|
300771
|
- |
|
hp
|
palm_webos
|
Cross-site scripting (XSS) vulnerability in the Contacts Application in HP Palm webOS before 2.0 allows remote attackers to inject arbitrary web script or HTML via a crafted vCard file.
|
CWE-79
Cross-site Scripting
|
CVE-2010-4109
|
2024-11-21 10:20 |
2010-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300772
|
- |
|
hp
|
hp-ux
|
HP HP-UX B.11.11, B.11.23, and B.11.31 does not properly support threaded processes, which allows remote authenticated users to cause a denial of service via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2010-4108
|
2024-11-21 10:20 |
2010-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300773
|
- |
|
redhat
|
enterprise_mrg
|
The installation documentation for Red Hat Enterprise Messaging, Realtime and Grid (MRG) 1.3 recommends that Condor should be configured so that the MRG Management Console (cumin) can submit jobs for…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-4179
|
2024-11-21 10:20 |
2010-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300774
|
- |
|
dracut_project
udev_project
|
dracut
udev
|
plymouth-pretrigger.sh in dracut and udev, when running on Fedora 13 and 14, sets weak permissions for the /dev/systty device file, which allows remote authenticated users to read terminal data from …
|
CWE-276
Incorrect Default Permissions
|
CVE-2010-4176
|
2024-11-21 10:20 |
2010-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300775
|
- |
|
systemtap
|
systemtap
|
The staprun runtime tool in SystemTap 1.3 does not verify that a module to unload was previously loaded by SystemTap, which allows local users to cause a denial of service (unloading of arbitrary ker…
|
CWE-20
Improper Input Validation
|
CVE-2010-4171
|
2024-11-21 10:20 |
2010-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300776
|
- |
|
systemtap
|
systemtap
|
The staprun runtime tool in SystemTap 1.3 does not properly clear the environment before executing modprobe, which allows local users to gain privileges by setting the MODPROBE_OPTIONS environment va…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-4170
|
2024-11-21 10:20 |
2010-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300777
|
- |
|
php
|
php
|
Double free vulnerability in the imap_do_open function in the IMAP extension (ext/imap/php_imap.c) in PHP 5.2 before 5.2.15 and 5.3 before 5.3.4 allows attackers to cause a denial of service (memory …
|
CWE-399
Resource Management Errors
|
CVE-2010-4150
|
2024-11-21 10:20 |
2010-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300778
|
- |
|
bsdperimeter
|
pfsense
|
Multiple cross-site scripting (XSS) vulnerabilities in pfSense 2 beta 4 allow remote attackers to inject arbitrary web script or HTML via (1) the id parameter in an olsrd.xml action to pkg_edit.php, …
|
CWE-79
Cross-site Scripting
|
CVE-2010-4412
|
2024-11-21 10:20 |
2010-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300779
|
- |
|
pulsecms
|
pulse_cms
|
Directory traversal vulnerability in includes/controller.php in Pulse CMS Basic before 1.2.9 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the p parameter…
|
CWE-22
Path Traversal
|
CVE-2010-4330
|
2024-11-21 10:20 |
2010-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300780
|
- |
|
clamav
|
clamav
|
Off-by-one error in the icon_cb function in pe_icons.c in libclamav in ClamAV before 0.96.5 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly …
|
CWE-189
Numeric Errors
|
CVE-2010-4261
|
2024-11-21 10:20 |
2010-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
