|
302961
|
- |
|
hp
|
procurve_switch_software
procurve_switch_1800-24g
procurve_switch_1800-8g
|
Unspecified vulnerability on the HP ProCurve 1800-24G switch with software PB.03.02 and earlier, and the ProCurve 1800-8G switch with software PA.03.02 and earlier, when SNMP is enabled, allows remot…
|
NVD-CWE-noinfo
|
CVE-2010-2705
|
2024-11-21 10:17 |
2010-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302962
|
- |
|
invensys
|
wonderware_archestra_configuration_access_component_activex_control
wonderware_application_server
|
Stack-based buffer overflow in the IConfigurationAccess interface in the Invensys Wonderware Archestra ConfigurationAccessComponent ActiveX control in Wonderware Application Server (WAS) before 3.1 S…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2974
|
2024-11-21 10:17 |
2010-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302963
|
- |
|
apple
|
iphone_os
|
Integer overflow in IOSurface in Apple iOS before 4.0.2 on the iPhone and iPod touch, and before 3.2.2 on the iPad, allows local users to gain privileges via vectors involving IOSurface properties, a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2973
|
2024-11-21 10:17 |
2010-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302964
|
- |
|
adobe
|
acrobat_reader
acrobat
|
Integer overflow in CoolType.dll in Adobe Reader 8.2.3 and 9.3.3, and Acrobat 9.3.3, allows remote attackers to execute arbitrary code via a TrueType font with a large maxCompositePoints value in a M…
|
CWE-189
Numeric Errors
|
CVE-2010-2862
|
2024-11-21 10:17 |
2010-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302965
|
- |
|
joachim_fritschi
|
phpcas
|
Cross-site scripting (XSS) vulnerability in phpCAS before 1.1.2, when proxy mode is enabled, allows remote attackers to inject arbitrary web script or HTML via a callback URL.
|
CWE-79
Cross-site Scripting
|
CVE-2010-2796
|
2024-11-21 10:17 |
2010-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302966
|
- |
|
joachim_fritschi
|
phpcas
|
phpCAS before 1.1.2 allows remote authenticated users to hijack sessions via a query string containing a crafted ticket value.
|
CWE-20
Improper Input Validation
|
CVE-2010-2795
|
2024-11-21 10:17 |
2010-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302967
|
- |
|
apache
|
http_server
|
mod_proxy in httpd in Apache HTTP Server 2.2.9, when running on Unix, does not close the backend connection if a timeout occurs when reading a response from a persistent connection, which allows remo…
|
CWE-200
Information Exposure
|
CVE-2010-2791
|
2024-11-21 10:17 |
2010-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302968
|
- |
|
nalin_dahyabhai
|
vte
|
The vte_sequence_handler_window_manipulation function in vteseq.c in libvte (aka libvte9) in VTE 0.25.1 and earlier, as used in gnome-terminal, does not properly handle escape sequences, which allows…
|
NVD-CWE-Other
|
CVE-2010-2713
|
2024-11-21 10:17 |
2010-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302969
|
- |
|
hp
|
openview_network_node_manager
|
Stack-based buffer overflow in webappmon.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long OvJavaLocale value in a cookie.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2709
|
2024-11-21 10:17 |
2010-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302970
|
- |
|
avscripts
|
av_arcade
|
SQL injection vulnerability in AV Scripts AV Arcade 3 allows remote attackers to execute arbitrary SQL commands via the ava_code cookie to the "main page," related to index.php and the login task.
|
CWE-89
SQL Injection
|
CVE-2010-2933
|
2024-11-21 10:17 |
2010-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
