|
301171
|
- |
|
apple
|
iphone_os
|
Heap-based buffer overflow in the GSM mobility management implementation in Telephony in Apple iOS before 4.2 on the iPhone and iPad allows remote attackers to execute arbitrary code on the baseband …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3832
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301172
|
- |
|
apple
|
iphone_os
|
Photos in Apple iOS before 4.2 enables support for HTTP Basic Authentication over an unencrypted connection, which allows man-in-the-middle attackers to read MobileMe account passwords by spoofing a …
|
CWE-200
Information Exposure
|
CVE-2010-3831
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301173
|
- |
|
apple
|
iphone_os
|
Networking in Apple iOS before 4.2 accesses an invalid pointer during the processing of packet filter rules, which allows local users to gain privileges via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3830
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301174
|
- |
|
apple
|
iphone_os
|
WebKit in Apple iOS before 4.2 allows remote attackers to bypass the remote image loading setting in Mail via an HTML LINK element with a DNS prefetching property, as demonstrated by an HTML e-mail m…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3829
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301175
|
- |
|
apple
|
iphone_os
|
iAd Content Display in Apple iOS before 4.2 allows man-in-the-middle attackers to make calls via a crafted URL in an ad.
|
NVD-CWE-Other
|
CVE-2010-3828
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301176
|
- |
|
apple
|
iphone_os
|
Apple iOS before 4.2 does not properly validate signatures before displaying a configuration profile in the configuration installation utility, which allows remote attackers to spoof profiles via uns…
|
CWE-20
Improper Input Validation
|
CVE-2010-3827
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301177
|
- |
|
freetype
|
freetype
|
Heap-based buffer overflow in the Ins_SHZ function in ttinterp.c in FreeType 2.4.3 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3814
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301178
|
- |
|
linux
fedoraproject
debian
canonical
|
linux_kernel
fedora
debian_linux
ubuntu_linux
|
The sctp_auth_asoc_get_hmac function in net/sctp/auth.c in the Linux kernel before 2.6.36 does not properly validate the hmac_ids array of an SCTP peer, which allows remote attackers to cause a denia…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2010-3705
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301179
|
- |
|
linux
fedoraproject
|
linux_kernel
fedora
|
The KVM implementation in the Linux kernel before 2.6.36 does not properly reload the FS and GS segment registers, which allows host OS users to cause a denial of service (host OS crash) via a KVM_RU…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2010-3698
|
2024-11-21 10:19 |
2010-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301180
|
- |
|
apple
|
safari
webkit
|
WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, does not properly perform a cast of an unspecified variable during processing of colo…
|
NVD-CWE-Other
|
CVE-2010-3826
|
2024-11-21 10:19 |
2010-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
