (XSS) vulnerability in functions/mime.php in SquirrelMail before 1.4.22 allows ...
S
CVE-2011-2024 Cisco Network Registrar before 7.2 has a default administrative password, which makes it easier for ...
CVE-2011-2039 The helper application in Cisco AnyConnect Secure Mobility Client (formerly AnyConnect VPN Client) b...
CVE-2011-2040 The helper application in Cisco AnyConnect Secure Mobility Client (formerly AnyConnect VPN Client) b...
CVE-2011-2041 The Start Before Logon (SBL) functionality in Cisco AnyConnect Secure Mobility Client (formerly AnyC...
CVE-2011-2042 The Sybase SQL Anywhere database component in Cisco CiscoWorks Common Services 3.x and 4.x before 4....
CVE-2011-2054 Cisco ASA Secondary Authentication Bypass Vulnerability
CVE-2011-2057 The cat6000-dot1x component in Cisco IOS 12.2 before 12.2(33)SXI7 does not properly handle (1) a loo...
CVE-2011-2058 The cat6000-dot1x component in Cisco IOS 12.2 before 12.2(33)SXI7 does not properly handle an extern...
CVE-2011-2059 The ipv6 component in Cisco IOS before 15.1(4)M1.3 allows remote attackers to conduct fingerprinting...
CVE-2011-2060 The platform-sw component on Cisco Adaptive Security Appliances (ASA) 5500 series devices with softw...
CVE-2011-2064 Cisco IOS 12.4MDA before 12.4(24)MDA5 on the Cisco Content Services Gateway - Second Generation (CSG...
CVE-2011-2072 Memory leak in Cisco IOS 12.4, 15.0, and 15.1, Cisco IOS XE 2.5.x through 3.2.x, and Cisco Unified C...
CVE-2011-2074 Unspecified vulnerability in the client in Skype 5.x before 5.1.0.922 on Mac OS X allows remote auth...
S
CVE-2011-2075 Unspecified vulnerability in Google Chrome 11.0.696.65 on Windows 7 SP1 allows remote attackers to e...
CVE-2011-2076 MediaCAST 8 and earlier stores passwords in cleartext, which makes it easier for context-dependent a...
E
CVE-2011-2077 The default configuration of the New Atlanta BlueDragon administrative interface in MediaCAST 8 and ...
E
CVE-2011-2078 Multiple cross-site scripting (XSS) vulnerabilities in the New Atlanta BlueDragon administrative int...
E
CVE-2011-2079 MediaCAST 8 and earlier allows remote attackers to have an unspecified impact via a (1) CP_RIGHTSOUR...
E
CVE-2011-2080 Multiple SQL injection vulnerabilities in MediaCAST 8 and earlier allow remote attackers to execute ...
E
CVE-2011-2081 MediaCAST 8 and earlier does not properly handle requests for inventivex/isptools/release/metadata/g...
E
CVE-2011-2082 The vulnerable-passwords script in Best Practical Solutions RT 3.x before 3.8.12 and 4.x before 4.0....
S
CVE-2011-2083 Multiple cross-site scripting (XSS) vulnerabilities in Best Practical Solutions RT 3.x before 3.8.12...
S
CVE-2011-2084 Best Practical Solutions RT 3.x before 3.8.12 and 4.x before 4.0.6 allows remote authenticated users...
S
CVE-2011-2085 Multiple cross-site request forgery (CSRF) vulnerabilities in Best Practical Solutions RT before 3.8...
S
CVE-2011-2087 Multiple cross-site scripting (XSS) vulnerabilities in component handlers in the javatemplates (aka ...
E
CVE-2011-2088 XWork 2.2.1 in Apache Struts 2.2.1, and OpenSymphony XWork in OpenSymphony WebWork, allows remote at...
S
CVE-2011-2089 Stack-based buffer overflow in the SetActiveXGUID method in the VersionInfo ActiveX control in GenVe...
E
CVE-2011-2091 Unspecified vulnerability in Adobe ColdFusion 8.0, 8.0.1, 9.0, and 9.0.1 allows remote attackers to ...
S
CVE-2011-2092 Adobe LiveCycle Data Services 3.1 and earlier, LiveCycle 9.0.0.2 and earlier, and BlazeDS 4.0.1 and ...
S
CVE-2011-2093 Adobe LiveCycle Data Services 3.1 and earlier, LiveCycle 9.0.0.2 and earlier, and BlazeDS 4.0.1 and ...
S
CVE-2011-2094 Buffer overflow in Adobe Reader and Acrobat 8.x before 8.3, 9.x before 9.4.5, and 10.x before 10.1 o...
S
CVE-2011-2095 Buffer overflow in Adobe Reader and Acrobat 8.x before 8.3, 9.x before 9.4.5, and 10.x before 10.1 o...
S
CVE-2011-2096 Heap-based buffer overflow in Adobe Reader and Acrobat 8.x before 8.3, 9.x before 9.4.5, and 10.x be...
S
CVE-2011-2097 Buffer overflow in Adobe Reader and Acrobat 8.x before 8.3, 9.x before 9.4.5, and 10.x before 10.1 o...
S
CVE-2011-2098 Adobe Reader and Acrobat 8.x before 8.3, 9.x before 9.4.5, and 10.x before 10.1 on Windows and Mac O...
S
CVE-2011-2099 Adobe Reader and Acrobat 8.x before 8.3, 9.x before 9.4.5, and 10.x before 10.1 on Windows and Mac O...
S
CVE-2011-2100 Untrusted search path vulnerability in Adobe Reader and Acrobat 8.x before 8.3, 9.x before 9.4.5, an...
S
CVE-2011-2101 Adobe Reader and Acrobat 8.x before 8.3, 9.x before 9.4.5, and 10.x before 10.1 on Windows and Mac O...
S
CVE-2011-2102 Unspecified vulnerability in Adobe Reader and Acrobat before 10.1 on Windows and Mac OS X allows att...
S
CVE-2011-2103 Adobe Reader and Acrobat 8.x before 8.3 on Windows and Mac OS X allow attackers to execute arbitrary...
S
CVE-2011-2104 Adobe Reader and Acrobat 8.x before 8.3, 9.x before 9.4.5, and 10.x before 10.1 on Windows and Mac O...
S
CVE-2011-2105 Adobe Reader and Acrobat 8.x before 8.3, 9.x before 9.4.5, and 10.x before 10.1 on Windows and Mac O...
S
CVE-2011-2106 Adobe Reader and Acrobat 8.x before 8.3, 9.x before 9.4.5, and 10.x before 10.1 on Mac OS X allow at...
S
CVE-2011-2107 Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 10.3.181.22 on Windows, Mac OS...
S
CVE-2011-2108 Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code via unspecified ...
S
CVE-2011-2109 Multiple integer overflows in Dirapi.dll in Adobe Shockwave Player before 11.6.0.626 allow attackers...
S
CVE-2011-2110 Adobe Flash Player before 10.3.181.26 on Windows, Mac OS X, Linux, and Solaris, and 10.3.185.23 and ...
S
CVE-2011-2111 IML32.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or ...
S
CVE-2011-2112 Multiple buffer overflows in IML32.dll in Adobe Shockwave Player before 11.6.0.626 allow attackers t...
S
CVE-2011-2113 Multiple buffer overflows in the Shockwave3DAsset component in Adobe Shockwave Player before 11.6.0....
S
CVE-2011-2114 Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denia...
S
CVE-2011-2115 IML32.dll in Adobe Shockwave Player before 11.6.0.626 allows remote attackers to execute arbitrary c...
S
CVE-2011-2116 IML32.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or ...
S
CVE-2011-2117 Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denia...
S
CVE-2011-2118 The FLV ASSET Xtra component in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute...
S
CVE-2011-2119 Dirapi.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or...
S
CVE-2011-2120 Integer overflow in the CursorAsset x32 component in Adobe Shockwave Player before 11.6.0.626 allows...
S
CVE-2011-2121 Integer overflow in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary c...
S
CVE-2011-2122 Dirapi.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or...
S
CVE-2011-2123 Integer overflow in the Shockwave 3D Asset x32 component in Adobe Shockwave Player before 11.6.0.626...
S
CVE-2011-2124 Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denia...
S
CVE-2011-2125 Buffer overflow in Dirapix.dll in Adobe Shockwave Player before 11.6.0.626 allows attackers to execu...
S
CVE-2011-2126 Buffer overflow in Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary co...
S
CVE-2011-2127 Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denia...
S
CVE-2011-2128 Adobe Shockwave Player before 11.6.0.626 allows attackers to execute arbitrary code or cause a denia...
S
CVE-2011-2129 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2130 Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and...
S
CVE-2011-2131 Adobe Photoshop 12.0 in Creative Suite 5 (CS5) and 12.1 in Creative Suite 5.1 (CS5.1) allows remote ...
S
CVE-2011-2132 Adobe Flash Media Server (FMS) before 3.5.7, and 4.x before 4.0.3, allows attackers to cause a denia...
S
CVE-2011-2133 Cross-site scripting (XSS) vulnerability in Adobe RoboHelp 8 and 9 before 9.0.1.262, and RoboHelp Se...
S
CVE-2011-2134 Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and...
S
CVE-2011-2135 Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 ...
S
CVE-2011-2136 Integer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris an...
S
CVE-2011-2137 Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and...
S
CVE-2011-2138 Integer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris an...
S
CVE-2011-2139 Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 ...
S
CVE-2011-2140 Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 ...
S
CVE-2011-2141 SQL injection vulnerability in TMWeb in IBM Datacap Taskmaster Capture 8.0.1 before FP1 allows remot...
CVE-2011-2142 The Web Client Service in IBM Datacap Taskmaster Capture 8.0.1 before FP1 requires a cleartext passw...
CVE-2011-2143 IBM Datacap Taskmaster Capture 8.0.1 before FP1, when Windows Authentication is enabled, allows remo...
CVE-2011-2144 The eDocument Conversion Actions implementation in IBM Datacap Taskmaster Capture 8.0.1 FP1 and earl...
CVE-2011-2145 mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7.1.x before 7.1.4, V...
S
CVE-2011-2146 mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7.1.x before 7.1.4, V...
S
CVE-2011-2147 Openswan 2.2.x does not properly restrict permissions for (1) /var/run/starter.pid, related to start...
CVE-2011-2148 Admin/frmSite.aspx in the SmarterTools SmarterStats 6.0 web server allows remote attackers to execut...
CVE-2011-2149 Multiple SQL injection vulnerabilities in the SmarterTools SmarterStats 6.0 web server allow remote ...
CVE-2011-2150 The SmarterTools SmarterStats 6.0 web server does not properly validate string data that is intended...
CVE-2011-2151 The (1) Admin/frmEmailReportSettings.aspx, (2) Admin/frmGeneralSettings.aspx, (3) Admin/frmSite.aspx...
CVE-2011-2152 The SmarterTools SmarterStats 6.0 web server generates web pages containing external links in respon...
CVE-2011-2153 Login.aspx in the SmarterTools SmarterStats 6.0 web server supports URLs containing txtUser and txtP...
CVE-2011-2154 login.aspx in the SmarterTools SmarterStats 6.0 web server does not include the HTTPOnly flag in a S...
CVE-2011-2155 Login.aspx in the SmarterTools SmarterStats 6.0 web server generates a ctl00$MPH$txtPassword passwor...
CVE-2011-2156 The SmarterTools SmarterStats 6.0 web server allows remote attackers to obtain directory listings vi...
CVE-2011-2157 The (1) Admin/frmEmailReportSettings.aspx and (2) Admin/frmGeneralSettings.aspx components in the Sm...
CVE-2011-2158 The SmarterTools SmarterStats 6.0 web server sends incorrect Content-Type headers for certain resour...
CVE-2011-2159 The SmarterTools SmarterStats 6.0 web server omits the Content-Type header for certain resources, wh...
CVE-2011-2160 The VC-1 decoding functionality in FFmpeg before 0.5.4, as used in MPlayer and other products, does ...
CVE-2011-2161 The ape_read_header function in ape.c in libavformat in FFmpeg before 0.5.4, as used in MPlayer, Vid...
S
CVE-2011-2162 Multiple unspecified vulnerabilities in FFmpeg 0.4.x through 0.6.x, as used in MPlayer 1.0 and other...
CVE-2011-2163 Unspecified vulnerability in Virtualization Manager 1.2.2 in IBM Systems Director 1.2.2 has unknown ...
CVE-2011-2164 Multiple unspecified vulnerabilities in Adobe Photoshop before 12.0.4 have unknown impact and attack...
S
CVE-2011-2165 The STARTTLS implementation in WatchGuard XCS 9.0 and 9.1 does not properly restrict I/O buffering, ...
CVE-2011-2166 script-login in Dovecot 2.0.x before 2.0.13 does not follow the user and group configuration setting...
S
CVE-2011-2167 script-login in Dovecot 2.0.x before 2.0.13 does not follow the chroot configuration setting, which ...
S
CVE-2011-2168 Multiple integer overflows in the glob implementation in libc in OpenBSD before 4.9 might allow cont...
S
CVE-2011-2169 Google Chrome OS before R12 0.12.433.38 Beta allows local users to gain privileges by creating a /va...
CVE-2011-2170 Google Chrome OS before R12 0.12.433.38 Beta, when Guest mode is enabled, does not prevent changes o...
CVE-2011-2171 Unspecified vulnerability in the dbugs package in Google Chrome OS before R12 0.12.433.38 Beta has u...
CVE-2011-2172 Cross-site scripting (XSS) vulnerability in the search center in IBM WebSphere Portal 7.0.0.1 before...
CVE-2011-2173 The implementation of OutputMediator objects in IBM WebSphere Portal 6.0.1.7, and 7.0.0.1 before CF0...
CVE-2011-2174 Double free vulnerability in the tvb_uncompress function in epan/tvbuff.c in Wireshark 1.2.x before ...
E S
CVE-2011-2175 Integer underflow in the visual_read function in wiretap/visual.c in Wireshark 1.2.x before 1.2.17 a...
E S
CVE-2011-2176 GNOME NetworkManager before 0.8.6 does not properly enforce the auth_admin element in PolicyKit, whi...
CVE-2011-2177 OpenOffice.org v3.3 allows execution of arbitrary code with the privileges of the user running the O...
CVE-2011-2178 The virSecurityManagerGetPrivateData function in security/security_manager.c in libvirt 0.8.8 throug...
S
CVE-2011-2179 Multiple cross-site scripting (XSS) vulnerabilities in config.c in config.cgi in (1) Nagios 3.2.3 an...
E S
CVE-2011-2180 Cross-site scripting (XSS) vulnerability in dereferer.php in A Really Simple Chat (ARSC) 3.3-rc2 all...
E
CVE-2011-2181 Multiple SQL injection vulnerabilities in A Really Simple Chat (ARSC) 3.3-rc2 allow remote attackers...
E
CVE-2011-2182 The ldm_frag_add function in fs/partitions/ldm.c in the Linux kernel before 2.6.39.1 does not proper...
S
CVE-2011-2183 Race condition in the scan_get_next_rmap_item function in mm/ksm.c in the Linux kernel before 2.6.39...
S
CVE-2011-2184 The key_replace_session_keyring function in security/keys/process_keys.c in the Linux kernel before ...
S
CVE-2011-2185 Fabric before 1.1.0 allows local users to overwrite arbitrary files via a symlink attack on (1) a /t...
S
CVE-2011-2186 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with...
R
CVE-2011-2187 xscreensaver before 5.14 crashes during activation and leaves the screen unlocked when in Blank Only...
E
CVE-2011-2188 LuaExpat before 1.2.0 does not properly detect recursion during entity expansion, which allows remot...
CVE-2011-2189 net/core/net_namespace.c in the Linux kernel 2.6.32 and earlier does not properly handle a high rate...
E S
CVE-2011-2190 The generate_admin_password function in Cherokee before 1.2.99 uses time and PID values for seeding ...
S
CVE-2011-2191 Cross-site request forgery (CSRF) vulnerability in Cherokee-admin in Cherokee before 1.2.99 allows r...
E S
CVE-2011-2192 The Curl_input_negotiate function in http_negotiate.c in libcurl 7.10.6 through 7.21.6, as used in c...
CVE-2011-2193 Multiple buffer overflows in Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource M...
S
CVE-2011-2194 Integer overflow in the XSPF playlist parser in VideoLAN VLC media player 0.8.5 through 1.1.9 allows...
CVE-2011-2195 A flaw was found in WebSVN 2.3.2. Without prior authentication, if the 'allowDownload' option is ena...
E
CVE-2011-2196 jboss-seam.jar in the JBoss Seam 2 framework 2.2.x and earlier, as distributed in Red Hat JBoss Ente...
CVE-2011-2197 The cross-site scripting (XSS) prevention feature in Ruby on Rails 2.x before 2.3.12, 3.0.x before 3...
S
CVE-2011-2198 The "insert-blank-characters" capability in caps.c in gnome-terminal (vte) before 0.28.1 allows remo...
E S
CVE-2011-2199 Buffer overflow in tftp-hpa before 5.1 allows remote attackers to cause a denial of service and poss...
CVE-2011-2200 The _dbus_header_byteswap function in dbus-marshal-header.c in D-Bus (aka DBus) 1.2.x before 1.2.28,...
S
CVE-2011-2201 The Data::FormValidator module 4.66 and earlier for Perl, when untaint_all_constraints is enabled, d...
E S
CVE-2011-2202 The rfc1867_post_handler function in main/rfc1867.c in PHP before 5.3.7 does not properly restrict f...
E S
CVE-2011-2203 The hfs_find_init function in the Linux kernel 2.6 allows local users to cause a denial of service (...
E S
CVE-2011-2204 Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.17, when the MemoryUserData...
S
CVE-2011-2205 Prosody before 0.8.1 does not properly detect recursion during entity expansion, which allows remote...
S
CVE-2011-2206 XMLParser.pm in DJabberd before 0.85 allows remote authenticated users to read arbitrary files, and ...
S
CVE-2011-2207 dirmngr before 2.1.0 improperly handles certain system calls, which allows remote attackers to cause...
E S
CVE-2011-2208 Integer signedness error in the osf_getdomainname function in arch/alpha/kernel/osf_sys.c in the Lin...
E S
CVE-2011-2209 Integer signedness error in the osf_sysinfo function in arch/alpha/kernel/osf_sys.c in the Linux ker...
E S
CVE-2011-2210 The osf_getsysinfo function in arch/alpha/kernel/osf_sys.c in the Linux kernel before 2.6.39.4 on th...
E S
CVE-2011-2211 The osf_wait4 function in arch/alpha/kernel/osf_sys.c in the Linux kernel before 2.6.39.4 on the Alp...
E S
CVE-2011-2212 Buffer overflow in the virtio subsystem in qemu-kvm 0.14.0 and earlier allows privileged guest users...
CVE-2011-2213 The inet_diag_bc_audit function in net/ipv4/inet_diag.c in the Linux kernel before 2.6.39.3 does not...
S
CVE-2011-2214 Unspecified vulnerability in the Open Database Connectivity (ODBC) component in 7T Interactive Graph...
CVE-2011-2215 Unspecified vulnerability in WalRack 1.x before 1.1.8 and 2.x before 2.0.6 has unknown impact and at...
S
CVE-2011-2216 reqresp_parser.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.4.2 does not ini...
CVE-2011-2217 Certain ActiveX controls in (1) tsgetxu71ex552.dll and (2) tsgetx71ex552.dll in Tom Sawyer GET Exten...
CVE-2011-2218 Unspecified vulnerability in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allo...
CVE-2011-2219 Unspecified vulnerability in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allo...
CVE-2011-2220 Stack-based buffer overflow in NFREngine.exe in Novell File Reporter Engine before 1.0.2.53, as used...
CVE-2011-2221 The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 allows remote a...
CVE-2011-2222 Session fixation vulnerability in WebAdmin in the Mobility Pack before 1.2 in Novell Data Synchroniz...
CVE-2011-2223 The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 sends the Admin...
CVE-2011-2224 The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 does not includ...
CVE-2011-2225 Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows att...
CVE-2011-2226 Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1....
CVE-2011-2227 Cross-site scripting (XSS) vulnerability in Novell Identity Manager (aka IDM) User Application 3.5.0...
CVE-2011-2228 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2229 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2230 Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.1.0.5, 10.2.0.3, ...
S
CVE-2011-2231 Unspecified vulnerability in the XML Developer Kit component in Oracle Database Server 10.1.0.5, 10....
S
CVE-2011-2232 Unspecified vulnerability in the XML Developer Kit component in Oracle Database Server 10.1.0.5, 10....
S
CVE-2011-2233 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2234 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2235 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2236 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2237 Unspecified vulnerability in the Oracle Web Services Manager component in Oracle Fusion Middleware 1...
CVE-2011-2238 Unspecified vulnerability in the Database Vault component in Oracle Database Server 10.2.0.3, 10.2.0...
S
CVE-2011-2239 Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.2.0.3, 10.2.0.4, ...
S
CVE-2011-2240 Unspecified vulnerability in the Oracle Universal Installer component in Oracle Database Server 10.1...
S
CVE-2011-2241 Unspecified vulnerability in the Oracle Business Intelligence Enterprise Edition component in Oracle...
S
CVE-2011-2242 Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.2.0.1 and 11.2.0....
S
CVE-2011-2243 Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7.3, 11.2.0.1...
S
CVE-2011-2244 Unspecified vulnerability in the Security Framework component in Oracle Database Server 10.1.0.5, 10...
S
CVE-2011-2245 Unspecified vulnerability in the Solaris component in Oracle Sun Products Suite 9 and 10 allows remo...
S
CVE-2011-2246 Unspecified vulnerability in the Business Intelligence component in Oracle E-Business Suite 11.5.10....
S
CVE-2011-2247 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2248 Unspecified vulnerability in the SQL Performance Advisories/UIs component in Oracle Database Server ...
S
CVE-2011-2249 Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows remote authenticated users to affect...
S
CVE-2011-2250 Unspecified vulnerability in the PeopleSoft Enterprise FIN component in Oracle PeopleSoft Products 9...
S
CVE-2011-2251 Unspecified vulnerability in the Oracle Secure Backup component in Oracle Secure Backup 10.3.0.3 all...
S
CVE-2011-2252 Unspecified vulnerability in the Oracle Secure Backup component in Oracle Secure Backup 10.3.0.3 all...
S
CVE-2011-2253 Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.2.0.3, 10.2.0.4, ...
S
CVE-2011-2254 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2255 Unspecified vulnerability in the Oracle WebLogic Portal component in Oracle Fusion Middleware 9.2.3....
CVE-2011-2256 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2257 Unspecified vulnerability in the Database Target Type Menus component in Oracle Database Server 10.1...
S
CVE-2011-2258 Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect co...
S
CVE-2011-2259 Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect av...
S
CVE-2011-2260 Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Sun Products Suite 2.1....
S
CVE-2011-2261 Unspecified vulnerability in the Oracle Secure Backup component in Oracle Secure Backup 10.3.0.3 all...
S
CVE-2011-2262 Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.1.x and 5.5.x allows remot...
CVE-2011-2263 Unspecified vulnerability in Sun Integrated Lights Out Manager in Oracle SysFW 8.0.3.b or earlier fo...
S
CVE-2011-2264 Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware ...
S
CVE-2011-2265 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2266 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2267 Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware ...
S
CVE-2011-2268 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2269 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2270 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2271 Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Su...
CVE-2011-2272 Unspecified vulnerability in the PeopleSoft Enterprise FSCM component in Oracle PeopleSoft Products ...
S
CVE-2011-2273 Unspecified vulnerability in the Agile Core Technology component in Oracle Supply Chain Products Sui...
S
CVE-2011-2274 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Pr...
S
CVE-2011-2275 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Pr...
S
CVE-2011-2276 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2277 Unspecified vulnerability in the PeopleSoft Enterprise SCM component in Oracle PeopleSoft Products 9...
S
CVE-2011-2278 Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Products ...
S
CVE-2011-2279 Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Products ...
S
CVE-2011-2280 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Pr...
S
CVE-2011-2281 Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Products ...
S
CVE-2011-2282 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Pr...
S
CVE-2011-2283 Unspecified vulnerability in the PeopleSoft Enterprise FMS component in Oracle PeopleSoft Products 9...
S
CVE-2011-2284 Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft Products ...
S
CVE-2011-2285 Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality, integri...
S
CVE-2011-2286 Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows remote authenticated users to a...
CVE-2011-2287 Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows remote attackers to affe...
S
CVE-2011-2288 Unspecified vulnerability in Sun Integrated Lights Out Manager (ILOM) in SysFW 8.1.0.a and earlier f...
S
CVE-2011-2289 Unspecified vulnerability in Oracle Solaris 10 allows local users to affect integrity and availabili...
S
CVE-2011-2290 Unspecified vulnerability in Oracle Solaris 10, and 11 Express allows local users to affect availabi...
S
CVE-2011-2291 Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality via unkn...
S
CVE-2011-2292 Unspecified vulnerability in Oracle Solaris 9 and 11 Express allows local users to affect confidenti...
CVE-2011-2293 Unspecified vulnerability in Oracle Solaris 11 Express allows local users to affect availability via...
S
CVE-2011-2294 Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows remote attackers to affect avai...
S
CVE-2011-2295 Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect av...
S
CVE-2011-2296 Unspecified vulnerability in Oracle Solaris 11 Express allows local users to affect availability, re...
S
CVE-2011-2297 Unspecified vulnerability in Oracle Solaris Cluster 3.3 allows local users to affect confidentiality...
S
CVE-2011-2298 Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows remote attackers to affect avai...
S
CVE-2011-2299 Unspecified vulnerability in Oracle SPARC Enterprise M3000, M4000, M5000, M8000, and M9000 XCP 1101 ...
S
CVE-2011-2300 Unspecified vulnerability in Oracle VM VirtualBox 3.0, 3.1, 3.2, and 4.0 through 4.0.8 allows local ...
S
CVE-2011-2301 Unspecified vulnerability in the Oracle Text component in Oracle Database Server 10.1.0.5, 10.2.0.3,...
CVE-2011-2302 Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Su...
CVE-2011-2303 Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Su...
S
CVE-2011-2304 Unspecified vulnerability in Oracle Solaris 10 allows remote attackers to affect confidentiality, re...
CVE-2011-2305 Unspecified vulnerability in Oracle VM VirtualBox 4.0 allows local users to affect confidentiality, ...
S
CVE-2011-2306 Unspecified vulnerability in Oracle Linux 4 and 5 allows remote authenticated users to affect confid...
S
CVE-2011-2307 Unspecified vulnerability in Oracle SysFW 8.1.0.a in various Oracle SPARC T3, Netra SPARC T3, Sun Fi...
S
CVE-2011-2308 Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Su...
CVE-2011-2309 Unspecified vulnerability in the Health Sciences - Oracle Clinical, Remote Data Capture component in...
CVE-2011-2310 Unspecified vulnerability in the Oracle Waveset component in Oracle Sun Products Suite 8.1.0 and 8.1...
S
CVE-2011-2311 Unspecified vulnerability in Oracle Solaris 10 allows local users to affect availability, related to...
CVE-2011-2312 Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality, related...
CVE-2011-2313 Unspecified vulnerability in Oracle Solaris 10 allows local users to affect availability, related to...
S
CVE-2011-2314 Unspecified vulnerability in the Oracle Containers for J2EE component in Oracle Fusion Middleware 10...
CVE-2011-2315 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Pr...
CVE-2011-2316 Unspecified vulnerability in the Siebel Apps - Marketing component in Oracle Siebel CRM 8.0.0 allows...
S
CVE-2011-2317 Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allow...
S
CVE-2011-2318 Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 9.2.4....
CVE-2011-2319 Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 9.2.4....
CVE-2011-2320 Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 9.2.4....
CVE-2011-2321 Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allow...
S
CVE-2011-2322 Unspecified vulnerability in the Database Vault component in Oracle Database Server 11.1.0.7 allows ...
S
CVE-2011-2323 Unspecified vulnerability in the Health Sciences - Oracle Thesaurus Management System component in O...
S
CVE-2011-2324 Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allow...
S
CVE-2011-2325 Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allow...
S
CVE-2011-2326 Unspecified vulnerability in the EnterpriseOne Tools component in Oracle JD Edwards 8.98 SP 24 allow...
S
CVE-2011-2327 Unspecified vulnerability in the Oracle Communications Unified component in Oracle Sun Products Suit...
CVE-2011-2328 Buffer overflow in HP LoadRunner allows remote attackers to cause a denial of service (daemon crash)...
CVE-2011-2329 The rampart_timestamp_token_validate function in util/rampart_timestamp_token.c in Apache Rampart/C ...
S
CVE-2011-2330 Tivoli Endpoint in IBM Tivoli Management Framework 3.7.1, 4.1, 4.1.1, and 4.3.1 has an unspecified "...
CVE-2011-2331 Integer overflow in img.exe in HP Intelligent Management Center (IMC) allows remote attackers to exe...
CVE-2011-2332 Google V8, as used in Google Chrome before 12.0.742.91, allows remote attackers to bypass the Same O...
CVE-2011-2334 Use after free vulnerability exists in WebKit in Google Chrome before Blink M12 in RenderLayerwhen r...
CVE-2011-2335 A double-free vulnerability exists in WebKit in Google Chrome before Blink M12 in the WebCore::CSSSe...
CVE-2011-2336 An issue exists in WebKit in Google Chrome before Blink M12. when clearing lists in AnimationControl...
CVE-2011-2337 A wrong type is used for a return value from strlen in WebKit in Google Chrome before Blink M12 on 6...
CVE-2011-2338 WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary...
CVE-2011-2339 WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary...
CVE-2011-2341 WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary...
CVE-2011-2342 The DOM implementation in Google Chrome before 12.0.742.91 allows remote attackers to bypass the Sam...
CVE-2011-2343 The Bluetooth stack in Android before 2.3.6 allows a physically proximate attacker to obtain contact...
CVE-2011-2344 Android Picasa in Android 3.0 and 2.x through 2.3.4 uses a cleartext HTTP session when transmitting ...
CVE-2011-2345 The NPAPI implementation in Google Chrome before 12.0.742.112 does not properly handle strings, whic...
CVE-2011-2346 Use-after-free vulnerability in Google Chrome before 12.0.742.112 allows remote attackers to cause a...
CVE-2011-2347 Google Chrome before 12.0.742.112 does not properly handle Cascading Style Sheets (CSS) token sequen...
CVE-2011-2348 Google V8, as used in Google Chrome before 12.0.742.112, performs an incorrect bounds check, which a...
CVE-2011-2349 Use-after-free vulnerability in Google Chrome before 12.0.742.112 allows remote attackers to cause a...
CVE-2011-2350 The HTML parser in Google Chrome before 12.0.742.112 does not properly address "lifetime and re-entr...
CVE-2011-2351 Use-after-free vulnerability in Google Chrome before 12.0.742.112 allows remote attackers to cause a...
CVE-2011-2352 WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary...
CVE-2011-2353 Use after free vulnerability in documentloader in WebKit in Google Chrome before Blink M13 in Docume...
CVE-2011-2354 WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary...
CVE-2011-2356 WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary...
CVE-2011-2357 Cross-application scripting vulnerability in the Browser URL loading functionality in Android 2.3.4 ...
CVE-2011-2358 Google Chrome before 13.0.782.107 does not ensure that extension installations are confirmed by a br...
CVE-2011-2359 Google Chrome before 13.0.782.107 does not properly track line boxes during rendering, which allows ...
CVE-2011-2360 Google Chrome before 13.0.782.107 does not ensure that the user is prompted before download of a dan...
CVE-2011-2361 The Basic Authentication dialog implementation in Google Chrome before 13.0.782.107 does not properl...
CVE-2011-2362 Mozilla Firefox before 3.6.18, Thunderbird before 3.1.11, and SeaMonkey through 2.0.14 do not distin...
CVE-2011-2363 Use-after-free vulnerability in the nsSVGPointList::AppendElement function in the implementation of ...
CVE-2011-2364 Unspecified vulnerability in the browser engine in Mozilla Firefox 3.6.x before 3.6.18 and Thunderbi...
CVE-2011-2365 Unspecified vulnerability in the browser engine in Mozilla Firefox 3.6.x before 3.6.18 and Thunderbi...
CVE-2011-2366 Mozilla Gecko before 5.0, as used in Firefox before 5.0 and Thunderbird before 5.0, does not block u...
E
CVE-2011-2367 The WebGL implementation in Mozilla Firefox 4.x through 4.0.1 does not properly restrict read operat...
CVE-2011-2368 The WebGL implementation in Mozilla Firefox 4.x through 4.0.1 does not properly restrict write opera...
CVE-2011-2369 Cross-site scripting (XSS) vulnerability in Mozilla Firefox 4.x through 4.0.1 allows remote attacker...
CVE-2011-2370 Mozilla Firefox before 5.0 does not properly enforce the whitelist for the xpinstall functionality, ...
CVE-2011-2371 Integer overflow in the Array.reduceRight method in Mozilla Firefox before 3.6.18 and 4.x through 4....
CVE-2011-2372 Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 do...
CVE-2011-2373 Use-after-free vulnerability in Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird bef...
CVE-2011-2374 Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.18 and 4.x ...
S
CVE-2011-2375 Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 5.0 and Thunder...
CVE-2011-2376 Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.18 and Thun...
CVE-2011-2377 Mozilla Firefox before 3.6.18 and 4.x through 4.0.1, Thunderbird before 3.1.11, and SeaMonkey throug...
CVE-2011-2378 The appendChild function in Mozilla Firefox before 3.6.20, Thunderbird 3.x before 3.1.12, SeaMonkey ...
CVE-2011-2379 Cross-site scripting (XSS) vulnerability in Bugzilla 2.4 through 2.22.7, 3.0.x through 3.3.x, 3.4.x ...
E S
CVE-2011-2380 Bugzilla 2.23.3 through 2.22.7, 3.0.x through 3.3.x, 3.4.x before 3.4.12, 3.5.x, 3.6.x before 3.6.6,...
S
CVE-2011-2381 CRLF injection vulnerability in Bugzilla 2.17.1 through 2.22.7, 3.0.x through 3.3.x, 3.4.x before 3....
S
CVE-2011-2382 Microsoft Internet Explorer 8 and earlier, and Internet Explorer 9 beta, does not properly restrict ...
CVE-2011-2383 Microsoft Internet Explorer 9 and earlier does not properly restrict cross-zone drag-and-drop action...
CVE-2011-2385 The iPhoneHandle package 0.9.x before 0.9.7 and 1.0.x before 1.0.3 in Open Ticket Request System (OT...
S
CVE-2011-2386 VisiWaveReport.exe in AZO Technologies, Inc. VisiWave Site Survey before 2.1.9 allows user-assisted ...
E
CVE-2011-2391 The IPv6 implementation in the kernel in Apple iOS before 7 allows remote attackers to cause a denia...
CVE-2011-2393 The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in FreeBSD, NetBSD, and possib...
CVE-2011-2395 The Neighbor Discovery (ND) protocol implementation in Cisco IOS on unspecified switches allows remo...
CVE-2011-2397 The Agent service in Iron Mountain Connected Backup 8.4 allows remote attackers to execute arbitrary...
CVE-2011-2398 Unspecified vulnerability in the dynamic loader in HP HP-UX B.11.11, B.11.23, and B.11.31 allows loc...
CVE-2011-2399 Unspecified vulnerability in the Media Management Daemon (mmd) in HP Data Protector 6.11 and earlier...
CVE-2011-2400 Cross-site scripting (XSS) vulnerability in HP SiteScope 9.x, 10.x, and 11.x allows remote attackers...
CVE-2011-2401 Session fixation vulnerability in HP SiteScope 9.x, 10.x, and 11.x allows remote attackers to hijack...
CVE-2011-2402 Cross-site scripting (XSS) vulnerability in HP Network Automation 7.2x, 7.5x, 7.6x, 9.0, and 9.10 al...
CVE-2011-2403 SQL injection vulnerability in HP Network Automation 7.2x, 7.5x, 7.6x, 9.0, and 9.10 allows remote a...
CVE-2011-2404 A certain ActiveX control in HPTicketMgr.dll in HP Easy Printer Care Software 2.5 and earlier allows...
CVE-2011-2405 The HP ProLiant SL Advanced Power Manager (SL-APM) with firmware before 1.20 does not properly valid...
CVE-2011-2406 Cross-site scripting (XSS) vulnerability in HP OpenView Performance Insight 5.3, 5.31, 5.4, 5.41, 5....
CVE-2011-2407 Unspecified vulnerability in HP OpenView Performance Insight 5.3, 5.31, 5.4, 5.41, 5.41.001, and 5.4...
CVE-2011-2408 Cross-site scripting (XSS) vulnerability in the Contacts application in HP Palm webOS 3.x before 3.0...
CVE-2011-2409 Cross-site scripting (XSS) vulnerability in the Calendar application in HP Palm webOS 3.x before 3.0...
CVE-2011-2410 Cross-site scripting (XSS) vulnerability in HP OpenView Performance Insight 5.3, 5.31, 5.4, 5.41, 5....
CVE-2011-2411 Unspecified vulnerability on HP NonStop Servers with software H06.x through H06.23.00 and J06.x thro...
CVE-2011-2412 Unspecified vulnerability in HP Business Service Automation (BSA) Essentials 2.01 allows remote atta...
CVE-2011-2414 Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and...
S
CVE-2011-2415 Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and...
S
CVE-2011-2416 Integer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris an...
S
CVE-2011-2417 Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 ...
S
CVE-2011-2418 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2419 IML32.dll in Adobe Shockwave Player before 11.6.1.629 allows remote attackers to execute arbitrary c...
S
CVE-2011-2420 Adobe Shockwave Player before 11.6.1.629 allows remote attackers to execute arbitrary code or cause ...
S
CVE-2011-2421 Dirapi.dll in Adobe Shockwave Player before 11.6.1.629 allows attackers to execute arbitrary code or...
S
CVE-2011-2422 Textra.x32 in Adobe Shockwave Player before 11.6.1.629 allows remote attackers to execute arbitrary ...
S
CVE-2011-2423 msvcr90.dll in Adobe Shockwave Player before 11.6.1.629 allows remote attackers to execute arbitrary...
S
CVE-2011-2424 Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 ...
S
CVE-2011-2425 Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before 10.3.186.3 ...
S
CVE-2011-2426 Stack-based buffer overflow in the ActionScript Virtual Machine (AVM) component in Adobe Flash Playe...
S
CVE-2011-2427 Stack-based buffer overflow in the ActionScript Virtual Machine (AVM) component in Adobe Flash Playe...
S
CVE-2011-2428 Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186....
S
CVE-2011-2429 Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186....
S
CVE-2011-2430 Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186....
S
CVE-2011-2431 Adobe Reader and Acrobat 8.x before 8.3.1, 9.x before 9.4.6, and 10.x before 10.1.1 allow attackers ...
S
CVE-2011-2432 Buffer overflow in the U3D TIFF Resource in Adobe Reader and Acrobat 8.x before 8.3.1, 9.x before 9....
S
CVE-2011-2433 Heap-based buffer overflow in Adobe Reader and Acrobat 8.x before 8.3.1, 9.x before 9.4.6, and 10.x ...
S
CVE-2011-2434 Heap-based buffer overflow in Adobe Reader and Acrobat 8.x before 8.3.1, 9.x before 9.4.6, and 10.x ...
S
CVE-2011-2435 Buffer overflow in Adobe Reader and Acrobat 8.x before 8.3.1, 9.x before 9.4.6, and 10.x before 10.1...
S
CVE-2011-2436 Heap-based buffer overflow in the image-parsing library in Adobe Reader and Acrobat 8.x before 8.3.1...
S
CVE-2011-2437 Heap-based buffer overflow in Adobe Reader and Acrobat 8.x before 8.3.1, 9.x before 9.4.6, and 10.x ...
S
CVE-2011-2438 Multiple stack-based buffer overflows in the image-parsing library in Adobe Reader and Acrobat 8.x b...
S
CVE-2011-2439 Adobe Reader and Acrobat 8.x before 8.3.1, 9.x before 9.4.6, and 10.x before 10.1.1 allow attackers ...
S
CVE-2011-2440 Use-after-free vulnerability in Adobe Reader and Acrobat 8.x before 8.3.1, 9.x before 9.4.6, and 10....
S
CVE-2011-2441 Multiple stack-based buffer overflows in CoolType.dll in Adobe Reader and Acrobat 8.x before 8.3.1, ...
S
CVE-2011-2442 Adobe Reader and Acrobat 8.x before 8.3.1, 9.x before 9.4.6, and 10.x before 10.1.1 allow attackers ...
S
CVE-2011-2443 Multiple buffer overflows in Adobe Photoshop Elements 8.0 and earlier allow remote attackers to caus...
E
CVE-2011-2444 Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 10.3.183.10 on Windows, Mac OS...
S
CVE-2011-2445 Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and S...
S
CVE-2011-2446 The DIRapi library in Adobe Shockwave Player before 11.6.3.633 allows attackers to execute arbitrary...
S
CVE-2011-2447 Adobe Shockwave Player before 11.6.3.633 allows attackers to execute arbitrary code or cause a denia...
S
CVE-2011-2448 The DIRapi library in Adobe Shockwave Player before 11.6.3.633 allows attackers to execute arbitrary...
S
CVE-2011-2449 The TextXtra module in Adobe Shockwave Player before 11.6.3.633 allows attackers to execute arbitrar...
S
CVE-2011-2450 Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and S...
S
CVE-2011-2451 Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and S...
S
CVE-2011-2452 Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and S...
S
CVE-2011-2453 Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and S...
S
CVE-2011-2454 Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and S...
S
CVE-2011-2455 Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and S...
S
CVE-2011-2456 Buffer overflow in Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac...
S
CVE-2011-2457 Stack-based buffer overflow in Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on ...
S
CVE-2011-2458 Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and S...
S
CVE-2011-2459 Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and S...
S
CVE-2011-2460 Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and S...
S
CVE-2011-2461 Cross-site scripting (XSS) vulnerability in the Adobe Flex SDK 3.x and 4.x before 4.6 allows remote ...
E
CVE-2011-2462 Unspecified vulnerability in the U3D component in Adobe Reader and Acrobat 10.1.1 and earlier on Win...
KEV
CVE-2011-2463 Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 8.0 through 9.0.1 allows remote attacke...
S
CVE-2011-2464 Unspecified vulnerability in ISC BIND 9 9.6.x before 9.6-ESV-R4-P3, 9.7.x before 9.7.3-P3, and 9.8.x...
CVE-2011-2465 Unspecified vulnerability in ISC BIND 9 9.8.0, 9.8.0-P1, 9.8.0-P2, and 9.8.1b1, when recursion is en...
S
CVE-2011-2467 SQL injection vulnerability in lsassd in Lsass in the Likewise Security Authority in Likewise Open 5...
CVE-2011-2468 Directory traversal vulnerability in the web interface in AnyMacro Mail System G4X allows remote att...
CVE-2011-2470 Cross-site scripting (XSS) vulnerability in chat/base/admin/login.php in A Really Simple Chat (ARSC)...
E
CVE-2011-2471 utils/opcontrol in OProfile 0.9.6 and earlier might allow local users to gain privileges via shell m...
E S
CVE-2011-2472 Directory traversal vulnerability in utils/opcontrol in OProfile 0.9.6 and earlier might allow local...
E S
CVE-2011-2473 The do_dump_data function in utils/opcontrol in OProfile 0.9.6 and earlier might allow local users t...
E S
CVE-2011-2474 Directory traversal vulnerability in the HTTP Server in Sybase EAServer 6.3.1 Developer Edition allo...
CVE-2011-2475 Format string vulnerability in ECTrace.dll in the iMailGateway service in the Internet Mail Gateway ...
CVE-2011-2476 Cross-site scripting (XSS) vulnerability in Coppermine Photo Gallery (CPG) before 1.5.12 allows remo...
S
CVE-2011-2477 Multiple cross-site scripting (XSS) vulnerabilities in config.c in config.cgi in Icinga before 1.4.1...
S
CVE-2011-2478 Google SketchUp before 8 does not properly handle edge geometry in SketchUp (aka .SKP) files, which ...
CVE-2011-2479 The Linux kernel before 2.6.39 does not properly create transparent huge pages in response to a MAP_...
E S
CVE-2011-2480 Information Disclosure vulnerability in the 802.11 stack, as used in FreeBSD before 8.2 and NetBSD w...
CVE-2011-2481 Apache Tomcat 7.0.x before 7.0.17 permits web applications to replace an XML parser used for other w...
E S
CVE-2011-2482 A certain Red Hat patch to the sctp_sock_migrate function in net/sctp/socket.c in the Linux kernel b...
E S
CVE-2011-2483 crypt_blowfish before 1.1, as used in PHP before 5.3.7 on certain platforms, PostgreSQL before 8.4.9...
S
CVE-2011-2484 The add_del_listener function in kernel/taskstats.c in the Linux kernel 2.6.39.1 and earlier does no...
S
CVE-2011-2485 The gdk_pixbuf__gif_image_load function in gdk-pixbuf/io-gif.c in gdk-pixbuf before 2.23.5 does not ...
E S
CVE-2011-2486 nspluginwrapper before 1.4.4 does not properly provide access to NPNVprivateModeBool variable settin...
S
CVE-2011-2487 The implementations of PKCS#1 v1.5 key transport mechanism for XMLEncryption in JBossWS and Apache W...
S
CVE-2011-2488 Joomla! before 1.5.23 does not properly check for errors, which allows remote attackers to obtain se...
S
CVE-2011-2489 Multiple off-by-one errors in opiesu.c in opiesu in OPIE 2.4.1-test1 and earlier might allow local u...
E S
CVE-2011-2490 opielogin.c in opielogin in OPIE 2.4.1-test1 and earlier does not check the return value of the setu...
E S
CVE-2011-2491 The Network Lock Manager (NLM) protocol implementation in the NFS client functionality in the Linux ...
S
CVE-2011-2492 The bluetooth subsystem in the Linux kernel before 3.0-rc4 does not properly initialize certain data...
S
CVE-2011-2493 The ext4_fill_super function in fs/ext4/super.c in the Linux kernel before 2.6.39 does not properly ...
E S
CVE-2011-2494 kernel/taskstats.c in the Linux kernel before 3.1 allows local users to obtain sensitive I/O statist...
S
CVE-2011-2495 fs/proc/base.c in the Linux kernel before 2.6.39.4 does not properly restrict access to /proc/#####/...
E S
CVE-2011-2496 Integer overflow in the vma_to_resize function in mm/mremap.c in the Linux kernel before 2.6.39 allo...
E S
CVE-2011-2497 Integer underflow in the l2cap_config_req function in net/bluetooth/l2cap_core.c in the Linux kernel...
S
CVE-2011-2498 The Linux kernel from v2.3.36 before v2.6.39 allows local unprivileged users to cause a denial of se...
CVE-2011-2499 Mambo CMS through 4.6.5 has multiple XSS....
CVE-2011-2500 The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils before 1.2.4 does not ...
CVE-2011-2501 The png_format_buffer function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4...
E S
CVE-2011-2502 runtime/staprun/staprun_funcs.c in the systemtap runtime tool (staprun) in SystemTap before 1.6 does...
CVE-2011-2503 The insert_module function in runtime/staprun/staprun_funcs.c in the systemtap runtime tool (staprun...
CVE-2011-2504 Untrusted search path vulnerability in x11perfcomp in XFree86 x11perf before 1.5.4 allows local user...
CVE-2011-2505 libraries/auth/swekey/swekey.auth.lib.php in the Swekey authentication feature in phpMyAdmin 3.x bef...
E S
CVE-2011-2506 setup/lib/ConfigGenerator.class.php in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1 does ...
E S
CVE-2011-2507 libraries/server_synchronize.lib.php in the Synchronize implementation in phpMyAdmin 3.x before 3.3....
E S
CVE-2011-2508 Directory traversal vulnerability in libraries/display_tbl.lib.php in phpMyAdmin 3.x before 3.3.10.2...
E S
CVE-2011-2509 Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before 1.6.4 allow remote attackers t...
E
CVE-2011-2510 Cross-site scripting (XSS) vulnerability in the RSS embedding feature in DokuWiki before 2011-05-25a...
S
CVE-2011-2511 Integer overflow in libvirt before 0.9.3 allows remote authenticated users to cause a denial of serv...
S
CVE-2011-2512 The virtio_queue_notify in qemu-kvm 0.14.0 and earlier does not properly validate the virtqueue numb...
S
CVE-2011-2513 The Java Network Launching Protocol (JNLP) implementation in IcedTea6 1.9.x before 1.9.9 and before ...
S
CVE-2011-2514 The Java Network Launching Protocol (JNLP) implementation in IcedTea6 1.9.x before 1.9.9 and before ...
S
CVE-2011-2515 PackageKit 0.6.17 allows installation of unsigned RPM packages as though they were signed which may ...
CVE-2011-2516 Off-by-one error in the XML signature feature in Apache XML Security for C++ 1.6.0, as used in Shibb...
E
CVE-2011-2517 Multiple buffer overflows in net/wireless/nl80211.c in the Linux kernel before 2.6.39.2 allow local ...
S
CVE-2011-2518 The tomoyo_mount_acl function in security/tomoyo/mount.c in the Linux kernel before 2.6.39.2 calls t...
S
CVE-2011-2519 Xen in the Linux kernel, when running a guest on a host without hardware assisted paging (HAP), allo...
S
CVE-2011-2520 fw_dbus.py in system-config-firewall 1.2.29 and earlier uses the pickle Python module unsafely durin...
CVE-2011-2521 The x86_assign_hw_event function in arch/x86/kernel/cpu/perf_event.c in the Performance Events subsy...
S
CVE-2011-2522 Multiple cross-site request forgery (CSRF) vulnerabilities in the Samba Web Administration Tool (SWA...
E S
CVE-2011-2523 vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on por...
E
CVE-2011-2524 Directory traversal vulnerability in soup-uri.c in SoupServer in libsoup before 2.35.4 allows remote...
S
CVE-2011-2525 The qdisc_notify function in net/sched/sch_api.c in the Linux kernel before 2.6.35 does not prevent ...
S
CVE-2011-2526 Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.19, when sendfile is enable...
S
CVE-2011-2527 The change_process_uid function in os-posix.c in Qemu 0.14.0 and earlier does not properly drop grou...
CVE-2011-2528 Unspecified vulnerability in (1) Zope 2.12.x before 2.12.19 and 2.13.x before 2.13.8, as used in Plo...
S
CVE-2011-2529 chan_sip.c in the SIP channel driver in Asterisk Open Source 1.6.x before 1.6.2.18.1 and 1.8.x befor...
S
CVE-2011-2530 Buffer overflow in RSEds.dll in RSHWare.exe in the EDS Hardware Installation Tool 1.0.5.1 and earlie...
CVE-2011-2531 Prosody 0.8.x before 0.8.1, when MySQL is used, assigns an incorrect data type to the value column i...
S
CVE-2011-2532 The json.decode function in util/json.lua in Prosody 0.8.x before 0.8.1 might allow remote attackers...
S
CVE-2011-2533 The configure script in D-Bus (aka DBus) 1.2.x before 1.2.28 allows local users to overwrite arbitra...
CVE-2011-2534 Buffer overflow in the clusterip_proc_write function in net/ipv4/netfilter/ipt_CLUSTERIP.c in the Li...
S
CVE-2011-2535 chan_iax2.c in the IAX2 channel driver in Asterisk Open Source 1.4.x before 1.4.41.1, 1.6.2.x before...
S
CVE-2011-2536 chan_sip.c in the SIP channel driver in Asterisk Open Source 1.4.x before 1.4.41.2, 1.6.2.x before 1...
S
CVE-2011-2538 Cisco Video Communications Server (VCS) before X7.0.3 contains a command injection vulnerability whi...
CVE-2011-2543 Buffer overflow in the cuil component in Cisco Telepresence System Integrator C Series 4.x before TC...
E
CVE-2011-2544 Cross-site scripting (XSS) vulnerability in the web interface in Cisco TelePresence System MXP Serie...
E
CVE-2011-2545 Cross-site scripting (XSS) vulnerability in the SIP implementation on the Cisco SPA8000 and SPA8800 ...
CVE-2011-2546 SQL injection vulnerability in the web-based management interface on Cisco SA 500 series security ap...
CVE-2011-2547 The web-based management interface on Cisco SA 500 series security appliances with software before 2...
CVE-2011-2549 Unspecified vulnerability in Cisco IOS XR 4.1.x before 4.1.1 on Cisco Aggregation Services Routers (...
CVE-2011-2555 Cisco TelePresence Recording Server 1.7.2.x before 1.7.2.1 has a default password for the root admin...
CVE-2011-2560 The Packet Capture Service in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) ...
CVE-2011-2561 The SIP process in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 7.x before ...
CVE-2011-2562 Unspecified vulnerability in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6...
CVE-2011-2563 Unspecified vulnerability in the Service Advertisement Framework (SAF) in Cisco Unified Communicatio...
CVE-2011-2564 Unspecified vulnerability in the Service Advertisement Framework (SAF) in Cisco Unified Communicatio...
CVE-2011-2569 Cisco Nexus OS (aka NX-OS) 4.2 and 5.0 and Cisco Unified Computing System with software 1.4 and 2.0 ...
CVE-2011-2577 Unspecified vulnerability in Cisco TelePresence C Series Endpoints, E/EX Personal Video units, and M...
E
CVE-2011-2578 Memory leak in Cisco IOS 15.1 and 15.2 allows remote attackers to cause a denial of service (memory ...
CVE-2011-2581 The ACL implementation in Cisco NX-OS 5.0(2) and 5.0(3) before 5.0(3)N2(1) on Nexus 5000 series swit...
CVE-2011-2583 Cisco Unified Contact Center Express (aka CCX) 8.0 and 8.5 allows remote attackers to cause a denial...
CVE-2011-2584 Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1) allows remote attackers to access the ...
CVE-2011-2585 Cisco Show and Share 5(2), 5.2(1), and 5.2(2) before 5.2(2.1) allows remote authenticated users to u...
CVE-2011-2586 The HTTP client in Cisco IOS 12.4 and 15.0 allows user-assisted remote attackers to cause a denial o...
CVE-2011-2587 Heap-based buffer overflow in the DemuxAudioSipr function in real.c in the RealMedia demuxer in Vide...
S
CVE-2011-2588 Heap-based buffer overflow in the AVI_ChunkRead_strf function in libavi.c in the AVI demuxer in Vide...
S
CVE-2011-2589 Heap-based buffer overflow in the SendLogAction method in the UUPlayer ActiveX control 6.0.0.1 in UU...
CVE-2011-2590 The Play method in the UUPlayer ActiveX control 6.0.0.1 in UUSee 2010 6.11.0609.2 allows remote atta...
CVE-2011-2591 Multiple buffer overflows in the Provideo ActiveX controls allow remote attackers to execute arbitra...
CVE-2011-2592 Heap-based buffer overflow in the StartEpa method in the nsepacom ActiveX control (nsepa.exe) in Cit...
CVE-2011-2593 Integer overflow in the StartEpa method in the nsepacom ActiveX control (nsepa.exe) in Citrix Access...
S
CVE-2011-2594 Heap-based buffer overflow in KMPlayer 3.0.0.1441, and possibly other versions, allows remote attack...
CVE-2011-2595 Multiple stack-based buffer overflows in ACDSee FotoSlate 4.0 Build 146 allow remote attackers to ex...
CVE-2011-2597 The Lucent/Ascend file parser in Wireshark 1.2.x before 1.2.18, 1.4.x through 1.4.7, and 1.6.0 allow...
CVE-2011-2598 The WebGL implementation in Mozilla Firefox 4.x allows remote attackers to obtain screenshots of the...
E
CVE-2011-2599 Google Chrome 11 does not block use of a cross-domain image as a WebGL texture, which allows remote ...
E
CVE-2011-2600 The GPU support functionality in Windows XP does not properly restrict rendering time, which allows ...
E
CVE-2011-2601 The GPU support functionality in Mac OS X does not properly restrict rendering time, which allows re...
E
CVE-2011-2602 The NVIDIA Geforce 310 driver 6.14.12.7061 on Windows XP SP3 allows remote attackers to cause a deni...
E
CVE-2011-2603 The NVIDIA 9400M driver 6.2.6 on Mac OS X 10.6.7 allows remote attackers to cause a denial of servic...
E
CVE-2011-2604 The Intel G41 driver 6.14.10.5355 on Windows XP SP3 allows remote attackers to cause a denial of ser...
E
CVE-2011-2605 CRLF injection vulnerability in the nsCookieService::SetCookieStringInternal function in netwerk/coo...
S
CVE-2011-2606 Cross-site scripting (XSS) vulnerability in the Web UI in IBM Rational Team Concert (RTC) 3.0 allows...
CVE-2011-2607 Cross-site scripting (XSS) vulnerability in IBM Rational Team Concert (RTC) 3.0 allows remote attack...
CVE-2011-2608 ovbbccb.exe 6.20.50.0 and other versions in HP OpenView Performance Agent 4.70 and 5.0; and Operatio...
E
CVE-2011-2609 Opera before 11.50 does not properly restrict data: URIs, which makes it easier for remote attackers...
CVE-2011-2610 Unspecified vulnerability in Opera before 11.50 has unknown impact and attack vectors, related to a ...
CVE-2011-2611 Unspecified vulnerability in the printing functionality in Opera before 11.50 allows user-assisted r...
CVE-2011-2612 Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service...
CVE-2011-2613 The Array.prototype.join method in Opera before 11.50 allows remote attackers to cause a denial of s...
CVE-2011-2614 The SVG implementation in Opera before 11.50 allows remote attackers to cause a denial of service (a...
CVE-2011-2615 Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service...
CVE-2011-2616 Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service...
CVE-2011-2617 Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service...
CVE-2011-2618 Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via web ...
CVE-2011-2619 Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via a gr...
CVE-2011-2620 Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service...
CVE-2011-2621 Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service...
CVE-2011-2622 Unspecified vulnerability in the Web Workers implementation in Opera before 11.50 allows remote atta...
CVE-2011-2623 Unspecified vulnerability in the SVG BiDi implementation in Opera before 11.50 allows remote attacke...
CVE-2011-2624 Opera before 11.50 allows user-assisted remote attackers to cause a denial of service (application h...
CVE-2011-2625 Opera before 11.50 allows remote attackers to cause a denial of service (application crash) via a SE...
CVE-2011-2626 Opera before 11.50 allows remote attackers to cause a denial of service (application crash) by using...
CVE-2011-2627 Unspecified vulnerability in the DOM implementation in Opera before 11.50 allows remote attackers to...
CVE-2011-2628 Opera before 11.11 does not properly implement FRAMESET elements, which allows remote attackers to e...
CVE-2011-2629 Unspecified vulnerability in Opera before 11.11 allows remote attackers to cause a denial of service...
CVE-2011-2630 Opera before 11.11 allows user-assisted remote attackers to cause a denial of service (application c...
CVE-2011-2631 The Cascading Style Sheets (CSS) implementation in Opera before 11.11 does not properly handle the c...
CVE-2011-2632 Opera before 11.11 does not properly handle destruction of a Silverlight instance, which allows remo...
CVE-2011-2633 Unspecified vulnerability in Opera before 11.11 allows remote attackers to cause a denial of service...
CVE-2011-2634 Opera before 11.10 allows remote attackers to hijack (1) searches and (2) customizations via unspeci...
CVE-2011-2635 The Cascading Style Sheets (CSS) implementation in Opera before 11.10 allows remote attackers to cau...
CVE-2011-2636 Unspecified vulnerability in Opera before 11.10 allows remote attackers to cause a denial of service...
CVE-2011-2637 Unspecified vulnerability in Opera before 11.10 allows remote attackers to cause a denial of service...
CVE-2011-2638 Unspecified vulnerability in Opera before 11.10 allows remote attackers to cause a denial of service...
CVE-2011-2639 Opera before 11.10 does not properly handle hidden animated GIF images, which allows remote attacker...
CVE-2011-2640 Opera before 11.10 allows remote attackers to cause a denial of service (application crash) via an H...
CVE-2011-2641 Opera 11.11 allows remote attackers to cause a denial of service (application crash) by setting the ...
E
CVE-2011-2642 Multiple cross-site scripting (XSS) vulnerabilities in the table Print view implementation in tbl_pr...
S
CVE-2011-2643 Directory traversal vulnerability in sql.php in phpMyAdmin 3.4.x before 3.4.3.2, when configuration ...
S
CVE-2011-2644 Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1....
CVE-2011-2645 Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows rem...
CVE-2011-2646 Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows rem...
CVE-2011-2647 Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows rem...
CVE-2011-2648 Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows rem...
CVE-2011-2649 Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows attackers to execute arbitrary c...
CVE-2011-2650 Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1....
CVE-2011-2651 Unspecified vulnerability in the file browser in Kiwi before 3.74.2, as used in SUSE Studio 1.1 befo...
CVE-2011-2652 Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1....
CVE-2011-2653 Directory traversal vulnerability in the rtrlet component in Novell ZENworks Asset Management (ZAM) ...
CVE-2011-2654 The RPC implementation in the server in Novell Cloud Manager 1.1.2 before Patch 3 does not properly ...
CVE-2011-2655 Unspecified vulnerability in ZfHSrvr.exe in Novell ZENworks Handheld Management (ZHM) 7 allows remot...
S
CVE-2011-2656 Unspecified vulnerability in ZfHSrvr.exe in Novell ZENworks Handheld Management (ZHM) 7 allows remot...
S
CVE-2011-2657 Directory traversal vulnerability in the LaunchProcess function in the LaunchHelp.HelpLauncher.1 Act...
E S
CVE-2011-2658 The ISList.ISAvi ActiveX control in AdminStudio in Novell ZENworks Configuration Management (ZCM) 10...
S
CVE-2011-2660 The modify_resolvconf_suse script in the vpnc package before 0.5.1-55.10.1 in SUSE Linux Enterprise ...
CVE-2011-2661 Multiple cross-site scripting (XSS) vulnerabilities in WebAccess in Novell GroupWise 8.0 before HP3 ...
CVE-2011-2662 Integer signedness error in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allow...
CVE-2011-2663 Array index error in GroupWise Internet Agent (GWIA) in Novell GroupWise 8.0 before HP3 allows remot...
CVE-2011-2664 Unspecified vulnerability in Check Point Multi-Domain Management / Provider-1 NGX R65, R70, R71, and...
S
CVE-2011-2665 reqresp_parser.c in the SIP channel driver in Asterisk Open Source 1.8.x before 1.8.4.3 allows remot...
S
CVE-2011-2666 The default configuration of the SIP channel driver in Asterisk Open Source 1.4.x through 1.4.41.2 a...
CVE-2011-2667 Icihttp.exe in CA Gateway Security for HTTP, as used in CA Gateway Security 8.1 before 8.1.0.69 and ...
CVE-2011-2668 Mozilla Firefox through 1.5.0.3 has a vulnerability in processing the content-length header...
CVE-2011-2669 Mozilla Firefox prior to 3.6 has a DoS vulnerability due to an issue in the validation of certificat...
CVE-2011-2670 Mozilla Firefox before 3.6 is vulnerable to XSS via the rendering of Cascading Style Sheets...
CVE-2011-2671 Unspecified vulnerability in Megalith 12th edition through 27th edition allows remote attackers to g...
S
CVE-2011-2672 Cross-site scripting (XSS) vulnerability in SemanticScuttle before 0.98 allows remote attackers to i...
S
CVE-2011-2673 Cross-site scripting (XSS) vulnerability in BaserCMS before 1.6.13.2 allows remote attackers to inje...
CVE-2011-2674 BaserCMS before 1.6.12 does not properly restrict additions to the membership of the operators group...
CVE-2011-2675 Cross-site scripting (XSS) vulnerability in Enkai-kun before 110916 allows remote attackers to injec...
CVE-2011-2676 The A-Form and A-Form bamboo before 1.3.6 and 2.x before 2.0.3, and A-Form PC and PC/Mobile before 3...
S
CVE-2011-2677 Cybozu Office before 8.0.0 allows remote authenticated users to bypass intended access restrictions ...
CVE-2011-2678 The Cisco VPN Client 5.0.7.0240 and 5.0.7.0290 on 64-bit Windows platforms uses weak permissions (NT...
CVE-2011-2679 Cross-site scripting (XSS) vulnerability in IBM Rational DOORS Web Access 1.4.x before 1.4.0.4 allow...
CVE-2011-2680 Unspecified vulnerability in IBM Rational DOORS Web Access 1.4.x before 1.4.0.4 has unknown impact a...
CVE-2011-2681 IBM Rational DOORS Web Access 1.4.x before 1.4.0.4 does not properly handle exceptions, which has un...
CVE-2011-2682 The Login component in IBM Rational DOORS Web Access 1.4.x before 1.4.0.4 allows remote authenticate...
E
CVE-2011-2683 reseed seeds random numbers from an insecure HTTP request to random.org during installation, which m...
CVE-2011-2684 foo2zjs before 20110722dfsg-3ubuntu1 as packaged in Ubuntu, 20110722dfsg-1 as packaged in Debian uns...
CVE-2011-2685 Stack-based buffer overflow in the Lotus Word Pro import filter in LibreOffice before 3.3.3 allows r...
S
CVE-2011-2686 Ruby before 1.8.7-p352 does not reset the random seed upon forking, which makes it easier for contex...
S
CVE-2011-2687 Drupal 7.x before 7.3 allows remote attackers to bypass intended node_access restrictions via vector...
S
CVE-2011-2688 SQL injection vulnerability in mysql/mysql-auth.pl in the mod_authnz_external module 3.2.5 and earli...
S
CVE-2011-2689 The gfs2_fallocate function in fs/gfs2/file.c in the Linux kernel before 3.0-rc1 does not ensure tha...
S
CVE-2011-2690 Buffer overflow in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x be...
CVE-2011-2691 The png_err function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before ...
E S
CVE-2011-2692 The png_handle_sCAL function in pngrutil.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x...
E S
CVE-2011-2693 The perf subsystem in the kernel package 2.6.32-122.el6.x86_64 in Red Hat Enterprise Linux (RHEL) 6 ...
CVE-2011-2694 Cross-site scripting (XSS) vulnerability in the chg_passwd function in web/swat.c in the Samba Web A...
S
CVE-2011-2695 Multiple off-by-one errors in the ext4 subsystem in the Linux kernel before 3.0-rc5 allow local user...
E S
CVE-2011-2696 Integer overflow in libsndfile before 1.0.25 allows remote attackers to cause a denial of service (a...
CVE-2011-2697 foomatic-rip-hplip in HP Linux Imaging and Printing (HPLIP) 3.11.5 allows remote attackers to execut...
E S
CVE-2011-2698 Off-by-one error in the elem_cell_id_aux function in epan/dissectors/packet-ansi_a.c in the ANSI MAP...
E S
CVE-2011-2699 The IPv6 implementation in the Linux kernel before 3.1 does not generate Fragment Identification val...
S
CVE-2011-2700 Multiple buffer overflows in the si4713_write_econtrol_string function in drivers/media/radio/si4713...
E S
CVE-2011-2701 The ocsp_check function in rlm_eap_tls.c in FreeRADIUS 2.1.11, when OCSP is enabled, does not proper...
S
CVE-2011-2702 Integer signedness error in Glibc before 2.13 and eglibc before 2.13, when using Supplemental Stream...
E
CVE-2011-2703 Multiple SQL injection vulnerabilities in MapServer before 4.10.7, 5.x before 5.6.7, and 6.x before ...
S
CVE-2011-2704 Stack-based buffer overflow in MapServer before 4.10.7 and 5.x before 5.6.7 allows remote attackers ...
S
CVE-2011-2705 The SecureRandom.random_bytes function in lib/securerandom.rb in Ruby before 1.8.7-p352 and 1.9.x be...
S
CVE-2011-2706 A Cross-Site Scripting (XSS) vulnerability exists in the reorder administrator functions in sNews 1....
M
CVE-2011-2707 The ptrace_setxregs function in arch/xtensa/kernel/ptrace.c in the Linux kernel before 3.1 does not ...
S
CVE-2011-2708 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2011-2710. Reason: This candida...
R
CVE-2011-2709 libgssapi and libgssglue before 0.4 do not properly check privileges, which allows local users to lo...
S
CVE-2011-2710 Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before 1.7.0 allow remote attackers t...
E
CVE-2011-2711 Cross-site scripting (XSS) vulnerability in the print_fileinfo function in ui-diff.c in cgit 0.9.0.2...
S
CVE-2011-2712 Cross-site scripting (XSS) vulnerability in Apache Wicket 1.4.x before 1.4.18, when setAutomaticMult...
CVE-2011-2713 oowriter in OpenOffice.org 3.3.0 and LibreOffice before 3.4.3 allows user-assisted remote attackers ...
S
CVE-2011-2714 A Cross-Site Scripting vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insuffic...
CVE-2011-2715 An SQL Injection vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient s...
S
CVE-2011-2716 The DHCP client (udhcpc) in BusyBox before 1.20.0 allows remote DHCP servers to execute arbitrary co...
S
CVE-2011-2717 The DHCPv6 client (dhcp6c) as used in the dhcpv6 project through 2011-07-25 allows remote DHCP serve...
CVE-2011-2718 Multiple directory traversal vulnerabilities in the relational schema implementation in phpMyAdmin 3...
S
CVE-2011-2719 libraries/auth/swekey/swekey.auth.lib.php in phpMyAdmin 3.x before 3.3.10.3 and 3.4.x before 3.4.3.2...
S
CVE-2011-2720 The autocompletion functionality in GLPI before 0.80.2 does not blacklist certain username and passw...
S
CVE-2011-2721 Off-by-one error in the cli_hm_scan function in matcher-hash.c in libclamav in ClamAV before 0.97.2 ...
S
CVE-2011-2722 The send_data_to_stdout function in prnt/hpijs/hpcupsfax.cpp in HP Linux Imaging and Printing (HPLIP...
S
CVE-2011-2723 The skb_gro_header_slow function in include/linux/netdevice.h in the Linux kernel before 2.6.39.4, w...
S
CVE-2011-2724 The check_mtab function in client/mount.cifs.c in mount.cifs in smbfs in Samba 3.5.10 and earlier do...
S
CVE-2011-2725 Directory traversal vulnerability in Ark 4.7.x and earlier allows remote attackers to delete and for...
E
CVE-2011-2726 An access bypass issue was found in Drupal 7.x before version 7.5. If a Drupal site has the ability ...
CVE-2011-2727 The (1) templatewrap/templatefoot.php, (2) cmsjs/plugin.js.php, and (3) cmsincludes/cms_plugin_api_l...
CVE-2011-2728 The bsd_glob function in the File::Glob module for Perl before 5.14.2 allows context-dependent attac...
CVE-2011-2729 native/unix/native/jsvc-unix.c in jsvc in the Daemon component 1.0.3 through 1.0.6 in Apache Commons...
CVE-2011-2730 VMware SpringSource Spring Framework before 2.5.6.SEC03, 2.5.7.SR023, and 3.x before 3.0.6, when a c...
CVE-2011-2731 Race condition in the RunAsManager mechanism in VMware SpringSource Spring Security before 2.0.7 and...
CVE-2011-2732 CRLF injection vulnerability in the logout functionality in VMware SpringSource Spring Security befo...
CVE-2011-2733 EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 SP1 Patch 2, SP1 Patch 3, SP2, SP2 Patch 1...
CVE-2011-2734 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2735 Multiple buffer overflows in EMC AutoStart 5.3.x and 5.4.x before 5.4.1 allow remote attackers to ca...
CVE-2011-2736 RSA enVision 4.x before 4 SP4 P3 places cleartext administrative credentials in Task Escalation e-ma...
CVE-2011-2737 RSA enVision 3.x and 4.x before 4 SP4 P3 allows remote attackers to read arbitrary files via unspeci...
CVE-2011-2738 Multiple unspecified vulnerabilities in Cisco Unified Service Monitor before 8.6, as used in Unified...
CVE-2011-2739 The file-blocking feature in EMC Documentum eRoom 7.3.x and 7.4.x before 7.4.3.g does not properly r...
CVE-2011-2740 EMC RSA Key Manager (RKM) Appliance 2.7 SP1 before 2.7.1.6, when Firefox 4.x or 5.0 is used, does no...
CVE-2011-2741 EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 SP1 Patch 2, SP1 Patch 3, SP2, SP2 Patch 1...
CVE-2011-2742 EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 SP1 Patch 2, SP1 Patch 3, SP2, SP2 Patch 1...
CVE-2011-2743 Multiple cross-site scripting (XSS) vulnerabilities in Chyrp 2.1 and earlier allow remote attackers ...
E
CVE-2011-2744 Directory traversal vulnerability in Chyrp 2.1 and earlier allows remote attackers to include and ex...
E
CVE-2011-2745 upload_handler.php in the swfupload extension in Chyrp 2.0 and earlier relies on client-side JavaScr...
E
CVE-2011-2746 Unspecified vulnerability in Kernel/Modules/AdminPackageManager.pm in OTRS-Core in Open Ticket Reque...
CVE-2011-2747 Google Picasa before 3.6 Build 105.67 does not properly handle invalid properties in JPEG images, wh...
CVE-2011-2748 The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-E...
S
CVE-2011-2749 The server in ISC DHCP 3.x and 4.x before 4.2.2, 3.1-ESV before 3.1-ESV-R3, and 4.1-ESV before 4.1-E...
S
CVE-2011-2750 NFRAgent.exe in Novell File Reporter 1.0.4.2 and earlier allows remote attackers to delete arbitrary...
E
CVE-2011-2751 SQL injection vulnerability in Parodia before 6.809 allows remote attackers to execute arbitrary SQL...
CVE-2011-2752 CRLF injection vulnerability in SquirrelMail 1.4.21 and earlier allows remote attackers to modify or...
S
CVE-2011-2753 Multiple cross-site request forgery (CSRF) vulnerabilities in SquirrelMail 1.4.21 and earlier allow ...
S
CVE-2011-2754 Cross-site scripting (XSS) vulnerability in the PageBuilder2 (aka Page Builder) theme in IBM WebSphe...
CVE-2011-2755 Directory traversal vulnerability in FileDownload.jsp in ManageEngine ServiceDesk Plus 8.0 before Bu...
CVE-2011-2756 FileDownload.jsp in ManageEngine ServiceDesk Plus 8.0 before Build 8012 does not require authenticat...
CVE-2011-2757 Directory traversal vulnerability in FileDownload.jsp in ManageEngine ServiceDesk Plus 8.0.0.12 and ...
E
CVE-2011-2758 IDSWebApp in the Web Administration Tool in IBM Tivoli Directory Server (TDS) 6.2 before 6.2.0.3-TIV...
CVE-2011-2759 The login page of IDSWebApp in the Web Administration Tool in IBM Tivoli Directory Server (TDS) 6.2 ...
CVE-2011-2760 Brocade BigIron RX switches allow remote attackers to bypass ACL rules by using 179 as the source po...
CVE-2011-2761 Google Chrome 14.0.794.0 does not properly handle a reload of a page generated in response to a POST...
E S
CVE-2011-2762 The web interface on the LifeSize Room appliance LS_RM1_3.5.3 (11) allows remote attackers to bypass...
E
CVE-2011-2763 The web interface on the LifeSize Room appliance LS_RM1_3.5.3 (11) and 4.7.18 allows remote attacker...
E
CVE-2011-2764 The FS_CheckFilenameIsNotExecutable function in qcommon/files.c in the ioQuake3 engine 1.36 and earl...
E S
CVE-2011-2765 Insecure temporary file handling
E
CVE-2011-2766 The FCGI (aka Fast CGI) module 0.70 through 0.73 for Perl, as used by CGI::Fast, uses environment va...
E S
CVE-2011-2767 mod_perl 2.0 through 2.0.10 allows attackers to execute arbitrary Perl code by placing it in a user-...
CVE-2011-2768 Tor before 0.2.2.34, when configured as a client or bridge, sends a TLS certificate chain as part of...
S
CVE-2011-2769 Tor before 0.2.2.34, when configured as a bridge, accepts the CREATE and CREATE_FAST values in the C...
S
CVE-2011-2770 Cross-site scripting (XSS) vulnerability in man2html.cgi.c in man2html 1.6, and possibly other versi...
CVE-2011-2771 Multiple cross-site scripting (XSS) vulnerabilities in Mahara before 1.4.1 allow remote attackers to...
E S
CVE-2011-2772 The get_dataroot_image_path function in lib/file.php in Mahara before 1.4.1 does not properly valida...
S
CVE-2011-2773 Cross-site request forgery (CSRF) vulnerability in Mahara before 1.4.1 allows remote attackers to hi...
S
CVE-2011-2774 The "Reply to message" feature in Mahara 1.3.x and 1.4.x before 1.4.1 allows remote authenticated us...
S
CVE-2011-2776 Buffer overflow in the Error function in super.c in Super 3.30.0 might allow local users to execute ...
CVE-2011-2777 samples/powerbtn/powerbtn.sh in acpid (aka acpid2) 2.0.16 and earlier uses the pidof program incorre...
CVE-2011-2778 Multiple heap-based buffer overflows in Tor before 0.2.2.35 allow remote attackers to cause a denial...
S
CVE-2011-2779 Windows Event Log SmartConnector in HP ArcSight Connector Appliance before 6.1 uses world-writable p...
CVE-2011-2780 Directory traversal vulnerability in includes/lib/gz.php in Chyrp 2.0 and earlier allows remote atta...
E
CVE-2011-2782 The drag-and-drop implementation in Google Chrome before 13.0.782.107 on Linux does not properly enf...
CVE-2011-2783 Google Chrome before 13.0.782.107 does not ensure that developer-mode NPAPI extension installations ...
CVE-2011-2784 Google Chrome before 13.0.782.107 allows remote attackers to obtain sensitive information via a requ...
CVE-2011-2785 The extensions implementation in Google Chrome before 13.0.782.107 does not properly validate the UR...
CVE-2011-2786 Google Chrome before 13.0.782.107 does not ensure that the speech-input bubble is shown on the produ...
CVE-2011-2787 Google Chrome before 13.0.782.107 does not properly address re-entrancy issues associated with the G...
CVE-2011-2788 Buffer overflow in the inspector serialization functionality in Google Chrome before 13.0.782.107 al...
CVE-2011-2789 Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a...
CVE-2011-2790 Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a...
CVE-2011-2791 The International Components for Unicode (ICU) functionality in Google Chrome before 13.0.782.107 al...
CVE-2011-2792 Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a...
CVE-2011-2793 Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a...
CVE-2011-2794 Google Chrome before 13.0.782.107 does not properly perform text iteration, which allows remote atta...
CVE-2011-2795 Google Chrome before 13.0.782.107 does not prevent calls to functions in other frames, which allows ...
CVE-2011-2796 Use-after-free vulnerability in Skia, as used in Google Chrome before 13.0.782.107, allows remote at...
CVE-2011-2797 Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a...
CVE-2011-2798 Google Chrome before 13.0.782.107 does not properly restrict access to internal schemes, which allow...
CVE-2011-2799 Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a...
CVE-2011-2800 Google Chrome before 13.0.782.107 allows remote attackers to obtain potentially sensitive informatio...
CVE-2011-2801 Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a...
CVE-2011-2802 Google V8, as used in Google Chrome before 13.0.782.107, does not properly perform const lookups, wh...
CVE-2011-2803 Google Chrome before 13.0.782.107 does not properly handle Skia paths, which allows remote attackers...
CVE-2011-2804 Google Chrome before 13.0.782.107 does not properly handle nested functions in PDF documents, which ...
CVE-2011-2805 Google Chrome before 13.0.782.107 allows remote attackers to bypass the Same Origin Policy and condu...
CVE-2011-2806 Google Chrome before 13.0.782.215 on Windows does not properly handle vertex data, which allows remo...
CVE-2011-2807 Incorrect handling of timer information in Timer.cpp in WebKit in Google Chrome before Blink M13....
CVE-2011-2808 A stale layout root is set as an input element in WebKit in Google Chrome before Blink M13 when a ch...
CVE-2011-2809 WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary...
CVE-2011-2810 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2011-0253. Reason: This candida...
R
CVE-2011-2811 WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary...
CVE-2011-2813 WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary...
CVE-2011-2814 WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary...
CVE-2011-2815 WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary...
CVE-2011-2816 WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary...
CVE-2011-2817 WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary...
CVE-2011-2818 Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a...
CVE-2011-2819 Google Chrome before 13.0.782.107 allows remote attackers to bypass the Same Origin Policy via vecto...
CVE-2011-2820 WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary...
CVE-2011-2821 Double free vulnerability in libxml2, as used in Google Chrome before 13.0.782.215, allows remote at...
CVE-2011-2822 Google Chrome before 13.0.782.215 on Windows does not properly parse URLs located on the command lin...
CVE-2011-2823 Use-after-free vulnerability in Google Chrome before 13.0.782.215 allows remote attackers to cause a...
CVE-2011-2824 Use-after-free vulnerability in Google Chrome before 13.0.782.215 allows remote attackers to cause a...
CVE-2011-2825 Use-after-free vulnerability in Google Chrome before 13.0.782.215 allows remote attackers to cause a...
CVE-2011-2826 Google Chrome before 13.0.782.215 allows remote attackers to bypass the Same Origin Policy via vecto...
CVE-2011-2827 Use-after-free vulnerability in Google Chrome before 13.0.782.215 allows remote attackers to cause a...
CVE-2011-2828 Google V8, as used in Google Chrome before 13.0.782.215, allows remote attackers to cause a denial o...
CVE-2011-2829 Integer overflow in Google Chrome before 13.0.782.215 on 32-bit platforms allows remote attackers to...
CVE-2011-2830 Google V8, as used in Google Chrome before 14.0.835.163, does not properly implement script object w...
CVE-2011-2831 WebKit, as used in Apple iTunes before 10.5, allows man-in-the-middle attackers to execute arbitrary...
CVE-2011-2833 WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a...
CVE-2011-2834 Double free vulnerability in libxml2, as used in Google Chrome before 14.0.835.163, allows remote at...
CVE-2011-2835 Race condition in Google Chrome before 14.0.835.163 allows attackers to cause a denial of service or...
CVE-2011-2836 Google Chrome before 14.0.835.163 does not require Infobar interaction before use of the Windows Med...
CVE-2011-2837 Google Chrome before 14.0.835.163 on Linux does not use the PIC and PIE compiler options for positio...
CVE-2011-2838 Google Chrome before 14.0.835.163 does not properly consider the MIME type during the loading of a p...
CVE-2011-2839 The PDF implementation in Google Chrome before 13.0.782.215 on Linux does not properly use the memse...
CVE-2011-2840 Google Chrome before 14.0.835.163 allows user-assisted remote attackers to spoof the URL bar via vec...
CVE-2011-2841 Google Chrome before 14.0.835.163 does not properly perform garbage collection during the processing...
E
CVE-2011-2842 The installer in Google Chrome before 14.0.835.163 on Mac OS X does not properly handle lock files, ...
CVE-2011-2843 Google Chrome before 14.0.835.163 does not properly handle media buffers, which allows remote attack...
CVE-2011-2844 Google Chrome before 14.0.835.163 does not properly process MP3 files, which allows remote attackers...
CVE-2011-2845 Google Chrome before 15.0.874.102 does not properly handle history data, which allows user-assisted ...
CVE-2011-2846 Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a...
CVE-2011-2847 Use-after-free vulnerability in the document loader in Google Chrome before 14.0.835.163 allows remo...
CVE-2011-2848 Google Chrome before 14.0.835.163 allows user-assisted remote attackers to spoof the URL bar via vec...
CVE-2011-2849 The WebSockets implementation in Google Chrome before 14.0.835.163 allows remote attackers to cause ...
CVE-2011-2850 Google Chrome before 14.0.835.163 does not properly handle Khmer characters, which allows remote att...
CVE-2011-2851 Google Chrome before 14.0.835.163 does not properly handle video, which allows remote attackers to c...
CVE-2011-2852 Off-by-one error in Google V8, as used in Google Chrome before 14.0.835.163, allows remote attackers...
CVE-2011-2853 Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a...
CVE-2011-2854 Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a...
CVE-2011-2855 Google Chrome before 14.0.835.163 does not properly handle Cascading Style Sheets (CSS) token sequen...
CVE-2011-2856 Google V8, as used in Google Chrome before 14.0.835.163, allows remote attackers to bypass the Same ...
CVE-2011-2857 Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a...
CVE-2011-2858 Google Chrome before 14.0.835.163 does not properly handle triangle arrays, which allows remote atta...
CVE-2011-2859 Google Chrome before 14.0.835.163 uses incorrect permissions for non-gallery pages, which has unspec...
CVE-2011-2860 Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a...
CVE-2011-2861 Google Chrome before 14.0.835.163 does not properly handle strings in PDF documents, which allows re...
CVE-2011-2862 Google V8, as used in Google Chrome before 14.0.835.163, does not properly restrict access to built-...
CVE-2011-2863 Insufficient policy enforcement in V8 in Google Chrome prior to 14.0.0.0 allowed a remote attacker t...
CVE-2011-2864 Google Chrome before 14.0.835.163 does not properly handle Tibetan characters, which allows remote a...
CVE-2011-2866 WebKit, as used in Apple iTunes before 10.6, allows man-in-the-middle attackers to execute arbitrary...
CVE-2011-2867 WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a...
CVE-2011-2868 WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a...
CVE-2011-2869 WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a...
CVE-2011-2870 WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a...
CVE-2011-2871 WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a...
CVE-2011-2872 WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a...
CVE-2011-2873 WebKit, as used in Apple iOS before 5.1 and iTunes before 10.6, allows remote attackers to execute a...
CVE-2011-2874 Google Chrome before 14.0.835.163 does not perform an expected pin operation for a self-signed certi...
CVE-2011-2875 Google V8, as used in Google Chrome before 14.0.835.163, does not properly perform object sealing, w...
CVE-2011-2876 Use-after-free vulnerability in Google Chrome before 14.0.835.202 allows remote attackers to cause a...
CVE-2011-2877 Google Chrome before 14.0.835.202 does not properly handle SVG text, which allows remote attackers t...
CVE-2011-2878 Google Chrome before 14.0.835.202 does not properly restrict access to the window prototype, which a...
CVE-2011-2879 Google Chrome before 14.0.835.202 does not properly consider object lifetimes and thread safety duri...
CVE-2011-2880 Use-after-free vulnerability in Google Chrome before 14.0.835.202 allows remote attackers to cause a...
CVE-2011-2881 Google Chrome before 14.0.835.202 does not properly handle Google V8 hidden objects, which allows re...
CVE-2011-2882 Stack-based buffer overflow in the NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access G...
CVE-2011-2883 The NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access Gateway Enterprise Edition 8.1 b...
CVE-2011-2884 Multiple unspecified vulnerabilities in IBM Lotus Symphony 3 before FP3 have unknown impact and atta...
CVE-2011-2885 IBM Lotus Symphony 3 before FP3 allows remote attackers to cause a denial of service (application cr...
CVE-2011-2886 IBM Lotus Symphony 3 before FP3 allows remote attackers to cause a denial of service (application cr...
CVE-2011-2887 IBM Lotus Symphony 3 before FP3 on Linux allows remote attackers to cause a denial of service (appli...
CVE-2011-2888 IBM Lotus Symphony 3 before FP3 allows remote attackers to cause a denial of service (application ha...
CVE-2011-2889 templates/system/error.php in Joomla! before 1.5.23 might allow remote attackers to obtain sensitive...
E S
CVE-2011-2890 The MediaViewMedia class in administrator/components/com_media/views/media/view.html.php in Joomla! ...
E
CVE-2011-2891 Joomla! 1.6.x before 1.6.2 allows remote attackers to obtain sensitive information via an empty Item...
E
CVE-2011-2892 Joomla! 1.6.x before 1.6.2 does not prevent page rendering inside a frame in a third-party HTML docu...
E
CVE-2011-2893 The DataPilot feature in IBM Lotus Symphony 3 before FP3 allows user-assisted remote attackers to ca...
CVE-2011-2894 Spring Framework 3.0.0 through 3.0.5, Spring Security 3.0.0 through 3.0.5 and 2.0.0 through 2.0.6, a...
CVE-2011-2895 The LZW decompressor in (1) the BufCompressedFill function in fontfile/decompress.c in X.Org libXfon...
S
CVE-2011-2896 The LZW decompressor in the LWZReadByte function in giftoppm.c in the David Koblas GIF decoder in PB...
S
CVE-2011-2897 gdk-pixbuf through 2.31.1 has GIF loader buffer overflow when initializing decompression tables due ...
E S
CVE-2011-2898 net/packet/af_packet.c in the Linux kernel before 2.6.39.3 does not properly restrict user-space acc...
S
CVE-2011-2899 pysmb.py in system-config-printer 0.6.x and 0.7.x, as used in foomatic-gui and possibly other produc...
S
CVE-2011-2900 Stack-based buffer overflow in the (1) put_dir function in mongoose.c in Mongoose 3.0, (2) put_dir f...
S
CVE-2011-2901 Off-by-one error in the __addr_ok macro in Xen 3.3 and earlier allows local 64 bit PV guest administ...
CVE-2011-2902 zxpdf in xpdf before 3.02-19 as packaged in Debian unstable and 3.02-12+squeeze1 as packaged in Debi...
CVE-2011-2903 Heap-based buffer overflow in tcptrack before 1.4.2 might allow attackers to execute arbitrary code ...
S
CVE-2011-2904 Cross-site scripting (XSS) vulnerability in acknow.php in Zabbix before 1.8.6 allows remote attacker...
E S
CVE-2011-2905 Untrusted search path vulnerability in the perf_config function in tools/perf/util/config.c in perf,...
CVE-2011-2906 Integer signedness error in the pmcraid_ioctl_passthrough function in drivers/scsi/pmcraid.c in the ...
E S
CVE-2011-2907 Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) 3.0.1 and earlier all...
CVE-2011-2908 Cross-site request forgery (CSRF) vulnerability in the JMX Console (jmx-console) in JBoss Enterprise...
CVE-2011-2909 The do_devinfo_ioctl function in drivers/staging/comedi/comedi_fops.c in the Linux kernel before 3.1...
CVE-2011-2910 The AX.25 daemon (ax25d) in ax25-tools before 0.0.8-13 does not check the return value of a setuid c...
CVE-2011-2911 Integer overflow in the CSoundFile::ReadWav function in src/load_wav.cpp in libmodplug before 0.8.8....
CVE-2011-2912 Stack-based buffer overflow in the CSoundFile::ReadS3M function in src/load_s3m.cpp in libmodplug be...
CVE-2011-2913 Off-by-one error in the CSoundFile::ReadAMS function in src/load_ams.cpp in libmodplug before 0.8.8....
CVE-2011-2914 Off-by-one error in the CSoundFile::ReadDSM function in src/load_dms.cpp in libmodplug before 0.8.8....
CVE-2011-2915 Off-by-one error in the CSoundFile::ReadAMS2 function in src/load_ams.cpp in libmodplug before 0.8.8...
CVE-2011-2916 qtnx 0.9 stores non-custom SSH keys in a world-readable configuration file. If a user has a world-re...
CVE-2011-2917 SQL injection vulnerability in administrator/index2.php in Mambo CMS 4.6.5 and earlier allows remote...
E
CVE-2011-2918 The Performance Events subsystem in the Linux kernel before 3.1 does not properly handle event overf...
S
CVE-2011-2919 Cross-site scripting (XSS) vulnerability in Spacewalk 1.6, as used in Red Hat Network (RHN) Satellit...
S
CVE-2011-2920 Multiple cross-site scripting (XSS) vulnerabilities in Spacewalk 1.6, as used in Red Hat Network (RH...
S
CVE-2011-2921 ktsuss versions 1.4 and prior has the uid set to root and does not drop privileges prior to executin...
E
CVE-2011-2922 ktsuss versions 1.4 and prior spawns the GTK interface to run as root. This can allow a local attack...
CVE-2011-2923 foomatic-rip filter, all versions, used insecurely creates temporary files for storage of PostScript...
CVE-2011-2924 foomatic-rip filter v4.0.12 and prior used insecurely creates temporary files for storage of PostScr...
CVE-2011-2925 Cumin in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0 records broker authentication cr...
CVE-2011-2926 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with...
R
CVE-2011-2927 Multiple cross-site scripting (XSS) vulnerabilities in Spacewalk 1.6, as used in Red Hat Network (RH...
S
CVE-2011-2928 The befs_follow_link function in fs/befs/linuxvfs.c in the Linux kernel before 3.1-rc3 does not vali...
E S
CVE-2011-2929 The template selection functionality in actionpack/lib/action_view/template/resolver.rb in Ruby on R...
S
CVE-2011-2930 Multiple SQL injection vulnerabilities in the quote_table_name method in the ActiveRecord adapters i...
S
CVE-2011-2931 Cross-site scripting (XSS) vulnerability in the strip_tags helper in actionpack/lib/action_controlle...
S
CVE-2011-2932 Cross-site scripting (XSS) vulnerability in activesupport/lib/active_support/core_ext/string/output_...
S
CVE-2011-2933 An Arbitrary File Upload vulnerability exists in admin/media/upload.php in WebsiteBaker 2.8.1 and ea...
E
CVE-2011-2934 A Cross Site Request Forgery (CSRF) vulnerability exists in the administrator functions in WebsiteBa...
E
CVE-2011-2935 Elgg through 1.7.10 has XSS...
E
CVE-2011-2936 Elgg through 1.7.10 has a SQL injection vulnerability...
E
CVE-2011-2937 Cross-site scripting (XSS) vulnerability in the UI messages functionality in Roundcube Webmail befor...
E S
CVE-2011-2938 Multiple cross-site scripting (XSS) vulnerabilities in filter_api.php in MantisBT before 1.2.7 allow...
E S
CVE-2011-2939 Off-by-one error in the decode_xs function in Unicode/Unicode.xs in the Encode module before 2.44, a...
E S
CVE-2011-2940 stunnel 4.40 and 4.41 might allow remote attackers to execute arbitrary code or cause a denial of se...
CVE-2011-2941 Open redirect vulnerability in Red Hat JBoss Enterprise Portal Platform before 5.2.0 allows remote a...
CVE-2011-2942 A certain Red Hat patch to the __br_deliver function in net/bridge/br_forward.c in the Linux kernel ...
CVE-2011-2943 The irc_msg_who function in msgs.c in the IRC protocol plugin in libpurple 2.8.0 through 2.9.0 in Pi...
S
CVE-2011-2944 SQL injection vulnerability in login.php in MegaLab The Uploader before 2.0.5 allows remote attacker...
E S
CVE-2011-2945 Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5 an...
CVE-2011-2946 Unspecified vulnerability in an ActiveX control in RealNetworks RealPlayer 11.0 through 11.1 and 14....
CVE-2011-2947 Cross-zone scripting vulnerability in the RealPlayer ActiveX control in RealNetworks RealPlayer 11.0...
CVE-2011-2948 RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5...
CVE-2011-2949 Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, R...
CVE-2011-2950 Heap-based buffer overflow in qcpfformat.dll in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0...
CVE-2011-2951 Buffer overflow in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer S...
CVE-2011-2952 Use-after-free vulnerability in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5,...
CVE-2011-2953 An unspecified ActiveX control in the browser plugin in RealNetworks RealPlayer 11.0 through 11.1 an...
CVE-2011-2954 Use-after-free vulnerability in the AutoUpdate feature in RealNetworks RealPlayer 11.0 through 11.1 ...
CVE-2011-2955 Use-after-free vulnerability in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5,...
CVE-2011-2956 AzeoTech DAQFactory before 5.85 (Build 1842) does not perform authentication for certain signals, wh...
CVE-2011-2957 Unspecified vulnerability in Rockwell Automation FactoryTalk Diagnostics Viewer before V2.30.00 (CPR...
CVE-2011-2958 Multiple cross-site scripting (XSS) vulnerabilities in Ecava IntegraXor before 3.60 (Build 4080) all...
S
CVE-2011-2959 Stack-based buffer overflow in the Open Database Connectivity (ODBC) service (Odbcixv9se.exe) in 7-T...
S
CVE-2011-2960 Heap-based buffer overflow in httpsvr.exe 6.0.5.3 in Sunway ForceControl 6.1 SP1, SP2, and SP3 allow...
CVE-2011-2961 Heap-based buffer overflow in AngelServer.exe 6.0.11.3 in Sunway pNetPower allows remote attackers t...
CVE-2011-2962 Multiple stack-based buffer overflows in Invensys Wonderware Information Server 3.1, 4.0, and 4.0 SP...
CVE-2011-2963 TCPUploadServer.exe in Progea Movicon 11.2 before Build 1084 does not require authentication for cri...
E S
CVE-2011-2964 foomaticrip.c in foomatic-rip in foomatic-filters in Foomatic 4.0.6 allows remote attackers to execu...
E S
CVE-2011-2965 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2966 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2967 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2968 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2969 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2970 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2971 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2972 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2973 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2974 Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual w...
R
CVE-2011-2975 Double free vulnerability in the msAddImageSymbol function in mapsymbol.c in MapServer before 6.0.1 ...
S
CVE-2011-2976 Cross-site scripting (XSS) vulnerability in Bugzilla 2.16rc1 through 2.22.7, 3.0.x through 3.3.x, an...
S
CVE-2011-2977 Bugzilla 3.6.x before 3.6.6, 3.7.x, 4.0.x before 4.0.2, and 4.1.x before 4.1.3 on Windows does not d...
S
CVE-2011-2978 Bugzilla 2.16rc1 through 2.22.7, 3.0.x through 3.3.x, 3.4.x before 3.4.12, 3.5.x, 3.6.x before 3.6.6...
S
CVE-2011-2979 Bugzilla 4.1.x before 4.1.3 generates different responses for certain assignee queries depending on ...
E S
CVE-2011-2980 Untrusted search path vulnerability in the ThinkPadSensor::Startup function in Mozilla Firefox befor...
S
CVE-2011-2981 The event-management implementation in Mozilla Firefox before 3.6.20, SeaMonkey 2.x, Thunderbird 3.x...
CVE-2011-2982 Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.20, Thunder...
CVE-2011-2983 Mozilla Firefox before 3.6.20, Thunderbird 2.x and 3.x before 3.1.12, SeaMonkey 1.x and 2.x, and pos...
CVE-2011-2984 Mozilla Firefox before 3.6.20, SeaMonkey 2.x, Thunderbird 3.x before 3.1.12, and possibly other prod...
CVE-2011-2985 Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 5, Thunder...
CVE-2011-2986 Mozilla Firefox 4.x through 5, Thunderbird before 6, SeaMonkey 2.x before 2.3, and possibly other pr...
CVE-2011-2987 Heap-based buffer overflow in Almost Native Graphics Layer Engine (ANGLE), as used in the WebGL impl...
CVE-2011-2988 Buffer overflow in an unspecified string class in the WebGL shader implementation in Mozilla Firefox...
CVE-2011-2989 The browser engine in Mozilla Firefox 4.x through 5, SeaMonkey 2.x before 2.3, Thunderbird before 6,...
CVE-2011-2990 The implementation of Content Security Policy (CSP) violation reports in Mozilla Firefox 4.x through...
CVE-2011-2991 The browser engine in Mozilla Firefox 4.x through 5, SeaMonkey 2.x before 2.3, Thunderbird before 6,...
CVE-2011-2992 The Ogg reader in the browser engine in Mozilla Firefox 4.x through 5, SeaMonkey 2.x before 2.3, Thu...
CVE-2011-2993 The implementation of digital signatures for JAR files in Mozilla Firefox 4.x through 5, SeaMonkey 2...
CVE-2011-2995 Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.23 and 4.x ...
CVE-2011-2996 Unspecified vulnerability in the plugin API in Mozilla Firefox 3.6.x before 3.6.23 allows remote att...
CVE-2011-2997 Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 6, Thunderbird before ...
CVE-2011-2998 Integer underflow in Mozilla Firefox 3.6.x before 3.6.23 allows remote attackers to cause a denial o...
CVE-2011-2999 Mozilla Firefox before 3.6.23 and 4.x through 5, Thunderbird before 6.0, and SeaMonkey before 2.3 do...
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.