|
306201
|
- |
|
simone_rota
|
slim_simple_login_manager
|
The default configuration of SLiM before 1.3.2 places ./ (dot slash) at the beginning of the default_path option, which might allow local users to gain privileges via a Trojan horse program in the cu…
|
CWE-16
Configuration
|
CVE-2010-2945
|
2024-11-21 10:17 |
2010-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306202
|
- |
|
fedoraproject
|
sssd
|
The auth_send function in providers/ldap/ldap_auth.c in System Security Services Daemon (SSSD) 1.3.0, when LDAP authentication and anonymous bind are enabled, allows remote attackers to bypass the au…
|
CWE-287
Improper Authentication
|
CVE-2010-2940
|
2024-11-21 10:17 |
2010-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306203
|
- |
|
redhat
|
spice-xpi
|
The SPICE (aka spice-xpi) plug-in 2.2 for Firefox allows local users to overwrite arbitrary files via a symlink attack on an unspecified log file.
|
CWE-59
Link Following
|
CVE-2010-2794
|
2024-11-21 10:17 |
2010-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306204
|
- |
|
redhat
|
spice-xpi
|
Race condition in the SPICE (aka spice-xpi) plug-in 2.2 for Firefox allows local users to obtain sensitive information, and conduct man-in-the-middle attacks, by providing a UNIX socket for communica…
|
CWE-362
Race Condition
|
CVE-2010-2792
|
2024-11-21 10:17 |
2010-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306205
|
- |
|
adobe
|
shockwave_player
|
DIRAPI.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2882
|
2024-11-21 10:17 |
2010-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306206
|
- |
|
adobe
|
shockwave_player
|
IML32.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2881
|
2024-11-21 10:17 |
2010-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306207
|
- |
|
adobe
|
shockwave_player
|
DIRAPI.dll in Adobe Shockwave Player before 11.5.8.612 does not properly parse .dir files, which allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2880
|
2024-11-21 10:17 |
2010-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306208
|
- |
|
adobe
|
shockwave_player
|
Multiple integer overflows in the allocator in the TextXtra.x32 module in Adobe Shockwave Player before 11.5.8.612 allow remote attackers to cause a denial of service (heap memory corruption) or exec…
|
CWE-189
Numeric Errors
|
CVE-2010-2879
|
2024-11-21 10:17 |
2010-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306209
|
- |
|
adobe
|
shockwave_player
|
DIRAPIX.dll in Adobe Shockwave Player before 11.5.8.612 does not properly validate a value associated with a buffer seek for a Director movie, which allows remote attackers to cause a denial of servi…
|
CWE-20
Improper Input Validation
|
CVE-2010-2878
|
2024-11-21 10:17 |
2010-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306210
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player before 11.5.8.612 does not properly validate a count value in a Director movie, which allows remote attackers to cause a denial of service (heap memory corruption) or execute a…
|
CWE-20
Improper Input Validation
|
CVE-2010-2877
|
2024-11-21 10:17 |
2010-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
