|
305601
|
- |
|
linux
|
linux_kernel
|
The pipe_fcntl function in fs/pipe.c in the Linux kernel before 2.6.37 does not properly determine whether a file is a named pipe, which allows local users to cause a denial of service via an F_SETPI…
|
CWE-20
Improper Input Validation
|
CVE-2010-4256
|
2024-11-21 10:20 |
2011-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305602
|
- |
|
menalto
|
gallery
|
Unrestricted file upload vulnerability in modules/gallery/models/item.php in Menalto Gallery before 3.0 and beta allows remote authenticated users with upload permissions to execute arbitrary code by…
|
NVD-CWE-Other
|
CVE-2010-4353
|
2024-11-21 10:20 |
2011-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305603
|
- |
|
fedoraproject
fedorahosted
|
sssd
|
The pam_parse_in_data_v2 function in src/responder/pam/pamsrv_cmd.c in the PAM responder in SSSD 1.5.0, 1.4.x, and 1.3 allows local users to cause a denial of service (infinite loop, crash, and login…
|
CWE-399
Resource Management Errors
|
CVE-2010-4341
|
2024-11-21 10:20 |
2011-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305604
|
- |
|
citrix
|
xen
|
The fixup_page_fault function in arch/x86/traps.c in Xen 4.0.1 and earlier on 64-bit platforms, when paravirtualization is enabled, does not verify that kernel mode is used to call the handle_gdt_ldt…
|
NVD-CWE-Other
|
CVE-2010-4255
|
2024-11-21 10:20 |
2011-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305605
|
- |
|
linux
|
linux_kernel
|
fs/exec.c in the Linux kernel before 2.6.37 does not enable the OOM Killer to assess use of stack memory by arrays representing the (1) arguments and (2) environment, which allows local users to caus…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2010-4243
|
2024-11-21 10:20 |
2011-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305606
|
- |
|
citrix
|
xen
|
The vbd_create function in Xen 3.1.2, when the Linux kernel 2.6.18 on Red Hat Enterprise Linux (RHEL) 5 is used, allows guest OS users to cause a denial of service (host OS panic) via an attempted ac…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-4238
|
2024-11-21 10:20 |
2011-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305607
|
- |
|
redhat
|
icedtea
|
The JNLP SecurityManager in IcedTea (IcedTea.so) 1.7 before 1.7.7, 1.8 before 1.8.4, and 1.9 before 1.9.4 for Java OpenJDK returns from the checkPermission method instead of throwing an exception in …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-4351
|
2024-11-21 10:20 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305608
|
- |
|
jwilk
|
ocrodjvu
|
ocrodjvu 0.4.6-1 on Debian GNU/Linux allows local users to modify arbitrary files via a symlink attack on temporary files that are generated when Cuneiform is invoked as the OCR engine.
|
CWE-59
Link Following
|
CVE-2010-4338
|
2024-11-21 10:20 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305609
|
- |
|
seopanel
|
seopanel
|
Multiple cross-site scripting (XSS) vulnerabilities in Seo Panel 2.2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) default_news or (2) sponsors cookies, which are not pr…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4331
|
2024-11-21 10:20 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305610
|
- |
|
hp
|
linux_imaging_and_printing_project
|
Stack-based buffer overflow in the hpmud_get_pml function in io/hpmud/pml.c in Hewlett-Packard Linux Imaging and Printing (HPLIP) 1.6.7, 3.9.8, 3.10.9, and probably other versions allows remote attac…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-4267
|
2024-11-21 10:20 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
