CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2011-2297
https://notcve.org/view.php?id=CVE-2011-2297
Unspecified vulnerability in Oracle Solaris Cluster 3.3 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Data Service for WebLogic Server. Vulnerabilidad no especificada en Oracle Solaris Cluster v3.3, permite a usuarios locales comprometer la confidencialidad, integridad y disponibilidad a través de vectores no especificados relacionados con el Data Service para WebLogic Server. • http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html http://www.us-cert.gov/cas/techalerts/TA11-201A.html •
CVSS: 6.3EPSS: 0%CPEs: 19EXPL: 0CVE-2011-2145
https://notcve.org/view.php?id=CVE-2011-2145
mount.vmhgfs in the VMware Host Guest File System (HGFS) in VMware Workstation 7.1.x before 7.1.4, VMware Player 3.1.x before 3.1.4, VMware Fusion 3.1.x before 3.1.3, VMware ESXi 3.5 through 4.1, and VMware ESX 3.0.3 through 4.1, when a Solaris or FreeBSD guest OS is used, allows guest OS users to modify arbitrary guest OS files via unspecified vectors, related to a "procedural error." mount.vmhgfs en el Host Guest File System (HGFS) de VMware en VMware Workstation versiones 7.1.x anteriores a 7.1.4, VMware Player versiones 3.1.x anteriores a 3.1.4, VMware Fusion versiones 3.1.x anteriores a 3.1.3, VMware ESXi versiones 3.5 hasta 4.1, y VMware ESX versiones 3.0.3 hasta 4.1, cuando es utilizado un Sistema Operativo invitado de Solaris o FreeBSD, permite a los usuarios del sistema operativo invitado modificar archivos del sistema operativo invitado arbitrarios por medio de vectores no especificados, relacionados con un "procedural error". • http://secunia.com/advisories/44840 http://secunia.com/advisories/44904 http://www.securityfocus.com/bid/48098 http://www.securitytracker.com/id?1025601 http://www.vmware.com/security/advisories/VMSA-2011-0009.html https://exchange.xforce.ibmcloud.com/vulnerabilities/67815 https://hermes.opensuse.org/messages/8711677 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.3EPSS: 8%CPEs: 92EXPL: 0CVE-2011-0628 – flash-plugin: crash and potential arbitrary code execution (APSB11-12)
https://notcve.org/view.php?id=CVE-2011-0628
Integer overflow in Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows remote attackers to execute arbitrary code via ActionScript that improperly handles a long array object. Desbordamiento de entero en Adobe Flash Player en versiones anteriores a la 10.3.181.14 en Windows, Mac OS X, Linux, y Solaris y anteriores a la 10.3.185.21 en Android permite a atacantes remotos ejecutar código de su elección a través de ActionScript que no maneja apropiadamente un objeto array de gran tamaño. • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=908 http://www.adobe.com/support/security/bulletins/apsb11-12.html http://www.securityfocus.com/bid/47961 https://exchange.xforce.ibmcloud.com/vulnerabilities/67638 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13994 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15639 https://access.redhat.com/security/cve/CVE-2011-0628 https://bugzilla.redhat.com/show_ • CWE-189: Numeric Errors •
CVSS: 9.3EPSS: 1%CPEs: 92EXPL: 0CVE-2011-0625 – flash-plugin: crash and potential arbitrary code execution (APSB11-12)
https://notcve.org/view.php?id=CVE-2011-0625
Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to execute arbitrary code via unspecified vectors, related to a "bounds checking" issue, a different vulnerability than CVE-2011-0623, CVE-2011-0624, and CVE-2011-0626. Adobe Flash Player antes de v10.3.181.14 en Windows, Mac OS X, Linux y Solaris, y antes de v10.3.185.21 en Android, permite a los atacantes ejecutar código de su elección a través de vectores no especificados, asociados a un problema de "comprobación de límites", una vulnerabilidad diferente de CVE- 2011-0623, CVE-2011-0624, y CVE-2011-0626. • http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00006.html http://www.adobe.com/support/security/bulletins/apsb11-12.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14077 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16076 https://access.redhat.com/security/cve/CVE-2011-0625 https://bugzilla.redhat.com/show_bug.cgi?id=704368 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 3%CPEs: 92EXPL: 0CVE-2011-0621 – flash-plugin: crash and potential arbitrary code execution (APSB11-12)
https://notcve.org/view.php?id=CVE-2011-0621
Adobe Flash Player before 10.3.181.14 on Windows, Mac OS X, Linux, and Solaris and before 10.3.185.21 on Android allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0619, CVE-2011-0620, and CVE-2011-0622. Adobe Flash Player anterior a v10.3.181.14 sobre Windows, Mac OS X, Linux, y Solaris y anterior a v10.3.185.21 sobre Android permite ejecutar código de su elección o provocar una denegación de servicio (corrupción de memoria) a través de vectores desconocidos, relacionado con una tarea de "comprobación de límite", una vulnerabilidad diferente a CVE-2011-0619, CVE-2011-0620, y CVE-2011-0622. • http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00006.html http://www.adobe.com/support/security/bulletins/apsb11-12.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14160 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15739 https://access.redhat.com/security/cve/CVE-2011-0621 https://bugzilla.redhat.com/show_bug.cgi?id=704368 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •