|
309501
|
- |
|
novell
|
suse_linux
|
WebYaST in yast2-webclient in SUSE Linux Enterprise (SLE) 11 on the WebYaST appliance uses a fixed secret key that is embedded in the appliance's image, which allows remote attackers to spoof session…
|
CWE-255
Credentials Management
|
CVE-2010-1507
|
2024-11-21 10:14 |
2010-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309502
|
- |
|
novell
|
suse_lifecycle_management_server
|
Cross-site request forgery (CSRF) vulnerability in the apache2-slms package in SUSE Lifecycle Management Server (SLMS) 1.0 on SUSE Linux Enterprise (SLE) 11 allows remote attackers to hijack the auth…
|
CWE-352
Origin Validation Error
|
CVE-2010-1325
|
2024-11-21 10:14 |
2010-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309503
|
- |
|
mono-project
|
libgdiplus
|
Multiple integer overflows in libgdiplus 2.6.7, as used in Mono, allow attackers to execute arbitrary code via (1) a crafted TIFF file, related to the gdip_load_tiff_image function in tiffcodec.c; (2…
|
CWE-189
Numeric Errors
|
CVE-2010-1526
|
2024-11-21 10:14 |
2010-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309504
|
- |
|
cacti
|
cacti
|
Cacti before 0.8.7f, as used in Red Hat High Performance Computing (HPC) Solution and other products, allows remote authenticated administrators to execute arbitrary commands via shell metacharacters…
|
CWE-20
Improper Input Validation
|
CVE-2010-1645
|
2024-11-21 10:14 |
2010-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309505
|
- |
|
cacti
|
cacti
|
Multiple cross-site scripting (XSS) vulnerabilities in Cacti before 0.8.7f, as used in Red Hat High Performance Computing (HPC) Solution and other products, allow remote attackers to inject arbitrary…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1644
|
2024-11-21 10:14 |
2010-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309506
|
- |
|
novell
|
iprint
|
Stack-based buffer overflow in Novell iPrint Client before 5.44 allows remote attackers to execute arbitrary code via a long call-back-url parameter in an op-client-interface-version action.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1527
|
2024-11-21 10:14 |
2010-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309507
|
- |
|
apple
|
webkit
|
page/Geolocation.cpp in WebCore in WebKit before r56188 and before 1.2.5 does not properly restrict access to the lastPosition function, which has unspecified impact and remote attack vectors, aka rd…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-1386
|
2024-11-21 10:14 |
2010-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309508
|
- |
|
swftools
|
swftools
|
Multiple integer overflows in SWFTools 0.9.1 allow remote attackers to execute arbitrary code via (1) a crafted PNG file, related to the getPNG function in lib/png.c; or (2) a crafted JPEG file, rela…
|
CWE-189
Numeric Errors
|
CVE-2010-1516
|
2024-11-21 10:14 |
2010-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309509
|
- |
|
autonomy
|
keyview_filter_sdk
keyview_viewer_sdk
keyview_export_sdk
|
Integer underflow in the SpreadSheet Lotus 123 reader (wkssr.dll) in Autonomy KeyView 10.4 and 10.9, as used in multiple IBM, Symantec, and other products, allows remote attackers to cause a denial o…
|
CWE-189
Numeric Errors
|
CVE-2010-1525
|
2024-11-21 10:14 |
2010-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
309510
|
- |
|
autonomy
|
keyview_filter_sdk
keyview_viewer_sdk
keyview_export_sdk
|
The SpreadSheet Lotus 123 reader (wkssr.dll) in Autonomy KeyView 10.4 and 10.9, as used in multiple IBM, Symantec, and other products, allows remote attackers to execute arbitrary code via unspecifie…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1524
|
2024-11-21 10:14 |
2010-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
