|
350731
|
- |
|
comtrend
|
ct-507it_adsl_router
|
Cross-site scripting (XSS) vulnerability in scvrtsrv.cmd in Comtrend CT-507IT ADSL Router allows remote attackers to inject arbitrary web script or HTML via the srvName parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2010-0470
|
2010-02-3 14:00 |
2010-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350732
|
- |
|
viewvc
|
viewvc
|
query.py in the query interface in ViewVC before 1.1.3 does not reject configurations that specify an unsupported authorizer for a root, which might allow remote attackers to bypass intended access r…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0005
|
2010-02-2 14:00 |
2010-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350733
|
- |
|
mozilla
|
seamonkey
thunderbird
|
Mozilla Necko, as used in Thunderbird 3.0.1, SeaMonkey, and other applications, performs DNS prefetching even when the app type is APP_TYPE_MAIL or APP_TYPE_EDITOR, which makes it easier for remote a…
|
CWE-200
Information Exposure
|
CVE-2009-4629
|
2010-02-2 14:00 |
2010-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350734
|
- |
|
cisco
|
unified_meetingplace
|
Multiple unspecified vulnerabilities in the web server in Cisco Unified MeetingPlace 7 before 7.0(2.3) hotfix 5F, 6 before 6.0.639.3, and possibly 5 allow remote attackers to create (1) user or (2) a…
|
NVD-CWE-noinfo
|
CVE-2010-0140
|
2010-01-31 14:00 |
2010-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350735
|
- |
|
cisco
|
unified_meetingplace
|
Per: http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1490b.shtml
Affected Products
Vulnerable Products
Cisco Unified MeetingPlace versions 5, 6, and 7 are each affec…
|
NVD-CWE-noinfo
|
CVE-2010-0140
|
2010-01-31 14:00 |
2010-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350736
|
- |
|
cisco
|
unified_meetingplace
|
MeetingTime in Cisco Unified MeetingPlace 6 before MR5, and possibly 5, allows remote authenticated users to gain privileges via a modified authentication sequence, aka Bug ID CSCsv66530.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0142
|
2010-01-31 14:00 |
2010-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350737
|
- |
|
cisco
|
unified_meetingplace
|
Per: http://www.cisco.com/en/US/products/products_security_advisory09186a0080b1490b.shtml
Affected Products
Vulnerable Products
Cisco Unified MeetingPlace versions 5, 6, and 7 are each affec…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0142
|
2010-01-31 14:00 |
2010-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350738
|
- |
|
sun
|
java_system_application_server
|
The default configuration of Sun Java System Application Server 7 and 7 2004Q2 enables the HTTP TRACE method, which makes it easier for remote attackers to steal cookies and authentication credential…
|
CWE-16
Configuration
|
CVE-2010-0386
|
2010-01-31 14:00 |
2010-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350739
|
- |
|
sun
|
java_system_application_server
|
Per: http://sunsolve.sun.com/search/document.do?assetkey=1-66-200942-1
Contributing Factors
This issue can occur in the following releases:
* Sun Java System Application Server Standar…
|
CWE-16
Configuration
|
CVE-2010-0386
|
2010-01-31 14:00 |
2010-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350740
|
- |
|
sun
|
java_system_web_server
|
The admin server in Sun Java System Web Server 7.0 Update 6 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an HTTP request that lacks a method to…
|
NVD-CWE-Other
|
CVE-2010-0389
|
2010-01-31 14:00 |
2010-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
