|
298661
|
7.5 |
HIGH
Network
|
libvncserver_project
fedoraproject
|
libvncserver
fedora
|
A NULL pointer dereference flaw was found in the way LibVNCServer before 0.9.9 handled certain ClientCutText message. A remote attacker could use this flaw to crash the VNC server by sending a specia…
|
CWE-476
NULL Pointer Dereference
|
CVE-2010-5304
|
2024-11-21 10:22 |
2020-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298662
|
7.5 |
HIGH
Network
|
edgewall
debian
|
trac
debian_linux
|
Trac 0.11.6 does not properly check workflow permissions before modifying a ticket. This can be exploited by an attacker to change the status and resolution of tickets without having proper permissio…
|
CWE-276
Incorrect Default Permissions
|
CVE-2010-5108
|
2024-11-21 10:22 |
2019-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298663
|
- |
|
avast\!
|
avast\!_internet_security
|
Integer overflow in aswFW.sys 5.0.594.0 in Avast! Internet Security 5.0 Korean Trial allows local users to cause a denial of service (memory corruption and panic) via a crafted IOCTL_ASWFW_COMM_PIDIN…
|
CWE-189
Numeric Errors
|
CVE-2010-5075
|
2024-11-21 10:22 |
2014-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298664
|
- |
|
tremulous
openarena
ioquake3
|
tremulous
openarena
ioquake3_engine
|
server/sv_main.c in Quake3 Arena, as used in ioquake3 before r1762, OpenArena, Tremulous, and other products, allows remote attackers to cause a denial of service (network traffic amplification) via …
|
CWE-20
Improper Input Validation
|
CVE-2010-5077
|
2024-11-21 10:22 |
2014-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298665
|
- |
|
freedesktop
|
poppler
|
DCTStream.cc in Poppler before 0.13.3 allows remote attackers to cause a denial of service (crash) via a crafted PDF file.
|
CWE-20
Improper Input Validation
|
CVE-2010-5110
|
2024-11-21 10:22 |
2014-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298666
|
- |
|
binarymoon
|
timthumb
|
Cross-site scripting (XSS) vulnerability in the displayError function in timthumb.php in TimThumb before 1.15 (r85), as used in multiple products, allows remote attackers to inject arbitrary web scri…
|
CWE-79
Cross-site Scripting
|
CVE-2010-5303
|
2024-11-21 10:22 |
2014-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298667
|
- |
|
binarymoon
|
timthumb
|
Cross-site scripting (XSS) vulnerability in timthumb.php in TimThumb before 1.15 as of 20100908 (r88), as used in multiple products, allows remote attackers to inject arbitrary web script or HTML via…
|
CWE-79
Cross-site Scripting
|
CVE-2010-5302
|
2024-11-21 10:22 |
2014-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298668
|
- |
|
echoping_project
|
echoping
|
Multiple buffer overflows in readline.c in Echoping 6.0.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted reply in the (1) TLS_readline o…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-5111
|
2024-11-21 10:22 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298669
|
- |
|
senkas
|
kolibri
|
Stack-based buffer overflow in Kolibri 2.0 allows remote attackers to execute arbitrary code via a long URI in a HEAD request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-5301
|
2024-11-21 10:22 |
2014-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298670
|
- |
|
jzip
|
jzip
|
Stack-based buffer overflow in Jzip 1.3 through 2.0.0.132900 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long file name in a zip archive.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-5300
|
2024-11-21 10:22 |
2014-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
