|
346921
|
- |
|
consona
|
consona_dynamic_agent
consona_live_assistance
consona_subscriber_assistance
|
The Forgot Password implementation in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance allows remote attackers to reset passwords of accounts with blank Hint questions and Hint answe…
|
CWE-287
Improper Authentication
|
CVE-2010-1910
|
2018-10-11 04:57 |
2010-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346922
|
- |
|
consona
|
consona_dynamic_agent
consona_live_assistance
consona_subscriber_assistance
|
The site-locking implementation in the SdcWebSecureBase interface in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance relies on a list of server domain names to restri…
|
CWE-310
Cryptographic Issues
|
CVE-2010-1911
|
2018-10-11 04:57 |
2010-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346923
|
- |
|
consona
|
consona_dynamic_agent
consona_live_assistance
consona_subscriber_assistance
|
The SdcWebSecureBase interface in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance allows remote attackers to bypass intended restrictions on ActiveX execution via "in…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-1912
|
2018-10-11 04:57 |
2010-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346924
|
- |
|
sun
|
solaris
|
Certain patch-installation scripts in Oracle Solaris allow local users to append data to arbitrary files via a symlink attack on the /tmp/CLEANUP temporary file, related to use of Update Manager.
|
CWE-59
Link Following
|
CVE-2010-1183
|
2018-10-11 04:56 |
2010-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346925
|
- |
|
sap
|
maxdb
|
Stack-based buffer overflow in serv.exe in SAP MaxDB 7.4.3.32, and 7.6.0.37 through 7.6.06 allows remote attackers to execute arbitrary code via an invalid length parameter in a handshake packet to T…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1185
|
2018-10-11 04:56 |
2010-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346926
|
- |
|
sahanafoundation
|
sahana
|
Sahana disaster management system 0.6.2.2, and possibly other versions, allows remote attackers to bypass intended access restrictions and disable administrator authentication via a direct request to…
|
CWE-287
Improper Authentication
|
CVE-2010-1191
|
2018-10-11 04:56 |
2010-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346927
|
- |
|
ca
|
xosoft_content_distribution
xosoft_high_availability
xosoft_replication
|
CA XOsoft r12.0 and r12.5 does not properly perform authentication, which allows remote attackers to enumerate usernames via a SOAP request.
|
CWE-287
Improper Authentication
|
CVE-2010-1221
|
2018-10-11 04:56 |
2010-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346928
|
- |
|
ca
|
xosoft_content_distribution
xosoft_high_availability
xosoft_replication
|
Per: https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=232869
'The first vulnerability, CVE-2010-1221, occurs due to a lack of authentication. An attacker can make a SOAP request…
|
CWE-287
Improper Authentication
|
CVE-2010-1221
|
2018-10-11 04:56 |
2010-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346929
|
- |
|
ca
|
xosoft_content_distribution
xosoft_high_availability
xosoft_replication
|
CA XOsoft r12.5 does not properly perform authentication, which allows remote attackers to obtain potentially sensitive information via a SOAP request.
|
CWE-287
Improper Authentication
|
CVE-2010-1222
|
2018-10-11 04:56 |
2010-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346930
|
- |
|
ca
|
xosoft_content_distribution
xosoft_high_availability
xosoft_replication
|
Multiple buffer overflows in CA XOsoft r12.0 and r12.5 allow remote attackers to execute arbitrary code via (1) a malformed request to the ws_man/xosoapapi.asmx SOAP endpoint or (2) a long string to …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1223
|
2018-10-11 04:56 |
2010-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
