|
303521
|
5.5 |
MEDIUM
Local
|
linux
canonical
suse
|
linux_kernel
ubuntu_linux
linux_enterprise_desktop
linux_enterprise_server
linux_enterprise_high_availability_extension
|
Integer overflow in the btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the Linux kernel before 2.6.35 might allow local users to obtain sensitive information via a BTRFS_IOC_CLONE_RANGE ioctl call.
|
CWE-200
Information Exposure
|
CVE-2010-2538
|
2024-11-21 10:16 |
2010-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303522
|
7.1 |
HIGH
Local
|
linux
canonical
suse
|
linux_kernel
ubuntu_linux
suse_linux_enterprise_server
suse_linux_enterprise_desktop
linux_enterprise_high_availability_extension
|
The btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the Linux kernel before 2.6.35 allows local users to overwrite an append-only file via a (1) BTRFS_IOC_CLONE or (2) BTRFS_IOC_CLONE_RANGE ioctl c…
|
NVD-CWE-noinfo
|
CVE-2010-2537
|
2024-11-21 10:16 |
2010-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303523
|
- |
|
netbsd
freebsd
apple
|
netbsd
freebsd
mac_os_x
|
Multiple integer signedness errors in smb_subr.c in the netsmb module in the kernel in NetBSD 5.0.2 and earlier, FreeBSD, and Apple Mac OS X allow local users to cause a denial of service (panic) via…
|
CWE-189
Numeric Errors
|
CVE-2010-2530
|
2024-11-21 10:16 |
2010-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303524
|
- |
|
linux
canonical
suse
|
linux_kernel
ubuntu_linux
linux_enterprise_desktop
linux_enterprise_server
|
Integer overflow in the ethtool_get_rxnfc function in net/core/ethtool.c in the Linux kernel before 2.6.33.7 on 32-bit platforms allows local users to cause a denial of service or possibly have unspe…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2010-2478
|
2024-11-21 10:16 |
2010-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303525
|
- |
|
synology
|
dsm
|
Multiple cross-site scripting (XSS) vulnerabilities in Synology Disk Station 2.x before DSM3.0-1337 allow remote attackers to inject arbitrary web script or HTML by connecting to the FTP server and p…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2453
|
2024-11-21 10:16 |
2010-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303526
|
- |
|
roundup-tracker
|
roundup
|
Cross-site scripting (XSS) vulnerability in cgi/client.py in Roundup before 1.4.14 allows remote attackers to inject arbitrary web script or HTML via the template argument to the /issue program.
|
CWE-79
Cross-site Scripting
|
CVE-2010-2491
|
2024-11-21 10:16 |
2010-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303527
|
- |
|
microsoft
|
windows_xp
windows_server_2003
|
The RPC client implementation in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly allocate memory during the parsing of responses, which allows remote RPC servers and man-in-the…
|
CWE-94
Code Injection
|
CVE-2010-2567
|
2024-11-21 10:16 |
2010-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303528
|
- |
|
microsoft
|
windows_xp
windows_server_2003
|
The Word 97 text converter in the WordPad Text Converters in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly parse malformed structures in Word 97 documents, which allows remot…
|
CWE-94
Code Injection
|
CVE-2010-2563
|
2024-11-21 10:16 |
2010-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303529
|
- |
|
rim
|
blackberry_desktop_software
|
Untrusted search path vulnerability in BlackBerry Desktop Software before 6.0.0.47 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a…
|
NVD-CWE-Other
|
CVE-2010-2600
|
2024-11-21 10:16 |
2010-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303530
|
- |
|
mailenable
|
mailenable
|
The SMTP service (MESMTPC.exe) in MailEnable 3.x and 4.25 does not properly perform a length check, which allows remote attackers to cause a denial of service (crash) via a long (1) email address in …
|
CWE-20
Improper Input Validation
|
CVE-2010-2580
|
2024-11-21 10:16 |
2010-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
