|
299521
|
- |
|
citrix
|
xen
|
The fixup_page_fault function in arch/x86/traps.c in Xen 4.0.1 and earlier on 64-bit platforms, when paravirtualization is enabled, does not verify that kernel mode is used to call the handle_gdt_ldt…
|
NVD-CWE-Other
|
CVE-2010-4255
|
2024-11-21 10:20 |
2011-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299522
|
- |
|
linux
|
linux_kernel
|
fs/exec.c in the Linux kernel before 2.6.37 does not enable the OOM Killer to assess use of stack memory by arrays representing the (1) arguments and (2) environment, which allows local users to caus…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2010-4243
|
2024-11-21 10:20 |
2011-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299523
|
- |
|
citrix
|
xen
|
The vbd_create function in Xen 3.1.2, when the Linux kernel 2.6.18 on Red Hat Enterprise Linux (RHEL) 5 is used, allows guest OS users to cause a denial of service (host OS panic) via an attempted ac…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-4238
|
2024-11-21 10:20 |
2011-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299524
|
- |
|
redhat
|
icedtea
|
The JNLP SecurityManager in IcedTea (IcedTea.so) 1.7 before 1.7.7, 1.8 before 1.8.4, and 1.9 before 1.9.4 for Java OpenJDK returns from the checkPermission method instead of throwing an exception in …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-4351
|
2024-11-21 10:20 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299525
|
- |
|
jwilk
|
ocrodjvu
|
ocrodjvu 0.4.6-1 on Debian GNU/Linux allows local users to modify arbitrary files via a symlink attack on temporary files that are generated when Cuneiform is invoked as the OCR engine.
|
CWE-59
Link Following
|
CVE-2010-4338
|
2024-11-21 10:20 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299526
|
- |
|
seopanel
|
seopanel
|
Multiple cross-site scripting (XSS) vulnerabilities in Seo Panel 2.2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) default_news or (2) sponsors cookies, which are not pr…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4331
|
2024-11-21 10:20 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299527
|
- |
|
hp
|
linux_imaging_and_printing_project
|
Stack-based buffer overflow in the hpmud_get_pml function in io/hpmud/pml.c in Hewlett-Packard Linux Imaging and Printing (HPLIP) 1.6.7, 3.9.8, 3.10.9, and probably other versions allows remote attac…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-4267
|
2024-11-21 10:20 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299528
|
- |
|
otrs
|
otrs
|
Cross-site scripting (XSS) vulnerability in AgentTicketZoom in OTRS 2.4.x before 2.4.9, when RichText is enabled, allows remote attackers to inject arbitrary web script or HTML via JavaScript in an H…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4071
|
2024-11-21 10:20 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299529
|
- |
|
oracle
|
peoplesoft_and_jdedwards_product_suite
|
Unspecified vulnerability in the PeopleSoft Enterprise HRMS component in Oracle PeopleSoft and JDEdwards Suite 8.9 Bundle #23, 9.0 Bundle #14, and 9.1 Bundle #4 allows remote authenticated users to a…
|
NVD-CWE-noinfo
|
CVE-2010-4461
|
2024-11-21 10:20 |
2011-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299530
|
- |
|
sun
|
sunos
|
Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality and integrity via unknown vectors related to Fault Manager Daemon.
|
NVD-CWE-noinfo
|
CVE-2010-4460
|
2024-11-21 10:20 |
2011-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
