|
345231
|
- |
|
google
|
chrome
|
Google Chrome before 4.0.249.78 sends an https URL in the Referer header of an http request in certain circumstances involving https to http redirection, which allows remote HTTP servers to obtain po…
|
CWE-200
Information Exposure
|
CVE-2010-0660
|
2017-09-19 10:30 |
2010-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345232
|
- |
|
apple
google
|
webkit
chrome
|
WebCore/bindings/v8/custom/V8DOMWindowCustom.cpp in WebKit before r52401, as used in Google Chrome before 4.0.249.78, allows remote attackers to bypass the Same Origin Policy via vectors involving th…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0661
|
2017-09-19 10:30 |
2010-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345233
|
- |
|
google
|
chrome
|
The ParamTraits<SkBitmap>::Read function in common/common_param_traits.cc in Google Chrome before 4.0.249.78 does not use the correct variables in calculations designed to prevent integer overflows, …
|
CWE-189
Numeric Errors
|
CVE-2010-0662
|
2017-09-19 10:30 |
2010-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345234
|
- |
|
google
|
chrome
|
The ParamTraits<SkBitmap>::Read function in common/common_param_traits.cc in Google Chrome before 4.0.249.78 does not initialize the memory locations that will hold bitmap data, which might allow rem…
|
CWE-200
Information Exposure
|
CVE-2010-0663
|
2017-09-19 10:30 |
2010-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345235
|
- |
|
google
|
chrome
|
Stack consumption vulnerability in the ChildProcessSecurityPolicy::CanRequestURL function in browser/child_process_security_policy.cc in Google Chrome before 4.0.249.78 allows remote attackers to cau…
|
CWE-399
Resource Management Errors
|
CVE-2010-0664
|
2017-09-19 10:30 |
2010-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345236
|
- |
|
redhat
|
enterprise_linux
|
A certain Red Hat patch for the Linux kernel in Red Hat Enterprise Linux (RHEL) 4 on the ia64 platform allows local users to use ptrace on an arbitrary process, and consequently gain privileges, via …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0729
|
2017-09-19 10:30 |
2010-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345237
|
- |
|
gnu
|
gnutls
|
The gnutls_x509_crt_get_serial function in the GnuTLS library before 1.2.1, when running on big-endian, 64-bit platforms, calls the asn1_read_value with a pointer to the wrong data type and the wrong…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0731
|
2017-09-19 10:30 |
2010-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345238
|
- |
|
gnu
|
gnutls
|
Per: http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/4230
"Please note that the problem was solved for GnuTLS 1.2.1, released on
2005-04-04. Also, 32-bit platforms are not affecte…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0731
|
2017-09-19 10:30 |
2010-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345239
|
- |
|
openssl
|
openssl
|
The Cryptographic Message Syntax (CMS) implementation in crypto/cms/cms_asn1.c in OpenSSL before 0.9.8o and 1.x before 1.0.0a does not properly handle structures that contain OriginatorInfo, which al…
|
CWE-310
Cryptographic Issues
|
CVE-2010-0742
|
2017-09-19 10:30 |
2010-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345240
|
- |
|
piotr_roszatycki
|
libnss-db
|
The Free Software Foundation (FSF) Berkeley DB NSS module (aka libnss-db) 2.2.3pre1 reads the DB_CONFIG file in the current working directory, which allows local users to obtain sensitive information…
|
CWE-200
Information Exposure
|
CVE-2010-0826
|
2017-09-19 10:30 |
2010-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
