Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-04-11 | CVE-2011-1157 | Cross-Site Scripting vulnerability in Mark Pilgrim Feedparser 5.0 Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) 5.x before 5.0.1 allows remote attackers to inject arbitrary web script or HTML via malformed XML comments. | 4.3 |
2011-04-11 | CVE-2011-1156 | Resource Management Errors vulnerability in Mark Pilgrim Feedparser feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) before 5.0.1 allows remote attackers to cause a denial of service (application crash) via a malformed DOCTYPE declaration. | 5.0 |
2011-04-11 | CVE-2009-5065 | Cross-Site Scripting vulnerability in Mark Pilgrim Feedparser Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) before 5.0 allows remote attackers to inject arbitrary web script or HTML via vectors involving nested CDATA stanzas. | 4.3 |
2011-04-10 | CVE-2011-1681 | Configuration vulnerability in VMWare Open-Vm-Tools vmware-hgfsmounter in VMware Open Virtual Machine Tools (aka open-vm-tools) 8.4.2-261024 and earlier attempts to append to the /etc/mtab file without first checking whether resource limits would interfere, which allows local users to trigger corruption of this file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089. | 3.3 |
2011-04-10 | CVE-2011-1680 | Permissions, Privileges, and Access Controls vulnerability in Ncpfs ncpmount in ncpfs 2.2.6 and earlier does not remove the /etc/mtab~ lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors. | 4.4 |
2011-04-10 | CVE-2011-1679 | Improper Input Validation vulnerability in Ncpfs ncpfs 2.2.6 and earlier attempts to use (1) ncpmount to append to the /etc/mtab file and (2) ncpumount to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089. | 3.3 |
2011-04-10 | CVE-2011-1678 | Improper Input Validation vulnerability in Samba smbfs in Samba 3.5.8 and earlier attempts to use (1) mount.cifs to append to the /etc/mtab file and (2) umount.cifs to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089. | 3.3 |
2011-04-10 | CVE-2011-1677 | Unspecified vulnerability in Linux Util-Linux mount in util-linux 2.19 and earlier does not remove the /etc/mtab~ lock file after a failed attempt to add a mount entry, which has unspecified impact and local attack vectors. | 4.6 |
2011-04-10 | CVE-2011-1676 | Permissions, Privileges, and Access Controls vulnerability in Linux Util-Linux mount in util-linux 2.19 and earlier does not remove the /etc/mtab.tmp file after a failed attempt to add a mount entry, which allows local users to trigger corruption of the /etc/mtab file via multiple invocations. | 3.3 |
2011-04-10 | CVE-2011-1675 | Resource Management Errors vulnerability in Linux Util-Linux mount in util-linux 2.19 and earlier attempts to append to the /etc/mtab.tmp file without first checking whether resource limits would interfere, which allows local users to trigger corruption of the /etc/mtab file via a process with a small RLIMIT_FSIZE value, a related issue to CVE-2011-1089. | 3.3 |