Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fedoraproject fedora 11 vulnerabilities and exploits
(subscribe to this query)
552
VMScore
CVE-2010-0746
Directory traversal vulnerability in DeviceKit-disks in DeviceKit, as used in Fedora 11 and 12 and possibly other operating systems, allows local users to gain privileges via .. (dot dot) sequences in the label for a pluggable storage device.
Fedoraproject Fedora 11
Fedoraproject Fedora 12
445
VMScore
CVE-2010-0751
The ip_evictor function in ip_fragment.c in libnids prior to 1.24, as used in dsniff and possibly other products, allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via crafted fragmented packets.
Libnids Project Libnids
Fedoraproject Fedora 11
Fedoraproject Fedora 12
Fedoraproject Fedora 13
383
VMScore
CVE-2009-1603
src/tools/pkcs11-tool.c in pkcs11-tool in OpenSC 0.11.7, when used with unspecified third-party PKCS#11 modules, generates RSA keys with incorrect public exponents, which allows malicious users to read the cleartext form of messages that were intended to be encrypted.
Opensc-project Opensc 0.11.7
Fedoraproject Fedora 11
Fedoraproject Fedora 10
Fedoraproject Fedora 9
320
VMScore
CVE-2009-3611
common/snapshots.py in Back In Time (aka backintime) 0.9.26 changes certain permissions to 0777 before deleting the files in an old backup snapshot, which allows local users to obtain sensitive information by reading these files, or interfere with backup integrity by modifying fi...
Le-web Backintime 0.9.26
Fedoraproject Fedora 11
Fedoraproject Fedora 10
756
VMScore
CVE-2009-2629
Buffer underflow in src/http/ngx_http_parse.c in nginx 0.1.0 up to and including 0.5.37, 0.6.x prior to 0.6.39, 0.7.x prior to 0.7.62, and 0.8.x prior to 0.8.15 allows remote malicious users to execute arbitrary code via crafted HTTP requests.
F5 Nginx
Debian Debian Linux 4.0
Debian Debian Linux 5.0
Debian Debian Linux 6.0
Fedoraproject Fedora 10
Fedoraproject Fedora 11
Fedoraproject Fedora 12
1 EDB exploit
2 Github repositories
1 Article
445
VMScore
CVE-2020-7044
In Wireshark 3.2.x prior to 3.2.1, the WASSP dissector could crash. This was addressed in epan/dissectors/packet-wassp.c by using >= and <= to resolve off-by-one errors.
Wireshark Wireshark
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Opensuse Leap 15.1
Oracle Solaris 11
Oracle Zfs Storage Appliance Kit 8.8
NA
CVE-2023-38039
When curl retrieves an HTTP response, it stores the incoming headers so that they can be accessed later via the libcurl headers API. However, curl did not have a limit in how many or how large headers it would accept in a response, allowing a malicious server to stream an endless...
Haxx Curl
Fedoraproject Fedora 37
Fedoraproject Fedora 38
Fedoraproject Fedora 39
Microsoft Windows 10 22h2
Microsoft Windows 11 21h2
Microsoft Windows 11 22h2
Microsoft Windows 11 23h2
Microsoft Windows 10 1809
Microsoft Windows Server 2019
Microsoft Windows Server 2022
Microsoft Windows 10 21h2
474
VMScore
CVE-2010-0434
The ap_read_request function in server/protocol.c in the Apache HTTP Server 2.2.x prior to 2.2.15, when a multithreaded MPM is used, does not properly handle headers in subrequests in certain circumstances involving a parent request that has a body, which might allow remote malic...
Apache Http Server
Fedoraproject Fedora 11
Fedoraproject Fedora 13
Debian Debian Linux 5.0
Debian Debian Linux 6.0
356
VMScore
CVE-2010-3439
It is possible to cause a DoS condition by causing the server to crash in alien-arena 7.33 by supplying various invalid parameters to the download command.
Cor-entertainment Alien-arena 7.33
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 11
Fedoraproject Fedora 12
Fedoraproject Fedora 13
383
VMScore
CVE-2009-3767
libraries/libldap/tls_o.c in OpenLDAP 2.2 and 2.4, and possibly other versions, when OpenSSL is used, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle maliciou...
Openldap Openldap
Apple Mac Os X
Fedoraproject Fedora 11
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »