| # |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complex
ity
|
Authen
tication
|
Confiden
tiality
|
Integrity
|
Availa
bility
|
|
1 |
CVE-2012-0494 |
|
|
|
2012-01-18 |
2012-01-19 |
1.7 |
None |
Local |
Low |
Single system |
None |
None |
Partial |
|
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.x allows local users to affect availability via unknown vectors. |
|
2 |
CVE-2012-0098 |
|
|
|
2012-01-18 |
2012-01-30 |
1.9 |
None |
Local |
Medium |
Not required |
None |
None |
Partial |
|
Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect availability via unknown vectors related to Kernel. |
|
3 |
CVE-2012-0075 |
|
|
|
2012-01-18 |
2012-01-30 |
1.7 |
None |
Remote |
High |
Multiple systems |
None |
Partial |
None |
|
Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.0.x, 5.1.x, and 5.5.x allows remote authenticated users to affect integrity via unknown vectors. |
|
4 |
CVE-2011-4617 |
59 |
|
|
2011-12-30 |
2012-01-31 |
1.2 |
None |
Local |
High |
Not required |
None |
Partial |
None |
|
virtualenv.py in virtualenv before 1.5 allows local users to overwrite arbitrary files via a symlink attack on a certain file in /tmp/. |
|
5 |
CVE-2011-4415 |
20 |
|
DoS |
2011-11-08 |
2011-11-11 |
1.2 |
None |
Local |
High |
Not required |
None |
None |
Partial |
|
The ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the mod_setenvif module is enabled, does not restrict the size of values of environment variables, which allows local users to cause a denial of service (memory consumption or NULL pointer dereference) via a .htaccess file with a crafted SetEnvIf directive, in conjunction with a crafted HTTP request header, related to (1) the "len +=" statement and (2) the apr_pcalloc function call, a different vulnerability than CVE-2011-3607. |
|
6 |
CVE-2011-3693 |
310 |
|
|
2011-09-27 |
2011-09-28 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
NetSaro Enterprise Messenger Server 2.0 allows local users to discover cleartext server credentials by reading the NetSaro.fdb file. |
|
7 |
CVE-2011-3692 |
310 |
|
+Info |
2011-09-27 |
2011-09-28 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
NetSaro Enterprise Messenger Server 2.0 stores cleartext console credentials in configuration.xml, which allows local users to obtain sensitive information by reading this file and performing a base64 decoding step. |
|
8 |
CVE-2011-3685 |
310 |
|
+Info |
2011-09-27 |
2011-09-28 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
Tembria Server Monitor before 6.0.5 Build 2252 uses a substitution cipher to encrypt application credentials, which allows local users to obtain sensitive information by leveraging read access to (1) authentication.dat or (2) XML files in the Exports directory. |
|
9 |
CVE-2011-3561 |
|
|
|
2011-10-19 |
2011-11-23 |
1.8 |
None |
Local Network |
High |
Not required |
Partial |
None |
None |
|
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, and JavaFX 2.0 allows remote attackers to affect confidentiality via unknown vectors related to Deployment. |
|
10 |
CVE-2011-3541 |
|
|
|
2011-10-18 |
2011-10-29 |
1.9 |
None |
Local |
Medium |
Not required |
None |
None |
Partial |
|
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows local users to affect availability via unknown vectors related to Outside In Filters. |
|
11 |
CVE-2011-3539 |
|
|
|
2011-10-18 |
2011-10-29 |
1.7 |
None |
Local |
Low |
Single system |
None |
None |
Partial |
|
Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows local users to affect availability via unknown vectors related to Zones. |
|
12 |
CVE-2011-3440 |
264 |
|
|
2011-11-11 |
2011-11-15 |
1.2 |
None |
Local |
High |
Not required |
Partial |
None |
None |
|
The Passcode Lock feature in Apple iOS before 5.0.1 on the iPad 2 does not properly implement the locked state, which allows physically proximate attackers to access data by opening a Smart Cover during power-off confirmation. |
|
13 |
CVE-2011-3163 |
200 |
|
+Info |
2011-10-23 |
2012-01-11 |
1.2 |
None |
Local |
High |
Not required |
Partial |
None |
None |
|
HP MFP Digital Sending Software 4.9x through 4.91.21 allows local users to obtain sensitive workflow-metadata information via unspecified vectors. |
|
14 |
CVE-2011-2724 |
20 |
|
DoS |
2011-09-06 |
2011-10-25 |
1.2 |
None |
Local |
High |
Not required |
None |
None |
Partial |
|
The check_mtab function in client/mount.cifs.c in mount.cifs in smbfs in Samba 3.5.10 and earlier does not properly verify that the (1) device name and (2) mountpoint strings are composed of valid characters, which allows local users to cause a denial of service (mtab corruption) via a crafted string. NOTE: this vulnerability exists because of an incorrect fix for CVE-2010-0547. |
|
15 |
CVE-2011-2492 |
200 |
|
+Info |
2011-07-28 |
2011-07-29 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The bluetooth subsystem in the Linux kernel before 3.0-rc4 does not properly initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel memory via a crafted getsockopt system call, related to (1) the l2cap_sock_getsockopt_old function in net/bluetooth/l2cap_sock.c and (2) the rfcomm_sock_getsockopt_old function in net/bluetooth/rfcomm/sock.c. |
|
16 |
CVE-2011-2318 |
|
|
|
2011-10-18 |
2012-01-19 |
1.5 |
None |
Local |
Medium |
Single system |
Partial |
None |
None |
|
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 9.2.4.0, 10.0.2.0, 10.3.3.0, 10.3.4.0, and 10.3.5.0 allows local users to affect confidentiality, related to WLS Security. |
|
17 |
CVE-2011-2312 |
|
|
|
2011-10-18 |
2011-12-23 |
1.7 |
None |
Local |
Low |
Single system |
Partial |
None |
None |
|
Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality, related to ZFS. |
|
18 |
CVE-2011-2311 |
|
|
|
2011-10-18 |
2011-12-23 |
1.7 |
None |
Local |
Low |
Single system |
None |
None |
Partial |
|
Unspecified vulnerability in Oracle Solaris 10 allows local users to affect availability, related to ZFS. |
|
19 |
CVE-2011-2291 |
|
|
|
2011-07-20 |
2011-10-04 |
1.7 |
None |
Local |
Low |
Single system |
Partial |
None |
None |
|
Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality via unknown vectors related to Trusted Extensions. |
|
20 |
CVE-2011-2267 |
|
|
|
2011-07-20 |
2011-10-04 |
1.9 |
None |
Local |
Medium |
Not required |
None |
None |
Partial |
|
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.2.0 and 8.3.5.0 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters. |
|
21 |
CVE-2011-2242 |
|
|
|
2011-07-20 |
2011-10-04 |
1.3 |
None |
Local |
Medium |
Multiple systems |
Partial |
None |
None |
|
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.2.0.1 and 11.2.0.2 allows local users to affect confidentiality, related to XML DB FTP. |
|
22 |
CVE-2011-2240 |
|
|
|
2011-07-20 |
2011-10-04 |
1.7 |
None |
Local |
Low |
Single system |
Partial |
None |
None |
|
Unspecified vulnerability in the Oracle Universal Installer component in Oracle Database Server 10.1.0.5 allows local users to affect confidentiality via unknown vectors. |
|
23 |
CVE-2011-2204 |
200 |
|
+Info |
2011-06-29 |
2012-02-03 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.17, when the MemoryUserDatabase is used, creates log entries containing passwords upon encountering errors in JMX user creation, which allows local users to obtain sensitive information by reading a log file. |
|
24 |
CVE-2011-1820 |
200 |
|
+Info |
2011-04-21 |
2011-04-21 |
1.7 |
None |
Local |
Low |
Single system |
Partial |
None |
None |
|
IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-IF0010, 6.0 before 6.0.0.67 (aka 6.0.0.8-TIV-ITDS-IF0009), 6.1 before 6.1.0.40 (aka 6.1.0.5-TIV-ITDS-IF0003), 6.2 before 6.2.0.16 (aka 6.2.0.3-TIV-ITDS-IF0002), and 6.3 before 6.3.0.3 (aka 6.3.0.0-TIV-ITDS-IF0003) does not properly handle the ibm-auditAttributesOnGroupEvalOp setting for auditing of extended operations, which might allow attackers to obtain sensitive information by reading the audit log. |
|
25 |
CVE-2011-1781 |
189 |
|
DoS |
2011-08-29 |
2011-10-26 |
1.2 |
None |
Local |
High |
Not required |
None |
None |
Partial |
|
SystemTap 1.4, when unprivileged (aka stapusr) mode is enabled, allows local users to cause a denial of service (divide-by-zero error and OOPS) via a crafted ELF program with DWARF expressions that are not properly handled by a stap script that performs stack unwinding (aka backtracing). |
|
26 |
CVE-2011-1769 |
189 |
|
DoS |
2011-08-29 |
2011-10-26 |
1.2 |
None |
Local |
High |
Not required |
None |
None |
Partial |
|
SystemTap 1.4 and earlier, when unprivileged (aka stapusr) mode is enabled, allows local users to cause a denial of service (divide-by-zero error and OOPS) via a crafted ELF program with DWARF expressions that are not properly handled by a stap script that performs context variable access. |
|
27 |
CVE-2011-1637 |
264 |
|
+Priv |
2011-06-02 |
2011-10-29 |
1.5 |
None |
Local |
Medium |
Single system |
Partial |
None |
None |
|
Cisco Unified IP Phones 7900 devices (aka TNP phones) with software before 9.2.1 do not properly verify signatures for software images, which allows local users to gain privileges via a crafted image, aka Bug ID CSCtn65962. |
|
28 |
CVE-2011-1378 |
264 |
|
|
2011-11-25 |
2012-01-17 |
1.9 |
None |
Local |
Medium |
Not required |
None |
None |
Partial |
|
IBM WebSphere MQ 6.0 on OpenVMS, when the default rights of the MQM group are established, does not properly verify User Authorization File (UAF) data, which allows local users to kill listener processes and the command server via a control command. |
|
29 |
CVE-2011-1373 |
|
|
DoS |
2011-11-09 |
2012-01-26 |
1.5 |
None |
Local |
Medium |
Single system |
None |
None |
Partial |
|
Unspecified vulnerability in IBM DB2 9.7 before FP5 on UNIX, when the Self Tuning Memory Manager (STMM) feature and the AUTOMATIC DATABASE_MEMORY setting are configured, allows local users to cause a denial of service (daemon crash) via unknown vectors. |
|
30 |
CVE-2011-1310 |
200 |
|
+Info |
2011-03-08 |
2011-04-07 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The Administrative Scripting Tools component in IBM WebSphere Application Server (WAS) 6.1.0.x before 6.1.0.35 and 7.x before 7.0.0.15, when tracing is enabled, places wsadmin command parameters into the (1) wsadmin.traceout and (2) trace.log files, which allows local users to obtain potentially sensitive information by reading these files. |
|
31 |
CVE-2011-1155 |
399 |
|
DoS |
2011-03-30 |
2011-04-20 |
1.9 |
None |
Local |
Medium |
Not required |
None |
None |
Partial |
|
The writeState function in logrotate.c in logrotate 3.7.9 and earlier might allow context-dependent attackers to cause a denial of service (rotation outage) via a (1) \n (newline) or (2) \ (backslash) character in a log filename, as demonstrated by a filename that is automatically constructed on the basis of a hostname or virtual machine name. |
|
32 |
CVE-2011-1098 |
362 |
|
|
2011-03-30 |
2011-04-20 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
Race condition in the createOutputFile function in logrotate.c in logrotate 3.7.9 and earlier allows local users to read log data by opening a file before the intended permissions are in place. |
|
33 |
CVE-2011-1074 |
200 |
|
Dir. Trav. +Info |
2011-03-04 |
2011-09-21 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
crontab.c in crontab in FreeBSD allows local users to determine the existence of arbitrary directories via a command-line argument composed of a directory name concatenated with a directory traversal sequence that leads to the /etc/crontab pathname. |
|
34 |
CVE-2011-1073 |
59 |
|
|
2011-03-04 |
2011-09-21 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
crontab.c in crontab in FreeBSD and Apple Mac OS X allows local users to (1) determine the existence of arbitrary files via a symlink attack on a /tmp/crontab.XXXXXXXXXX temporary file and (2) perform MD5 checksum comparisons on arbitrary pairs of files via two symlink attacks on /tmp/crontab.XXXXXXXXXX temporary files. |
|
35 |
CVE-2011-1044 |
119 |
|
Overflow +Info |
2011-02-18 |
2011-03-01 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The ib_uverbs_poll_cq function in drivers/infiniband/core/uverbs_cmd.c in the Linux kernel before 2.6.37 does not initialize a certain response buffer, which allows local users to obtain potentially sensitive information from kernel memory via vectors that cause this buffer to be only partially filled, a different vulnerability than CVE-2010-4649. |
|
36 |
CVE-2011-0796 |
|
|
|
2011-04-19 |
2011-04-20 |
1.7 |
None |
Local |
Low |
Single system |
Partial |
None |
None |
|
Unspecified vulnerability in the Applications Install component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.1, 12.1.2, and 12.1.3 allows local users to affect confidentiality via unknown vectors. |
|
37 |
CVE-2011-0790 |
|
|
|
2011-04-19 |
2011-04-20 |
1.7 |
None |
Local |
Low |
Single system |
Partial |
None |
None |
|
Unspecified vulnerability in Oracle Solaris 9 and 10 allows local users to affect confidentiality via unknown vectors related to wbem. |
|
38 |
CVE-2010-4758 |
310 |
|
|
2011-03-18 |
2011-03-22 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
installer.pl in Open Ticket Request System (OTRS) before 3.0.3 has an Inbound Mail Password field that uses the text type, instead of the password type, for its INPUT element, which makes it easier for physically proximate attackers to obtain the password by reading the workstation screen. |
|
39 |
CVE-2010-4655 |
200 |
|
+Info |
2011-07-18 |
2011-11-21 |
1.2 |
None |
Local |
High |
Not required |
Partial |
None |
None |
|
net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize certain data structures, which allows local users to obtain potentially sensitive information from kernel heap memory by leveraging the CAP_NET_ADMIN capability for an ethtool ioctl call. |
|
40 |
CVE-2010-4525 |
200 |
|
+Info |
2011-01-10 |
2011-02-02 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
Linux kernel 2.6.33 and 2.6.34.y does not initialize the kvm_vcpu_events->interrupt.pad structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via unspecified vectors. |
|
41 |
CVE-2010-4431 |
|
|
|
2011-01-19 |
2011-01-26 |
1.0 |
None |
Local |
High |
Single system |
Partial |
None |
None |
|
Unspecified vulnerability in Oracle Sun Java System Portal Server 7.1 and 7.2 allows local users to affect confidentiality via unknown vectors related to Proxy. |
|
42 |
CVE-2010-4212 |
264 |
|
+Info |
2010-11-08 |
2010-12-22 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The USAA application 3.0 for Android stores a mirror image of each visited web page, which might allow physically proximate attackers to obtain sensitive banking information by reading application data. |
|
43 |
CVE-2010-4083 |
200 |
|
+Info |
2010-11-30 |
2011-10-25 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The copy_semid_to_user function in ipc/sem.c in the Linux kernel before 2.6.36 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via a (1) IPC_INFO, (2) SEM_INFO, (3) IPC_STAT, or (4) SEM_STAT command in a semctl system call. |
|
44 |
CVE-2010-4082 |
200 |
|
+Info |
2010-11-30 |
2011-02-17 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The viafb_ioctl_get_viafb_info function in drivers/video/via/ioctl.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a VIAFB_GET_INFO ioctl call. |
|
45 |
CVE-2010-4081 |
200 |
|
+Info |
2010-11-30 |
2011-10-25 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The snd_hdspm_hwdep_ioctl function in sound/pci/rme9652/hdspm.c in the Linux kernel before 2.6.36-rc6 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via an SNDRV_HDSPM_IOCTL_GET_CONFIG_INFO ioctl call. |
|
46 |
CVE-2010-4080 |
200 |
|
+Info |
2010-11-30 |
2011-10-25 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The snd_hdsp_hwdep_ioctl function in sound/pci/rme9652/hdsp.c in the Linux kernel before 2.6.36-rc6 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via an SNDRV_HDSP_IOCTL_GET_CONFIG_INFO ioctl call. |
|
47 |
CVE-2010-4079 |
200 |
|
+Info |
2010-11-29 |
2011-02-02 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The ivtvfb_ioctl function in drivers/media/video/ivtv/ivtvfb.c in the Linux kernel before 2.6.36-rc8 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via an FBIOGET_VBLANK ioctl call. |
|
48 |
CVE-2010-4078 |
200 |
|
+Info |
2010-11-29 |
2011-09-06 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The sisfb_ioctl function in drivers/video/sis/sis_main.c in the Linux kernel before 2.6.36-rc6 does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via an FBIOGET_VBLANK ioctl call. |
|
49 |
CVE-2010-4077 |
200 |
|
+Info |
2010-11-29 |
2011-09-21 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The ntty_ioctl_tiocgicount function in drivers/char/nozomi.c in the Linux kernel 2.6.36.1 and earlier does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a TIOCGICOUNT ioctl call. |
|
50 |
CVE-2010-4076 |
200 |
|
+Info |
2010-11-29 |
2010-12-09 |
1.9 |
None |
Local |
Medium |
Not required |
Partial |
None |
None |
|
The rs_ioctl function in drivers/char/amiserial.c in the Linux kernel 2.6.36.1 and earlier does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a TIOCGICOUNT ioctl call. |
