|
301181
|
- |
|
novell
|
zenworks_handheld_management
|
Heap-based buffer overflow in ZfHIPCND.exe in Novell Zenworks 7 Handheld Management (ZHM) allows remote attackers to execute arbitrary code via a crafted request to TCP port 2400.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-4299
|
2024-11-21 10:20 |
2010-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301182
|
7.8 |
HIGH
Local
|
freebsd
|
freebsd
|
The pfs_getextattr function in FreeBSD 7.x before 7.3-RELEASE and 8.x before 8.0-RC1 unlocks a mutex that was not previously locked, which allows local users to cause a denial of service (kernel pani…
|
CWE-667
Improper Locking
|
CVE-2010-4210
|
2024-11-21 10:20 |
2010-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301183
|
- |
|
mono
|
mono
|
Untrusted search path vulnerability in metadata/loader.c in Mono 2.8 and earlier allows local users to gain privileges via a Trojan horse shared library in the current working directory.
|
NVD-CWE-Other
|
CVE-2010-4159
|
2024-11-21 10:20 |
2010-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301184
|
- |
|
hp
|
laserjet_4200
laserjet_4100
color_laserjet_mfp
laserjet_mfp
9000
laserjet_5100
laserjet_8150
laserjet_4300
|
The default configuration of the PJL Access value in the File System External Access settings on HP LaserJet MFP printers, Color LaserJet MFP printers, and LaserJet 4100, 4200, 4300, 5100, 8150, and …
|
CWE-22
Path Traversal
|
CVE-2010-4107
|
2024-11-21 10:20 |
2010-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301185
|
- |
|
spreecommerce
|
spree
|
Spree 0.11.x before 0.11.2 and 0.30.x before 0.30.0 exchanges data using JavaScript Object Notation (JSON) without a mechanism for validating requests, which allows remote attackers to obtain sensiti…
|
CWE-200
Information Exposure
|
CVE-2010-3978
|
2024-11-21 10:20 |
2010-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301186
|
7.5 |
HIGH
Network
|
openttd
fedoraproject
|
openttd
fedora
|
Multiple use-after-free vulnerabilities in OpenTTD 1.0.x before 1.0.5 allow (1) remote attackers to cause a denial of service (invalid write and daemon crash) by abruptly disconnecting during transmi…
|
CWE-416
Use After Free
|
CVE-2010-4168
|
2024-11-21 10:20 |
2010-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301187
|
- |
|
ibm
|
director_agent
|
reset_diragent_keys in the Common agent in IBM Systems Director 6.2.0 has 754 permissions, which allows local users to gain privileges by leveraging system group membership.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-4274
|
2024-11-21 10:20 |
2010-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301188
|
- |
|
accimoveis
|
descargarvista_acc_imoveis
|
SQL injection vulnerability in imoveis.php in DescargarVista ACC IMoveis 1.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2010-4273
|
2024-11-21 10:20 |
2010-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301189
|
- |
|
pulseinfotech
|
com_sponsorwall
|
SQL injection vulnerability in the Pulse Infotech Sponsor Wall (com_sponsorwall) component 1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.p…
|
CWE-89
SQL Injection
|
CVE-2010-4272
|
2024-11-21 10:20 |
2010-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301190
|
- |
|
impresscms
|
impresscms
|
SQL injection vulnerability in ImpressCMS before 1.2.3 RC2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2010-4271
|
2024-11-21 10:20 |
2010-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
