|
301371
|
- |
|
novell
|
groupwise
|
Double free vulnerability in the IMAP server component in GroupWise Internet Agent (GWIA) in Novell GroupWise before 8.02HP allows remote attackers to execute arbitrary code via a large parameter in …
|
CWE-399
Resource Management Errors
|
CVE-2010-4711
|
2024-11-21 10:21 |
2011-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301372
|
- |
|
apache
|
openoffice
|
Heap-based buffer overflow in Impress in OpenOffice.org (OOo) 2.x and 3.x before 3.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a …
|
CWE-787
Out-of-bounds Write
|
CVE-2010-4643
|
2024-11-21 10:21 |
2011-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301373
|
- |
|
yahoo
|
yui
|
Cross-site scripting (XSS) vulnerability in the addItem method in the Menu widget in YUI before 2.9.0 allows remote attackers to inject arbitrary web script or HTML via a field that is added to a men…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4710
|
2024-11-21 10:21 |
2011-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301374
|
- |
|
automatedsolutions
|
modbus\/tcp_master_opc_server
|
Heap-based buffer overflow in Automated Solutions Modbus/TCP Master OPC Server before 3.0.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a MODB…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-4709
|
2024-11-21 10:21 |
2011-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301375
|
- |
|
mozilla
|
bugzilla
|
CRLF injection vulnerability in chart.cgi in Bugzilla before 3.2.10, 3.4.x before 3.4.10, 3.6.x before 3.6.4, and 4.0.x before 4.0rc2 allows remote attackers to inject arbitrary HTTP headers and cond…
|
CWE-94
Code Injection
|
CVE-2010-4572
|
2024-11-21 10:21 |
2011-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301376
|
- |
|
mozilla
|
bugzilla
|
Cross-site scripting (XSS) vulnerability in the duplicate-detection functionality in Bugzilla 3.7.1, 3.7.2, 3.7.3, and 4.0rc1 allows remote attackers to inject arbitrary web script or HTML via the su…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4570
|
2024-11-21 10:21 |
2011-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301377
|
- |
|
mozilla
|
bugzilla
|
Cross-site scripting (XSS) vulnerability in Bugzilla 3.7.1, 3.7.2, 3.7.3, and 4.0rc1 allows remote attackers to inject arbitrary web script or HTML via the real name field of a user account, related …
|
CWE-79
Cross-site Scripting
|
CVE-2010-4569
|
2024-11-21 10:21 |
2011-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301378
|
- |
|
mozilla
|
bugzilla
|
Bugzilla 2.14 through 2.22.7; 3.0.x, 3.1.x, and 3.2.x before 3.2.10; 3.4.x before 3.4.10; 3.6.x before 3.6.4; and 4.0.x before 4.0rc2 does not properly generate random values for cookies and tokens, …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-4568
|
2024-11-21 10:21 |
2011-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301379
|
- |
|
mozilla
|
bugzilla
|
Bugzilla before 3.2.10, 3.4.x before 3.4.10, 3.6.x before 3.6.4, and 4.0.x before 4.0rc2 does not properly handle whitespace preceding a (1) javascript: or (2) data: URI, which allows remote attacker…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4567
|
2024-11-21 10:21 |
2011-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301380
|
- |
|
linux-pam
|
linux-pam
|
The pam_env module in Linux-PAM (aka pam) 1.1.2 and earlier reads the .pam_environment file in a user's home directory, which might allow local users to run programs with an unintended environment by…
|
NVD-CWE-Other
|
CVE-2010-4708
|
2024-11-21 10:21 |
2011-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
