|
303501
|
- |
|
apple
|
coregraphics
mac_os_x
mac_os_x_server
|
Heap-based buffer overflow in CoreGraphics in Apple Mac OS X 10.5.8 and 10.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF fil…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1801
|
2024-11-21 10:15 |
2010-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303502
|
- |
|
apple
|
cfnetwork
mac_os_x
mac_os_x_server
|
CFNetwork in Apple Mac OS X 10.6.3 and 10.6.4 supports anonymous SSL and TLS connections, which allows man-in-the-middle attackers to redirect a connection and obtain sensitive information via crafte…
|
CWE-200
Information Exposure
|
CVE-2010-1800
|
2024-11-21 10:15 |
2010-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303503
|
- |
|
apple
|
itunes
|
Untrusted search path vulnerability in Apple iTunes before 9.1, when running on Windows 7, Vista, and XP, allows local users and possibly remote attackers to gain privileges via a Trojan horse DLL in…
|
NVD-CWE-Other
|
CVE-2010-1795
|
2024-11-21 10:15 |
2010-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303504
|
- |
|
apple
|
itunes
|
Unspecified vulnerability in Apple iTunes before 9.1 allows local users to gain console privileges via vectors related to log files, "insecure file operation," and syncing an iPhone, iPad, or iPod to…
|
NVD-CWE-noinfo
|
CVE-2010-1768
|
2024-11-21 10:15 |
2010-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303505
|
- |
|
apple
|
webkit
|
loader/DocumentThreadableLoader.cpp in the XMLHttpRequest implementation in WebCore in WebKit before r58409 does not properly handle credentials during a cross-origin synchronous request, which has u…
|
CWE-255
Credentials Management
|
CVE-2010-1760
|
2024-11-21 10:15 |
2010-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303506
|
9.8 |
CRITICAL
Network
|
apache
|
cxf
|
Apache CXF 2.0.x before 2.0.13, 2.1.x before 2.1.10, and 2.2.x before 2.2.9, as used in Apache ServiceMix, Apache Camel, Apache Chemistry, Apache jUDDI, Apache Geronimo, and other products, does not …
|
CWE-829
Inclusion of Functionality from Untrusted Control Sphere
|
CVE-2010-2076
|
2024-11-21 10:15 |
2010-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303507
|
- |
|
apache
|
struts
|
The OGNL extensive expression evaluation capability in XWork in Struts 2.0.0 through 2.1.8.1, as used in Atlassian Fisheye, Crucible, and possibly other products, uses a permissive whitelist, which a…
|
NVD-CWE-Other
|
CVE-2010-1870
|
2024-11-21 10:15 |
2010-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303508
|
- |
|
microsoft
|
windows_xp
windows_server_2008
windows_2003_server
windows_7
windows_vista
|
Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 SP2 and R2, and Windows 7 allow local users to gain privileges by leveraging access to a proc…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-1886
|
2024-11-21 10:15 |
2010-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303509
|
- |
|
apple
|
quicktime
|
Stack-based buffer overflow in the error-logging functionality in Apple QuickTime before 7.6.7 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1799
|
2024-11-21 10:15 |
2010-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303510
|
- |
|
apple
|
iphone_os
|
Multiple stack-based buffer overflows in the cff_decoder_parse_charstrings function in the CFF Type2 CharStrings interpreter in cff/cffgload.c in FreeType before 2.4.2, as used in Apple iOS before 4.…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1797
|
2024-11-21 10:15 |
2010-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
