|
304591
|
- |
|
linux-pam
|
linux-pam
|
The run_coprocess function in pam_xauth.c in the pam_xauth module in Linux-PAM (aka pam) before 1.1.2 does not check the return values of the setuid, setgid, and setgroups system calls, which might a…
|
NVD-CWE-Other
|
CVE-2010-3316
|
2024-11-21 10:18 |
2011-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304592
|
- |
|
oracle
|
fusion_middleware
|
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 9.0, 9.1, 9.2.3, 10.0.2, 10.3.2, and 10.3.3 allows remote attackers to affect confidentiality, integrity,…
|
NVD-CWE-noinfo
|
CVE-2010-3510
|
2024-11-21 10:18 |
2011-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304593
|
- |
|
oracle
|
supply_chain_products_suite
|
Unspecified vulnerability in the Agile Core component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote authenticated users to affect confidentiality via unknown vectors related t…
|
NVD-CWE-noinfo
|
CVE-2010-3505
|
2024-11-21 10:18 |
2011-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304594
|
- |
|
linux
|
linux_kernel
|
include/asm-x86/futex.h in the Linux kernel before 2.6.25 does not properly implement exception fixup, which allows local users to cause a denial of service (panic) via an invalid application that tr…
|
NVD-CWE-Other
|
CVE-2010-3086
|
2024-11-21 10:18 |
2011-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304595
|
- |
|
fribidi
kobi_zamir
|
gnu_fribidi
pyfribidi
|
Buffer overflow in the log2vis_utf8 function in pyfribidi.c in GNU FriBidi 0.19.1, 0.19.2, and possibly other versions, as used in PyFriBidi 0.10.1, allows remote attackers to cause a denial of servi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3444
|
2024-11-21 10:18 |
2011-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304596
|
- |
|
freetype
|
freetype
|
Integer overflow in base/ftstream.c in libXft (aka the X FreeType library) in FreeType before 2.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrar…
|
CWE-189
Numeric Errors
|
CVE-2010-3311
|
2024-11-21 10:18 |
2011-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304597
|
- |
|
netwin
|
surgemail
|
Cross-site scripting (XSS) vulnerability in NetWin Surgemail before 4.3g allows remote attackers to inject arbitrary web script or HTML via the username_ex parameter to the surgeweb program.
|
CWE-79
Cross-site Scripting
|
CVE-2010-3201
|
2024-11-21 10:18 |
2011-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304598
|
- |
|
linux
|
linux_kernel
|
drivers/platform/x86/thinkpad_acpi.c in the Linux kernel before 2.6.34 on ThinkPad devices, when the X.Org X server is used, does not properly restrict access to the video output control state, which…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3448
|
2024-11-21 10:18 |
2011-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304599
|
- |
|
intel
symantec
|
intel_alert_management_system
antivirus
endpoint_protection
|
The GetStringAMSHandler function in prgxhndl.dll in hndlrsvc.exe in the Intel Alert Handler service (aka Symantec Intel Handler service) in Intel Alert Management System (AMS), as used in Symantec An…
|
CWE-20
Improper Input Validation
|
CVE-2010-3268
|
2024-11-21 10:18 |
2010-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304600
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6, 7, and 8 does not prevent rendering of cached content as HTML, which allows remote attackers to access content from a different (1) domain or (2) zone via unspecified s…
|
CWE-200
Information Exposure
|
CVE-2010-3348
|
2024-11-21 10:18 |
2010-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
