|
345811
|
- |
|
mozilla
|
firefox
|
The gfxTextRun::SanitizeGlyphRuns function in gfx/thebes/src/gfxFont.cpp in the browser engine in Mozilla Firefox 3.6 before 3.6.2 on Mac OS X, when the Core Text API is used, does not properly perfo…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0166
|
2017-09-19 10:30 |
2010-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345812
|
- |
|
mozilla
|
firefox
|
The nsDocument::MaybePreLoadImage function in content/base/src/nsDocument.cpp in the image-preloading implementation in Mozilla Firefox 3.6 before 3.6.2 does not apply scheme restrictions and policy …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0168
|
2017-09-19 10:30 |
2010-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345813
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox 3.6 before 3.6.2 does not offer plugins the expected window.location protection mechanism, which might allow remote attackers to bypass the Same Origin Policy and conduct cross-site s…
|
CWE-79
Cross-site Scripting
|
CVE-2010-0170
|
2017-09-19 10:30 |
2010-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345814
|
- |
|
mozilla
|
firefox
|
toolkit/components/passwordmgr/src/nsLoginManagerPrompter.js in the asynchronous Authorization Prompt implementation in Mozilla Firefox 3.6 before 3.6.2 does not properly handle concurrent authorizat…
|
NVD-CWE-Other
|
CVE-2010-0172
|
2017-09-19 10:30 |
2010-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345815
|
- |
|
nos_microsystems
adobe
|
getplus_download_manager
download_manager
|
A certain ActiveX control in NOS Microsystems getPlus Download Manager (aka DLM or Downloader) 1.5.2.35, as used in Adobe Download Manager, improperly validates requests involving web sites that are …
|
CWE-20
Improper Input Validation
|
CVE-2010-0189
|
2017-09-19 10:30 |
2010-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345816
|
- |
|
nos_microsystems
adobe
|
getplus_download_manager
download_manager
|
Per: http://blogs.adobe.com/psirt/2010/02/adobe_download_manager_issue.html
"Adobe is aware of the recently posted report of a remote code execution vulnerability in the Adobe Download Manager…
|
CWE-20
Improper Input Validation
|
CVE-2010-0189
|
2017-09-19 10:30 |
2010-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345817
|
- |
|
wireshark
|
wireshark
|
Multiple buffer overflows in the LWRES dissector in Wireshark 0.9.15 through 1.0.10 and 1.2.0 through 1.2.5 allow remote attackers to cause a denial of service (crash) via a malformed packet, as demo…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0304
|
2017-09-19 10:30 |
2010-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345818
|
- |
|
kvm_qumranet
|
kvm
|
The x86 emulator in KVM 83, when a guest is configured for Symmetric Multiprocessing (SMP), does not use the Current Privilege Level (CPL) and I/O Privilege Level (IOPL) to restrict instruction execu…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0306
|
2017-09-19 10:30 |
2010-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345819
|
- |
|
squid-cache
|
squid
|
lib/rfc1035.c in Squid 2.x, 3.0 through 3.0.STABLE22, and 3.1 through 3.1.0.15 allows remote attackers to cause a denial of service (assertion failure) via a crafted DNS packet that only contains a h…
|
CWE-20
Improper Input Validation
|
CVE-2010-0308
|
2017-09-19 10:30 |
2010-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345820
|
- |
|
videolan
|
vlc_media_player
|
Stack-based buffer overflow in VideoLAN VLC Media Player 0.8.6 allows user-assisted remote attackers to execute arbitrary code via an ogg file with a crafted Advanced SubStation Alpha Subtitle (.ass)…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0364
|
2017-09-19 10:30 |
2010-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
