|
303061
|
5.5 |
MEDIUM
Local
|
linux
vmware
canonical
suse
|
linux_kernel
esx
ubuntu_linux
suse_linux_enterprise_server
suse_linux_enterprise_desktop
linux_enterprise_high_availability_extension
|
The mext_check_arguments function in fs/ext4/move_extent.c in the Linux kernel before 2.6.35 allows local users to overwrite an append-only file via a MOVE_EXT ioctl call that specifies this file as …
|
NVD-CWE-noinfo
|
CVE-2010-2066
|
2024-11-21 10:15 |
2010-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303062
|
- |
|
apple
|
quicktime
|
The IPersistPropertyBag2::Read function in QTPlugin.ocx in Apple QuickTime 6.x, 7.x before 7.6.8, and other versions allows remote attackers to execute arbitrary code via the _Marshaled_pUnk attribut…
|
CWE-824
Access of Uninitialized Pointer
|
CVE-2010-1818
|
2024-11-21 10:15 |
2010-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303063
|
- |
|
apple
|
apple_type_services
mac_os_x
mac_os_x_server
|
Stack-based buffer overflow in Apple Type Services (ATS) in Apple Mac OS X 10.5.8 and 10.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1808
|
2024-11-21 10:15 |
2010-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303064
|
- |
|
apple
|
libsecurity
mac_os_x
mac_os_x_server
|
libsecurity in Apple Mac OS X 10.5.8 and 10.6.4 does not properly perform comparisons to domain-name strings in X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a…
|
CWE-287
Improper Authentication
|
CVE-2010-1802
|
2024-11-21 10:15 |
2010-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303065
|
- |
|
apple
|
coregraphics
mac_os_x
mac_os_x_server
|
Heap-based buffer overflow in CoreGraphics in Apple Mac OS X 10.5.8 and 10.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF fil…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1801
|
2024-11-21 10:15 |
2010-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303066
|
- |
|
apple
|
cfnetwork
mac_os_x
mac_os_x_server
|
CFNetwork in Apple Mac OS X 10.6.3 and 10.6.4 supports anonymous SSL and TLS connections, which allows man-in-the-middle attackers to redirect a connection and obtain sensitive information via crafte…
|
CWE-200
Information Exposure
|
CVE-2010-1800
|
2024-11-21 10:15 |
2010-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303067
|
- |
|
apple
|
itunes
|
Untrusted search path vulnerability in Apple iTunes before 9.1, when running on Windows 7, Vista, and XP, allows local users and possibly remote attackers to gain privileges via a Trojan horse DLL in…
|
NVD-CWE-Other
|
CVE-2010-1795
|
2024-11-21 10:15 |
2010-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303068
|
- |
|
apple
|
itunes
|
Unspecified vulnerability in Apple iTunes before 9.1 allows local users to gain console privileges via vectors related to log files, "insecure file operation," and syncing an iPhone, iPad, or iPod to…
|
NVD-CWE-noinfo
|
CVE-2010-1768
|
2024-11-21 10:15 |
2010-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303069
|
- |
|
apple
|
webkit
|
loader/DocumentThreadableLoader.cpp in the XMLHttpRequest implementation in WebCore in WebKit before r58409 does not properly handle credentials during a cross-origin synchronous request, which has u…
|
CWE-255
Credentials Management
|
CVE-2010-1760
|
2024-11-21 10:15 |
2010-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303070
|
9.8 |
CRITICAL
Network
|
apache
|
cxf
|
Apache CXF 2.0.x before 2.0.13, 2.1.x before 2.1.10, and 2.2.x before 2.2.9, as used in Apache ServiceMix, Apache Camel, Apache Chemistry, Apache jUDDI, Apache Geronimo, and other products, does not …
|
CWE-829
Inclusion of Functionality from Untrusted Control Sphere
|
CVE-2010-2076
|
2024-11-21 10:15 |
2010-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
