|
300041
|
- |
|
vtiger
|
vtiger_crm
|
Incomplete blacklist vulnerability in config.template.php in vtiger CRM before 5.2.1 allows remote authenticated users to execute arbitrary code by using the draft save feature in the Compose Mail co…
|
CWE-94
Code Injection
|
CVE-2010-3909
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300042
|
- |
|
freetype
|
freetype
|
Buffer overflow in the ft_var_readpackedpoints function in truetype/ttgxvar.c in FreeType 2.4.3 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execut…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3855
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300043
|
- |
|
apple
|
iphone_os
|
Heap-based buffer overflow in the GSM mobility management implementation in Telephony in Apple iOS before 4.2 on the iPhone and iPad allows remote attackers to execute arbitrary code on the baseband …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3832
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300044
|
- |
|
apple
|
iphone_os
|
Photos in Apple iOS before 4.2 enables support for HTTP Basic Authentication over an unencrypted connection, which allows man-in-the-middle attackers to read MobileMe account passwords by spoofing a …
|
CWE-200
Information Exposure
|
CVE-2010-3831
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300045
|
- |
|
apple
|
iphone_os
|
Networking in Apple iOS before 4.2 accesses an invalid pointer during the processing of packet filter rules, which allows local users to gain privileges via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3830
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300046
|
- |
|
apple
|
iphone_os
|
WebKit in Apple iOS before 4.2 allows remote attackers to bypass the remote image loading setting in Mail via an HTML LINK element with a DNS prefetching property, as demonstrated by an HTML e-mail m…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3829
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300047
|
- |
|
apple
|
iphone_os
|
iAd Content Display in Apple iOS before 4.2 allows man-in-the-middle attackers to make calls via a crafted URL in an ad.
|
NVD-CWE-Other
|
CVE-2010-3828
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300048
|
- |
|
apple
|
iphone_os
|
Apple iOS before 4.2 does not properly validate signatures before displaying a configuration profile in the configuration installation utility, which allows remote attackers to spoof profiles via uns…
|
CWE-20
Improper Input Validation
|
CVE-2010-3827
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300049
|
- |
|
freetype
|
freetype
|
Heap-based buffer overflow in the Ins_SHZ function in ttinterp.c in FreeType 2.4.3 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3814
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300050
|
- |
|
linux
fedoraproject
debian
canonical
|
linux_kernel
fedora
debian_linux
ubuntu_linux
|
The sctp_auth_asoc_get_hmac function in net/sctp/auth.c in the Linux kernel before 2.6.36 does not properly validate the hmac_ids array of an SCTP peer, which allows remote attackers to cause a denia…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2010-3705
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
