|
304961
|
- |
|
infradead
|
openconnect
|
OpenConnect before 2.25 does not properly validate X.509 certificates, which allows man-in-the-middle attackers to spoof arbitrary AnyConnect SSL VPN servers via a crafted server certificate that (1)…
|
CWE-20
Improper Input Validation
|
CVE-2010-3901
|
2024-11-21 10:19 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304962
|
- |
|
christian_dywan
|
midori
|
Midori before 0.2.5, when WebKitGTK+ before 1.1.14 or LibSoup before 2.29.91 is used, does not verify X.509 certificates, which allows man-in-the-middle attackers to spoof arbitrary https web sites v…
|
NVD-CWE-Other
|
CVE-2010-3900
|
2024-11-21 10:19 |
2010-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304963
|
- |
|
redhat
|
enterprise_mrg
|
lib/MessageStoreImpl.cpp in Red Hat Enterprise MRG before 1.2.2 allows remote authenticated users to cause a denial of service (stack memory exhaustion and broker crash) via a large persistent messag…
|
CWE-399
Resource Management Errors
|
CVE-2010-3701
|
2024-11-21 10:19 |
2010-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304964
|
- |
|
microsoft
|
windows
|
Unspecified vulnerability in Microsoft Windows on 32-bit platforms allows local users to gain privileges via unknown vectors, as exploited in the wild in July 2010 by the Stuxnet worm, and identified…
|
NVD-CWE-noinfo
|
CVE-2010-3889
|
2024-11-21 10:19 |
2010-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304965
|
- |
|
microsoft
|
windows
|
Unspecified vulnerability in Microsoft Windows on 32-bit platforms allows local users to gain privileges via unknown vectors, as exploited in the wild in July 2010 by the Stuxnet worm, and identified…
|
NVD-CWE-noinfo
|
CVE-2010-3888
|
2024-11-21 10:19 |
2010-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304966
|
- |
|
apple
|
mail
|
The Limit Mail feature in the Parental Controls functionality in Mail on Apple Mac OS X does not properly enforce the correspondence whitelist, which allows remote attackers to bypass intended access…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3887
|
2024-11-21 10:19 |
2010-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304967
|
- |
|
microsoft
|
internet_explorer
|
The CTimeoutEventList::InsertIntoTimeoutList function in Microsoft mshtml.dll uses a certain pointer value as part of producing Timer ID values for the setTimeout and setInterval methods in VBScript …
|
CWE-200
Information Exposure
|
CVE-2010-3886
|
2024-11-21 10:19 |
2010-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304968
|
- |
|
cmsmadesimple
|
cms_made_simple
|
Cross-site request forgery (CSRF) vulnerability in CMS Made Simple 1.8.1 and earlier allows remote attackers to hijack the authentication of administrators for requests that reset the administrative …
|
CWE-352
Origin Validation Error
|
CVE-2010-3884
|
2024-11-21 10:19 |
2010-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304969
|
- |
|
cmsmadesimple
|
cms_made_simple
|
Cross-site request forgery (CSRF) vulnerability in the Change Group Permissions module in CMS Made Simple 1.7.1 and earlier allows remote attackers to hijack the authentication of arbitrary users for…
|
CWE-352
Origin Validation Error
|
CVE-2010-3883
|
2024-11-21 10:19 |
2010-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304970
|
- |
|
cmsmadesimple
|
cms_made_simple
|
Multiple cross-site scripting (XSS) vulnerabilities in CMS Made Simple 1.7.1 and earlier allow remote attackers to inject arbitrary web script or HTML via input to the (1) Add Pages, (2) Add Global C…
|
CWE-79
Cross-site Scripting
|
CVE-2010-3882
|
2024-11-21 10:19 |
2010-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
