|
261301
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Multiple integer overflows in the Fax3SetupState function in tif_fax3.c in the FAX3 decoder in LibTIFF before 3.9.3, as used in ImageIO in Apple Mac OS X 10.5.8 and Mac OS X 10.6 before 10.6.4, allow…
|
CWE-189
Numeric Errors
|
CVE-2010-1411
|
2013-05-15 12:08 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261302
|
- |
|
vmware
|
workstation
player
server
fusion
vix_api
|
Format string vulnerability in vmrun in VMware VIX API 1.6.x, VMware Workstation 6.5.x before 6.5.4 build 246459, VMware Player 2.5.x before 2.5.4 build 246459, and VMware Server 2.x on Linux, and VM…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2010-1139
|
2013-05-15 12:07 |
2010-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261303
|
- |
|
vmware
|
workstation
player
|
The USB service in VMware Workstation 7.0 before 7.0.1 build 227600 and VMware Player 3.0 before 3.0.1 build 227600 on Windows might allow host OS users to gain privileges by placing a Trojan horse p…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-1140
|
2013-05-15 12:07 |
2010-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261304
|
- |
|
vmware
|
workstation
player
ace
server
fusion
esxi
esx
|
VMware Tools in VMware Workstation 6.5.x before 6.5.4 build 246459; VMware Player 2.5.x before 2.5.4 build 246459; VMware ACE 2.5.x before 2.5.4 build 246459; VMware Server 2.x before 2.0.2 build 203…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-1142
|
2013-05-15 12:07 |
2010-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261305
|
- |
|
vmware
|
workstation
player
ace
server
fusion
|
The virtual networking stack in VMware Workstation 7.0 before 7.0.1 build 227600, VMware Workstation 6.5.x before 6.5.4 build 246459 on Windows, VMware Player 3.0 before 3.0.1 build 227600, VMware Pl…
|
CWE-200
Information Exposure
|
CVE-2010-1138
|
2013-05-15 12:07 |
2010-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261306
|
- |
|
apple
|
cups
|
The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, w…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0393
|
2013-05-15 12:06 |
2010-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261307
|
- |
|
whmcs
|
group_pay
|
SQL injection vulnerability in the gp_LoadUserFromHash function in functions_hash.php in the Group Pay module 1.5 and earlier for WHMCS allows remote attackers to execute arbitrary SQL commands via t…
|
CWE-89
SQL Injection
|
CVE-2013-3536
|
2013-05-14 23:48 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261308
|
- |
|
fedoraproject
|
389_directory_server
|
The do_search function in ldap/servers/slapd/search.c in 389 Directory Server 1.2.x before 1.2.11.20 and 1.3.x before 1.3.0.5 does not properly restrict access to entries when the nsslapd-allow-anony…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1897
|
2013-05-14 13:00 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261309
|
- |
|
cisco
|
ios
|
The crypto engine process in Cisco IOS on Aggregation Services Router (ASR) Route Processor 2 does not properly manage memory, which allows local users to cause a denial of service (route processor c…
|
CWE-399
Resource Management Errors
|
CVE-2013-1136
|
2013-05-13 20:50 |
2013-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261310
|
- |
|
vbulletin
|
vbulletin
|
SQL injection vulnerability in index.php/ajax/api/reputation/vote in vBulletin 5.0.0 Beta 11, 5.0.0 Beta 28, and earlier allows remote authenticated users to execute arbitrary SQL commands via the no…
|
CWE-89
SQL Injection
|
CVE-2013-3522
|
2013-05-13 13:00 |
2013-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
