|
302921
|
- |
|
todd_miller
|
sudo
|
Sudo 1.7.0 through 1.7.4p3, when a Runas group is configured, does not properly handle use of the -u option in conjunction with the -g option, which allows local users to gain privileges via a comman…
|
NVD-CWE-Other
|
CVE-2010-2956
|
2024-11-21 10:17 |
2010-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302922
|
- |
|
quagga
|
quagga
|
bgpd in Quagga before 0.99.17 does not properly parse AS paths, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an unknown AS type in an AS …
|
NVD-CWE-Other
|
CVE-2010-2949
|
2024-11-21 10:17 |
2010-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302923
|
- |
|
quagga
|
quagga
|
Stack-based buffer overflow in the bgp_route_refresh_receive function in bgp_packet.c in bgpd in Quagga before 0.99.17 allows remote authenticated users to cause a denial of service (daemon crash) or…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2948
|
2024-11-21 10:17 |
2010-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302924
|
- |
|
cisco
|
wireless_lan_controller_software
|
Cisco Wireless LAN Controller (WLC) software, possibly 6.0.x or possibly 4.1 through 6.0.x, allows remote attackers to bypass ACLs in the controller CPU, and consequently send network traffic to unin…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3034
|
2024-11-21 10:17 |
2010-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302925
|
- |
|
cisco
|
wireless_lan_controller_software
|
Cisco Wireless LAN Controller (WLC) software, possibly 4.2 through 6.0, allows remote authenticated users to bypass intended access restrictions and modify the configuration, and possibly obtain admi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3033
|
2024-11-21 10:17 |
2010-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302926
|
- |
|
hp
|
insight_diagnostics
|
Cross-site scripting (XSS) vulnerability in HP Insight Diagnostics Online Edition before 8.5.0-11 on Linux allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2010-3003
|
2024-11-21 10:17 |
2010-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302927
|
- |
|
s9y
|
serendipity
|
Cross-site scripting (XSS) vulnerability in Serendipity before 1.5.4, when "Remember me" logins are enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2010-2957
|
2024-11-21 10:17 |
2010-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302928
|
- |
|
cisco
|
wireless_lan_controller_software
|
Cisco Wireless LAN Controller (WLC) software, possibly 4.2 through 6.0, allows remote authenticated users to bypass intended access restrictions and modify the configuration, and possibly obtain admi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2843
|
2024-11-21 10:17 |
2010-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302929
|
- |
|
cisco
|
wireless_lan_controller_software
|
Cisco Wireless LAN Controller (WLC) software, possibly 4.2 through 6.0, allows remote authenticated users to bypass intended access restrictions and modify the configuration, and possibly obtain admi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2842
|
2024-11-21 10:17 |
2010-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302930
|
- |
|
cisco
|
wireless_lan_controller_software
|
Unspecified vulnerability in Cisco Wireless LAN Controller (WLC) software 4.2 before 4.2.209.0; 4.2M before 4.2.207.54M; 5.0, 5.1, and 6.0 before 6.0.196.0; and 5.2 before 5.2.193.11 allows remote au…
|
NVD-CWE-noinfo
|
CVE-2010-2841
|
2024-11-21 10:17 |
2010-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
