Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-10-19 | CVE-2011-4137 | Resource Management Errors vulnerability in Djangoproject Django The verify_exists functionality in the URLField implementation in Django before 1.2.7 and 1.3.x before 1.3.1 relies on Python libraries that attempt access to an arbitrary URL with no timeout, which allows remote attackers to cause a denial of service (resource consumption) via a URL associated with (1) a slow response, (2) a completed TCP connection with no application data sent, or (3) a large amount of application data, a related issue to CVE-2011-1521. | 5.0 |
2011-10-19 | CVE-2011-4136 | Improper Input Validation vulnerability in Djangoproject Django django.contrib.sessions in Django before 1.2.7 and 1.3.x before 1.3.1, when session data is stored in the cache, uses the root namespace for both session identifiers and application-data keys, which allows remote attackers to modify a session by triggering use of a key that is equal to that session's identifier. | 5.8 |
2011-10-18 | CVE-2011-2323 | Unspecified vulnerability in Oracle Industry Applications 4.6.1/4.6.2 Unspecified vulnerability in the Health Sciences - Oracle Thesaurus Management System component in Oracle Industry Applications 4.6.1 and 4.6.2 allows remote attackers to affect integrity, related to TMS Help. network oracle | 4.3 |
2011-10-18 | CVE-2011-3559 | Remote vulnerability in Oracle products Unspecified vulnerability in Oracle Communications Server 2.0; GlassFish Enterprise Server 2.1.1, 3.0.1, and 3.1.1; and Sun Java System App Server 8.1 and 8.2 allows remote attackers to affect availability via unknown vectors related to Web Container. | 7.8 |
2011-10-18 | CVE-2011-3543 | Remote vulnerability in SUN Sunos 5.11 Unspecified vulnerability in Oracle Solaris 11 Express allows remote attackers to affect availability, related to iSCSI DataMover (IDM). | 7.8 |
2011-10-18 | CVE-2011-3542 | Local vulnerability in Oracle Sun Solaris Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows local users to affect availability via unknown vectors related to Kernel/Performance Counter BackEnd Module (pcbe). | 4.9 |
2011-10-18 | CVE-2011-3541 | Oracle Outside In Technology Local vulnerability in Oracle Fusion Middleware 8.3.5/8.3.7 Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows local users to affect availability via unknown vectors related to Outside In Filters. local oracle | 1.9 |
2011-10-18 | CVE-2011-3539 | Local Solaris vulnerability in Oracle Solaris Unspecified vulnerability in Oracle Solaris 10 and 11 Express allows local users to affect availability via unknown vectors related to Zones. | 1.7 |
2011-10-18 | CVE-2011-3538 | Remote Security vulnerability in Oracle Virtualization 4.0 Unspecified vulnerability in the Sun Ray component in Oracle Virtualization 4.0 allows remote attackers to affect integrity, related to Authentication. network oracle | 6.8 |
2011-10-18 | CVE-2011-3537 | Local vulnerability in Oracle Sun Product Suite Unspecified vulnerability in Oracle Solaris 8, 9, 10, and 11 Express allows local users to affect availability via unknown vectors related to Kernel/Filesystem. | 7.8 |