|
302741
|
7.5 |
HIGH
Network
|
edgewall
debian
|
trac
debian_linux
|
Trac 0.11.6 does not properly check workflow permissions before modifying a ticket. This can be exploited by an attacker to change the status and resolution of tickets without having proper permissio…
|
CWE-276
Incorrect Default Permissions
|
CVE-2010-5108
|
2024-11-21 10:22 |
2019-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302742
|
- |
|
avast\!
|
avast\!_internet_security
|
Integer overflow in aswFW.sys 5.0.594.0 in Avast! Internet Security 5.0 Korean Trial allows local users to cause a denial of service (memory corruption and panic) via a crafted IOCTL_ASWFW_COMM_PIDIN…
|
CWE-189
Numeric Errors
|
CVE-2010-5075
|
2024-11-21 10:22 |
2014-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302743
|
- |
|
tremulous
openarena
ioquake3
|
tremulous
openarena
ioquake3_engine
|
server/sv_main.c in Quake3 Arena, as used in ioquake3 before r1762, OpenArena, Tremulous, and other products, allows remote attackers to cause a denial of service (network traffic amplification) via …
|
CWE-20
Improper Input Validation
|
CVE-2010-5077
|
2024-11-21 10:22 |
2014-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302744
|
- |
|
freedesktop
|
poppler
|
DCTStream.cc in Poppler before 0.13.3 allows remote attackers to cause a denial of service (crash) via a crafted PDF file.
|
CWE-20
Improper Input Validation
|
CVE-2010-5110
|
2024-11-21 10:22 |
2014-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302745
|
- |
|
binarymoon
|
timthumb
|
Cross-site scripting (XSS) vulnerability in the displayError function in timthumb.php in TimThumb before 1.15 (r85), as used in multiple products, allows remote attackers to inject arbitrary web scri…
|
CWE-79
Cross-site Scripting
|
CVE-2010-5303
|
2024-11-21 10:22 |
2014-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302746
|
- |
|
binarymoon
|
timthumb
|
Cross-site scripting (XSS) vulnerability in timthumb.php in TimThumb before 1.15 as of 20100908 (r88), as used in multiple products, allows remote attackers to inject arbitrary web script or HTML via…
|
CWE-79
Cross-site Scripting
|
CVE-2010-5302
|
2024-11-21 10:22 |
2014-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302747
|
- |
|
echoping_project
|
echoping
|
Multiple buffer overflows in readline.c in Echoping 6.0.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted reply in the (1) TLS_readline o…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-5111
|
2024-11-21 10:22 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302748
|
- |
|
senkas
|
kolibri
|
Stack-based buffer overflow in Kolibri 2.0 allows remote attackers to execute arbitrary code via a long URI in a HEAD request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-5301
|
2024-11-21 10:22 |
2014-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302749
|
- |
|
jzip
|
jzip
|
Stack-based buffer overflow in Jzip 1.3 through 2.0.0.132900 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long file name in a zip archive.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-5300
|
2024-11-21 10:22 |
2014-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302750
|
- |
|
microp_project
|
microp
|
Stack-based buffer overflow in MicroP 0.1.1.1600 allows remote attackers to execute arbitrary code via a crafted .mppl file. NOTE: it has been reported that the overflow is in the lpFileName paramet…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-5299
|
2024-11-21 10:22 |
2014-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
