|
264941
|
- |
|
oracle
|
sun_product_suite
|
Unspecified vulnerability in the Oracle Communications Messaging Server (Sun Java System Messaging Server) component in Oracle Sun Products Suite 6.0, 6.2, 6.3, and 7.0 allows remote attackers to aff…
|
NVD-CWE-noinfo
|
CVE-2010-3575
|
2010-11-11 14:00 |
2010-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264942
|
- |
|
ibm
|
tivoli_directory_server
|
Use-after-free vulnerability in the proxy server in IBM Tivoli Directory Server (TDS) 6.0.0.x before 6.0.0.8-TIV-ITDS-IF0007 and 6.1.x before 6.1.0-TIV-ITDS-FP0005 allows remote attackers to cause a …
|
CWE-399
Resource Management Errors
|
CVE-2010-4217
|
2010-11-11 02:19 |
2010-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264943
|
- |
|
cisco
|
intelligent_contact_manager
|
Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent Contact Manager (ICM) before 7.0 allow remote attackers to execute arbitrary code via a long parameter in a (1…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3040
|
2010-11-11 00:26 |
2010-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264944
|
- |
|
cisco
|
intelligent_contact_manager
|
Per: http://tools.cisco.com/security/center/viewAlert.x?alertId=21726
'Cisco has confirmed this vulnerability in software release notes; however, software updates are not available.'
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-3040
|
2010-11-11 00:26 |
2010-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264945
|
- |
|
ibm
|
websphere_portal
|
Cross-site scripting (XSS) vulnerability in SemanticTagService.js in IBM WebSphere Portal 6.1.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: some o…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4219
|
2010-11-10 14:00 |
2010-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264946
|
- |
|
ibm
|
websphere_application_server
|
Cross-site scripting (XSS) vulnerability in the Integrated Solution Console in the Administrative Console component in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.13 allows remote attacke…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4220
|
2010-11-10 14:00 |
2010-11-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264947
|
- |
|
turbogears
|
turbogears2
|
The URL dispatch mechanism in TurboGears2 (aka tg2) before 2.0.2 exposes controller methods even when an @expose decoration is not used, which has unspecified impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2009-5015
|
2010-11-10 03:12 |
2010-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264948
|
- |
|
transware
|
active\!_mail
|
CRLF injection vulnerability in TransWARE Active! mail 6 build 6.40.010047750 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unsp…
|
CWE-94
Code Injection
|
CVE-2010-3913
|
2010-11-9 14:00 |
2010-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264949
|
- |
|
bankofamerica
|
bank_of_america
|
The Bank of America application 2.12 for Android stores a security question's answer in cleartext, which might allow physically proximate attackers to obtain sensitive information by reading applicat…
|
CWE-310
Cryptographic Issues
|
CVE-2010-4213
|
2010-11-9 14:00 |
2010-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264950
|
- |
|
wellsfargo
|
wells_fargo_mobile
|
The Wells Fargo Mobile application 1.1 for Android stores a username and password, along with account balances, in cleartext, which might allow physically proximate attackers to obtain sensitive info…
|
CWE-310
Cryptographic Issues
|
CVE-2010-4214
|
2010-11-9 14:00 |
2010-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
