CVSS: 4.9EPSS: 0%CPEs: 4EXPL: 0CVE-2011-2259
https://notcve.org/view.php?id=CVE-2011-2259
Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect availability, related to UFS. Vulnerabilidad no especificada en Oracle Solaris v8, v9, v10, v11 y Express permite a usuarios locales afectar a la disponibilidad, en relación con UFS. • http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html http://www.us-cert.gov/cas/techalerts/TA11-201A.html •
CVSS: 4.6EPSS: 0%CPEs: 4EXPL: 0CVE-2011-2258
https://notcve.org/view.php?id=CVE-2011-2258
Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect confidentiality, integrity, and availability via unknown vectors related to rksh. Vulnerabilidad no especificada en Oracle Solaris 8, 9 y 10 y 11 Express, permite a usuarios locales comprometer la confidencialidad, integridad y disponibilidad a través de vectores no especificados. • http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html http://www.us-cert.gov/cas/techalerts/TA11-201A.html •
CVSS: 5.2EPSS: 0%CPEs: 3EXPL: 0CVE-2011-2249
https://notcve.org/view.php?id=CVE-2011-2249
Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows remote authenticated users to affect availability, related to TCP/IP. Vulnerabilidad no especificada en Oracle Solaris v8, v9, y v10 permite a usuarios autenticados de forma remota afectar la disponibilidad, relacionado con TCP/IP. • http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html http://www.us-cert.gov/cas/techalerts/TA11-201A.html •
CVSS: 10.0EPSS: 97%CPEs: 97EXPL: 1CVE-2011-2110 – Adobe Flash Player - AVM Verification Logic Array Indexing Code Execution
https://notcve.org/view.php?id=CVE-2011-2110
Adobe Flash Player before 10.3.181.26 on Windows, Mac OS X, Linux, and Solaris, and 10.3.185.23 and earlier on Android, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as exploited in the wild in June 2011. Adobe Flash Player anterior a v10.3.181.26 en Windows, Mac OS X, Linux, y Solaris, y v10.3.185.23 y anteriores sobre Android, permite a atacantes remotos ejecutar código de su elección o provocar una denegación de servicio (corrupción de memoria) a través de vectores no especificados, como se explotó en Junio 2011. • https://www.exploit-db.com/exploits/19295 http://secunia.com/advisories/44924 http://secunia.com/advisories/44941 http://secunia.com/advisories/44950 http://secunia.com/advisories/44964 http://secunia.com/advisories/48308 http://www.adobe.com/support/security/bulletins/apsb11-18.html http://www.redhat.com/support/errata/RHSA-2011-0869.html http://www.securitytracker.com/id?1025651 http://www.us-cert.gov/cas/techalerts/TA11-166A.html https://exchange.xforce.ibmcloud.com/ • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.3EPSS: 0%CPEs: 138EXPL: 0CVE-2011-2107 – flash-plugin: Cross-site scripting vulnerability (APSB11-13)
https://notcve.org/view.php?id=CVE-2011-2107
Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 10.3.181.22 on Windows, Mac OS X, Linux, and Solaris, and 10.3.185.22 and earlier on Android, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to a "universal cross-site scripting vulnerability." Múltiples vulnerabilidades de ejecución de secuencias de comandos en sitios cruzados (XSS) en Adobe Flash Player anteriores a v10.3.181.22 en Windows, Mac OS X, Linux, y Solaris, y v10.3.185.22 y anteriores en Android, permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores desconocidos, relacionado con "vulnerabilidad universal de ejecución de comandos en sitios cruzados". • http://googlechromereleases.blogspot.com/2011/06/stable-channel-update.html http://secunia.com/advisories/44846 http://secunia.com/advisories/44847 http://secunia.com/advisories/44871 http://secunia.com/advisories/44872 http://secunia.com/advisories/44946 http://secunia.com/advisories/48308 http://www.adobe.com/support/security/bulletins/apsb11-13.html http://www.blackberry.com/btsc/KB27240 http://www.redhat.com/support/errata/RHSA-2011-0850.html http://www.securityfocus.com/bid&# • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •