|
308071
|
- |
|
linux
suse
opensuse
debian
canonical
|
linux_kernel
linux_enterprise_desktop
opensuse
linux_enterprise_server
linux_enterprise_real_time_extension
debian_linux
ubuntu_linux
|
The cxgb_extension_ioctl function in drivers/net/cxgb3/cxgb3_main.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a certain structure member, which allows local users to obtain p…
|
CWE-200
Information Exposure
|
CVE-2010-3296
|
2024-11-21 10:18 |
2010-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308072
|
- |
|
blueriver
|
sava_cms
mura_cms
|
Directory traversal vulnerability in fileManager.cfc in Mura CMS 5.1 before 5.1.498 and 5.2 before 5.2.2809, and Sava CMS 5 through 5.2, allows remote attackers to read arbitrary files via a .. (dot …
|
CWE-22
Path Traversal
|
CVE-2010-3468
|
2024-11-21 10:18 |
2010-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308073
|
- |
|
llnl
|
slurm
|
The (1) init.d/slurm and (2) init.d/slurmdbd scripts in SLURM before 2.1.14 place the . (dot) directory in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared l…
|
NVD-CWE-Other
|
CVE-2010-3380
|
2024-11-21 10:18 |
2010-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308074
|
- |
|
linux
debian
canonical
|
linux_kernel
debian_linux
ubuntu_linux
|
Multiple integer signedness errors in net/rose/af_rose.c in the Linux kernel before 2.6.36-rc5-next-20100923 allow local users to cause a denial of service (heap memory corruption) or possibly have u…
|
CWE-189
Numeric Errors
|
CVE-2010-3310
|
2024-11-21 10:18 |
2010-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308075
|
- |
|
drupal
peter_wolanin
|
drupal
openid
|
The OpenID module in Drupal 6.x before 6.18, and the OpenID module 5.x before 5.x-1.4 for Drupal, violates the OpenID 2.0 protocol by not verifying the openid.return_to value, which allows remote att…
|
CWE-287
Improper Authentication
|
CVE-2010-3091
|
2024-11-21 10:18 |
2010-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308076
|
- |
|
sangoma
|
freepbx
|
Directory traversal vulnerability in page.recordings.php in the System Recordings component in the configuration interface in FreePBX 2.8.0 and earlier allows remote authenticated administrators to c…
|
CWE-22
Path Traversal
|
CVE-2010-3490
|
2024-11-21 10:18 |
2010-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308077
|
- |
|
vmware
|
workstation
player
|
The installer in VMware Workstation 7.x before 7.1.2 build 301548 and VMware Player 3.x before 3.1.2 build 301548 renders an index.htm file if present in the installation directory, which might allow…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3277
|
2024-11-21 10:18 |
2010-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308078
|
- |
|
libtiff
opensuse
|
libtiff
opensuse
|
LibTIFF before 3.9.2-5.2.1 in SUSE openSUSE 11.3 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted TIFF image.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3087
|
2024-11-21 10:18 |
2010-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308079
|
- |
|
salvo_g._tomaselli
|
weborf
|
Directory traversal vulnerability in the modURL function in instance.c in Weborf before 0.12.3 allows remote attackers to read arbitrary files via ..%2f sequences in a URI.
|
CWE-22
Path Traversal
|
CVE-2010-3306
|
2024-11-21 10:18 |
2010-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
308080
|
- |
|
dovecot
|
dovecot
|
The ACL plugin in Dovecot 1.2.x before 1.2.13 propagates INBOX ACLs to newly created mailboxes in certain configurations, which might allow remote attackers to read mailboxes that have unintended wea…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3304
|
2024-11-21 10:18 |
2010-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
