|
305231
|
- |
|
apple
|
cups
|
The cgi_initialize_string function in cgi-bin/var.c in the web interface in CUPS before 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 before 10.6.4, and other platforms, does not properly ha…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1748
|
2024-11-21 10:15 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305232
|
- |
|
w3m
|
w3m
|
istream.c in w3m 0.5.2 and possibly other versions, when ssl_verify_server is enabled, does not properly handle a '\0' character in a domain name in the (1) subject's Common Name or (2) Subject Alter…
|
CWE-20
Improper Input Validation
|
CVE-2010-2074
|
2024-11-21 10:15 |
2010-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305233
|
7.5 |
HIGH
Network
|
debian
|
pyftpd
|
auth_db_config.py in Pyftpd 0.8.4 contains hard-coded usernames and passwords for the (1) test, (2) user, and (3) roxon accounts, which allows remote attackers to read arbitrary files from the FTP se…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2010-2073
|
2024-11-21 10:15 |
2010-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305234
|
- |
|
radovan_garabik
|
pyftpd
|
Pyftpd 0.8.4 creates log files with predictable names in a temporary directory, which allows local users to cause a denial of service and obtain sensitive information.
|
CWE-310
Cryptographic Issues
|
CVE-2010-2072
|
2024-11-21 10:15 |
2010-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305235
|
- |
|
linux
|
linux_kernel
|
The btrfs_xattr_set_acl function in fs/btrfs/acl.c in btrfs in the Linux kernel 2.6.34 and earlier does not check file ownership before setting an ACL, which allows local users to bypass file permiss…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2071
|
2024-11-21 10:15 |
2010-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305236
|
- |
|
xensource
|
xen
|
arch/ia64/xen/faults.c in Xen 3.4 and 4.0 in Linux kernel 2.6.18, and possibly other kernel versions, when running on IA-64 architectures, allows local users to cause a denial of service and "turn on…
|
NVD-CWE-Other
|
CVE-2010-2070
|
2024-11-21 10:15 |
2010-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305237
|
- |
|
xnview
|
xnview
|
Heap-based buffer overflow in XnView 1.97.4 and possibly earlier allows remote attackers to execute arbitrary code via a MultiBitMap (MBM) file with a Paint Data Section that contains a malformed Enc…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1932
|
2024-11-21 10:15 |
2010-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305238
|
- |
|
standards_based_linux_instrumentation
|
sblim-sfcb
|
Integer overflow in httpAdapter.c in httpAdapter in SBLIM SFCB 1.3.4 through 1.3.7, when the configuration sets httpMaxContentLength to a zero value, allows remote attackers to cause a denial of serv…
|
CWE-189
Numeric Errors
|
CVE-2010-2054
|
2024-11-21 10:15 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305239
|
- |
|
standards_based_linux_instrumentation
|
sblim-sfcb
|
Heap-based buffer overflow in httpAdapter.c in httpAdapter in SBLIM SFCB before 1.3.8 might allow remote attackers to execute arbitrary code via a Content-Length HTTP header that specifies a value to…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1937
|
2024-11-21 10:15 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305240
|
- |
|
unrealircd
|
unrealircd
|
UnrealIRCd 3.2.8.1, as distributed on certain mirror sites from November 2009 through June 2010, contains an externally introduced modification (Trojan Horse) in the DEBUG3_DOLOG_SYSTEM macro, which …
|
CWE-20
Improper Input Validation
|
CVE-2010-2075
|
2024-11-21 10:15 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
