|
304401
|
- |
|
apache
debian
canonical
|
openoffice
debian_linux
ubuntu_linux
|
Multiple directory traversal vulnerabilities in OpenOffice.org (OOo) 2.x and 3.x before 3.3 allow remote attackers to overwrite arbitrary files via a .. (dot dot) in an entry in (1) an XSLT JAR filte…
|
CWE-22
Path Traversal
|
CVE-2010-3450
|
2024-11-21 10:18 |
2011-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304402
|
- |
|
linux-pam
|
linux-pam
|
The (1) pam_env and (2) pam_mail modules in Linux-PAM (aka pam) before 1.1.2 use root privileges during read access to files and directories that belong to arbitrary user accounts, which might allow …
|
NVD-CWE-Other
|
CVE-2010-3435
|
2024-11-21 10:18 |
2011-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304403
|
- |
|
linux-pam
|
linux-pam
|
The privilege-dropping implementation in the (1) pam_env and (2) pam_mail modules in Linux-PAM (aka pam) 1.1.2 does not check the return value of the setfsuid system call, which might allow local use…
|
NVD-CWE-Other
|
CVE-2010-3431
|
2024-11-21 10:18 |
2011-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304404
|
- |
|
linux-pam
|
linux-pam
|
The privilege-dropping implementation in the (1) pam_env and (2) pam_mail modules in Linux-PAM (aka pam) 1.1.2 does not perform the required setfsgid and setgroups system calls, which might allow loc…
|
NVD-CWE-Other
|
CVE-2010-3430
|
2024-11-21 10:18 |
2011-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304405
|
- |
|
linux-pam
|
linux-pam
|
The run_coprocess function in pam_xauth.c in the pam_xauth module in Linux-PAM (aka pam) before 1.1.2 does not check the return values of the setuid, setgid, and setgroups system calls, which might a…
|
NVD-CWE-Other
|
CVE-2010-3316
|
2024-11-21 10:18 |
2011-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304406
|
- |
|
oracle
|
fusion_middleware
|
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 9.0, 9.1, 9.2.3, 10.0.2, 10.3.2, and 10.3.3 allows remote attackers to affect confidentiality, integrity,…
|
NVD-CWE-noinfo
|
CVE-2010-3510
|
2024-11-21 10:18 |
2011-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304407
|
- |
|
oracle
|
supply_chain_products_suite
|
Unspecified vulnerability in the Agile Core component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote authenticated users to affect confidentiality via unknown vectors related t…
|
NVD-CWE-noinfo
|
CVE-2010-3505
|
2024-11-21 10:18 |
2011-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304408
|
- |
|
linux
|
linux_kernel
|
include/asm-x86/futex.h in the Linux kernel before 2.6.25 does not properly implement exception fixup, which allows local users to cause a denial of service (panic) via an invalid application that tr…
|
NVD-CWE-Other
|
CVE-2010-3086
|
2024-11-21 10:18 |
2011-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304409
|
- |
|
fribidi
kobi_zamir
|
gnu_fribidi
pyfribidi
|
Buffer overflow in the log2vis_utf8 function in pyfribidi.c in GNU FriBidi 0.19.1, 0.19.2, and possibly other versions, as used in PyFriBidi 0.10.1, allows remote attackers to cause a denial of servi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3444
|
2024-11-21 10:18 |
2011-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304410
|
- |
|
freetype
|
freetype
|
Integer overflow in base/ftstream.c in libXft (aka the X FreeType library) in FreeType before 2.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrar…
|
CWE-189
Numeric Errors
|
CVE-2010-3311
|
2024-11-21 10:18 |
2011-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
