266081
|
- |
|
poppler
|
poppler
|
The PostScriptFunction::PostScriptFunction function in poppler/Function.cc in the PDF parser in poppler 0.8.7 and possibly other versions up to 0.15.1, and possibly other products, allows context-dep…
|
CWE-20
Improper Input Validation
|
CVE-2010-3703
|
2011-01-22 15:43 |
2010-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266082
|
- |
|
tor
|
tor
|
Heap-based buffer overflow in Tor before 0.2.1.28 and 0.2.2.x before 0.2.2.20-alpha allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via unspecif…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1676
|
2011-01-22 15:39 |
2010-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266083
|
- |
|
tor
|
tor
|
Tor before 0.2.1.29 and 0.2.2.x before 0.2.2.21-alpha does not properly manage key data in memory, which might allow local users to obtain sensitive information by leveraging the ability to read memo…
|
CWE-399
Resource Management Errors
|
CVE-2011-0016
|
2011-01-22 14:00 |
2011-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266084
|
- |
|
verytools
|
videospirit_lite videospirit_pro
|
Buffer overflow in VideoSpirit Pro 1.6.8.1, 1.68, and earlier; and VideoSpirit Lite 1.4.0.1 and possibly other versions; allows user-assisted remote attackers to execute arbitrary code via a VideoSpi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0500
|
2011-01-21 14:00 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266085
|
- |
|
musanim
|
music_animation_machine_midi_player
|
Music Animation Machine MIDI Player 2006aug19 Release 035 and possibly other versions allows user-assisted remote attackers to cause a denial of service (crash) and possibly have other unspecified im…
|
NVD-CWE-Other
|
CVE-2011-0502
|
2011-01-21 14:00 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266086
|
- |
|
musanim
|
music_animation_machine_midi_player
|
Per: https://secunia.com/advisories/42790
'Successful exploitation allows execution of arbitrary code.'
|
NVD-CWE-Other
|
CVE-2011-0502
|
2011-01-21 14:00 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266087
|
- |
|
securstar
|
drivecrypt
|
DCR.sys driver in SecurStar DriveCrypt 5.4, 5.3, and earlier allows local users to execute arbitrary code via a crafted argument to the 0x00073800 IOCTL.
|
CWE-20
Improper Input Validation
|
CVE-2011-0513
|
2011-01-21 14:00 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266088
|
- |
|
hotwebscripts
|
hotweb_rentals
|
SQL injection vulnerability in default.asp in HotWebScripts HotWeb Rentals allows remote attackers to execute arbitrary SQL commands via the PageId parameter. NOTE: the provenance of this informatio…
|
CWE-89
SQL Injection
|
CVE-2010-4703
|
2011-01-21 14:00 |
2011-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266089
|
- |
|
xfig
|
xfig
|
Stack-based buffer overflow in Xfig 3.2.4 and 3.2.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a FIG image with a crafted color definition.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-4262
|
2011-01-20 15:46 |
2010-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266090
|
- |
|
djangoproject
|
django
|
The administrative interface in django.contrib.admin in Django before 1.1.3, 1.2.x before 1.2.4, and 1.3.x before 1.3 beta 1 does not properly restrict use of the query string to perform certain obje…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-4534
|
2011-01-20 15:46 |
2011-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|