|
300261
|
- |
|
xelerance
|
openswan
|
programs/pluto/xauth.c in the client in Openswan 2.6.25 through 2.6.28 allows remote authenticated gateways to execute arbitrary commands via shell metacharacters in (1) cisco_dns_info or (2) cisco_d…
|
CWE-78
OS Command
|
CVE-2010-3752
|
2024-11-21 10:19 |
2010-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300262
|
- |
|
dustincowell
|
free_simple_cms
|
Multiple PHP remote file inclusion vulnerabilities in themes/default/index.php in Free Simple CMS 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the (1) meta or (2) phpincdir p…
|
CWE-94
Code Injection
|
CVE-2010-3742
|
2024-11-21 10:19 |
2010-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300263
|
- |
|
rim
|
blackberry_desktop_software
|
The offline backup mechanism in Research In Motion (RIM) BlackBerry Desktop Software uses single-iteration PBKDF2, which makes it easier for local users to decrypt a .ipd file via a brute-force attac…
|
CWE-310
Cryptographic Issues
|
CVE-2010-3741
|
2024-11-21 10:19 |
2010-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300264
|
- |
|
ibm
|
db2
|
The Net Search Extender (NSE) implementation in the Text Search component in IBM DB2 UDB 9.5 before FP6a does not properly handle an alphanumeric Fuzzy search, which allows remote authenticated users…
|
CWE-399
Resource Management Errors
|
CVE-2010-3740
|
2024-11-21 10:19 |
2010-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300265
|
- |
|
ibm
|
db2_universal_database
|
The audit facility in the Security component in IBM DB2 UDB 9.5 before FP6a uses instance-level audit settings to capture connection (aka CONNECT and AUTHENTICATION) events in certain circumstances i…
|
CWE-287
Improper Authentication
|
CVE-2010-3739
|
2024-11-21 10:19 |
2010-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300266
|
- |
|
ibm
|
db2
|
The Security component in IBM DB2 UDB 9.5 before FP6a logs AUDIT events by using a USERID and an AUTHID value corresponding to the instance owner, instead of a USERID and an AUTHID value correspondin…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3738
|
2024-11-21 10:19 |
2010-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300267
|
- |
|
ibm
|
db2
|
Memory leak in the Relational Data Services component in IBM DB2 UDB 9.5 before FP6a allows remote authenticated users to cause a denial of service (heap memory consumption) by executing a (1) user-d…
|
CWE-399
Resource Management Errors
|
CVE-2010-3737
|
2024-11-21 10:19 |
2010-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300268
|
- |
|
ibm
|
db2
|
Memory leak in the Relational Data Services component in IBM DB2 UDB 9.5 before FP6a, when the connection concentrator is enabled, allows remote authenticated users to cause a denial of service (heap…
|
CWE-399
Resource Management Errors
|
CVE-2010-3736
|
2024-11-21 10:19 |
2010-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300269
|
- |
|
ibm
|
db2
|
The "Query Compiler, Rewrite, Optimizer" component in IBM DB2 UDB 9.5 before FP6a allows remote authenticated users to cause a denial of service (CPU consumption) via a crafted query involving certai…
|
CWE-399
Resource Management Errors
|
CVE-2010-3735
|
2024-11-21 10:19 |
2010-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300270
|
- |
|
ibm
|
db2
|
The Install component in IBM DB2 UDB 9.5 before FP6a on Linux, UNIX, and Windows enforces an unintended limit on password length, which makes it easier for attackers to obtain access via a brute-forc…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3734
|
2024-11-21 10:19 |
2010-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
