|
304261
|
- |
|
linux-pam
|
linux-pam
|
The privilege-dropping implementation in the (1) pam_env and (2) pam_mail modules in Linux-PAM (aka pam) 1.1.2 does not perform the required setfsgid and setgroups system calls, which might allow loc…
|
NVD-CWE-Other
|
CVE-2010-3430
|
2024-11-21 10:18 |
2011-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304262
|
- |
|
linux-pam
|
linux-pam
|
The run_coprocess function in pam_xauth.c in the pam_xauth module in Linux-PAM (aka pam) before 1.1.2 does not check the return values of the setuid, setgid, and setgroups system calls, which might a…
|
NVD-CWE-Other
|
CVE-2010-3316
|
2024-11-21 10:18 |
2011-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304263
|
- |
|
oracle
|
fusion_middleware
|
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 9.0, 9.1, 9.2.3, 10.0.2, 10.3.2, and 10.3.3 allows remote attackers to affect confidentiality, integrity,…
|
NVD-CWE-noinfo
|
CVE-2010-3510
|
2024-11-21 10:18 |
2011-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304264
|
- |
|
oracle
|
supply_chain_products_suite
|
Unspecified vulnerability in the Agile Core component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote authenticated users to affect confidentiality via unknown vectors related t…
|
NVD-CWE-noinfo
|
CVE-2010-3505
|
2024-11-21 10:18 |
2011-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304265
|
- |
|
linux
|
linux_kernel
|
include/asm-x86/futex.h in the Linux kernel before 2.6.25 does not properly implement exception fixup, which allows local users to cause a denial of service (panic) via an invalid application that tr…
|
NVD-CWE-Other
|
CVE-2010-3086
|
2024-11-21 10:18 |
2011-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304266
|
- |
|
fribidi
kobi_zamir
|
gnu_fribidi
pyfribidi
|
Buffer overflow in the log2vis_utf8 function in pyfribidi.c in GNU FriBidi 0.19.1, 0.19.2, and possibly other versions, as used in PyFriBidi 0.10.1, allows remote attackers to cause a denial of servi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3444
|
2024-11-21 10:18 |
2011-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304267
|
- |
|
freetype
|
freetype
|
Integer overflow in base/ftstream.c in libXft (aka the X FreeType library) in FreeType before 2.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrar…
|
CWE-189
Numeric Errors
|
CVE-2010-3311
|
2024-11-21 10:18 |
2011-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304268
|
- |
|
netwin
|
surgemail
|
Cross-site scripting (XSS) vulnerability in NetWin Surgemail before 4.3g allows remote attackers to inject arbitrary web script or HTML via the username_ex parameter to the surgeweb program.
|
CWE-79
Cross-site Scripting
|
CVE-2010-3201
|
2024-11-21 10:18 |
2011-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304269
|
- |
|
linux
|
linux_kernel
|
drivers/platform/x86/thinkpad_acpi.c in the Linux kernel before 2.6.34 on ThinkPad devices, when the X.Org X server is used, does not properly restrict access to the video output control state, which…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3448
|
2024-11-21 10:18 |
2011-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304270
|
- |
|
intel
symantec
|
intel_alert_management_system
antivirus
endpoint_protection
|
The GetStringAMSHandler function in prgxhndl.dll in hndlrsvc.exe in the Intel Alert Handler service (aka Symantec Intel Handler service) in Intel Alert Management System (AMS), as used in Symantec An…
|
CWE-20
Improper Input Validation
|
CVE-2010-3268
|
2024-11-21 10:18 |
2010-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
