260351
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Wiki Server in Apple Mac OS X 10.6 before 10.6.3 does not enforce the service access control list (SACL) for weblogs during weblog creation, which allows remote authenticated users to publish content…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0534
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260352
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Dovecot in Apple Mac OS X 10.6 before 10.6.3, when Kerberos is enabled, does not properly enforce the service access control list (SACL) for sending and receiving e-mail, which allows remote authenti…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0535
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260353
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.11, when addNode -trace is used during node federation, allows attackers to obtain sensitive information about CIMMetadataCollectorImpl trace a…
|
CWE-200
Information Exposure
|
CVE-2010-2326
|
2010-06-21 13:00 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260354
|
- |
|
ibm
|
websphere_application_server
|
mod_ibm_ssl in IBM HTTP Server 6.0 before 6.0.2.43, 6.1 before 6.1.0.33, and 7.0 before 7.0.0.11, as used in IBM WebSphere Application Server (WAS) on z/OS, does not properly handle a large HTTP requ…
|
CWE-20
Improper Input Validation
|
CVE-2010-2327
|
2010-06-21 13:00 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260355
|
- |
|
ibm
|
websphere_application_server
|
The HTTP Channel in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.11 allows remote attackers to cause a denial of service (NullPointerException) via a large amount of chunked data that uses…
|
NVD-CWE-Other
|
CVE-2010-2328
|
2010-06-21 13:00 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260356
|
- |
|
upredsun
|
isharer_file_sharing_wizard
|
Stack-based buffer overflow in iSharer File Sharing Wizard 1.5.0 allows remote attackers to execute arbitrary code via a long HEAD request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2331
|
2010-06-21 13:00 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260357
|
- |
|
yamamah
|
yamamah
|
Directory traversal vulnerability in themes/default/download.php in Yamamah Photo Gallery 1.00, as distributed before 20100618, allows remote attackers to read arbitrary files via a .. (dot dot) in t…
|
CWE-22
Path Traversal
|
CVE-2010-2334
|
2010-06-21 13:00 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260358
|
- |
|
arabportal
|
arab_portal
|
SQL injection vulnerability in members.php in Arab Portal 2.2, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the by parameter in the msearch action.
|
CWE-89
SQL Injection
|
CVE-2010-2340
|
2010-06-21 13:00 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260359
|
- |
|
unrealircd
|
unrealircd
|
UnrealIRCd 3.2.8.1, as distributed on certain mirror sites from November 2009 through June 2010, contains an externally introduced modification (Trojan Horse) in the DEBUG3_DOLOG_SYSTEM macro, which …
|
CWE-20
Improper Input Validation
|
CVE-2010-2075
|
2010-06-18 14:36 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260360
|
- |
|
unrealircd
|
unrealircd
|
Per: http://www.unrealircd.com/txt/unrealsecadvisory.20100612.txt
'Official precompiled Windows binaries (SSL and non-ssl) are NOT affected.
CVS is also not affected.
3.2.8 and any earlier v…
|
CWE-20
Improper Input Validation
|
CVE-2010-2075
|
2010-06-18 14:36 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|