|
264961
|
- |
|
ibm
|
websphere_application_server
|
The Single Sign-on (SSO) functionality in IBM WebSphere Application Server (WAS) 7.0.0.0 through 7.0.0.8 does not recognize the Requires SSL configuration option, which might allow remote attackers t…
|
CWE-200
Information Exposure
|
CVE-2010-0563
|
2010-11-3 13:00 |
2010-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264962
|
- |
|
dropbox
|
dropbox
|
dropboxd in Dropbox 0.7.110 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
|
NVD-CWE-Other
|
CVE-2010-3354
|
2010-11-3 13:00 |
2010-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264963
|
- |
|
aspindir
|
kisisel_radyo_script
|
Kisisel Radyo Script stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for sevvo/eco23.mdb.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-4145
|
2010-11-3 13:00 |
2010-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264964
|
- |
|
libvirt
|
libvirt
|
Red Hat libvirt, possibly 0.6.1 through 0.8.2, looks up disk backing stores without referring to the user-defined main disk format, which might allow guest OS users to read arbitrary files on the hos…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2237
|
2010-10-30 14:41 |
2010-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264965
|
- |
|
libvirt
|
libvirt
|
Red Hat libvirt, possibly 0.6.0 through 0.8.2, creates new images without setting the user-defined backing-store format, which allows guest OS users to read arbitrary files on the host OS via unspeci…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2239
|
2010-10-30 14:41 |
2010-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264966
|
- |
|
libvirt
|
libvirt
|
Red Hat libvirt 0.2.0 through 0.8.2 creates iptables rules with improper mappings of privileged source ports, which allows guest OS users to bypass intended access restrictions by leveraging IP addre…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2242
|
2010-10-30 14:41 |
2010-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264967
|
- |
|
libvirt
|
libvirt
|
Red Hat libvirt, possibly 0.7.2 through 0.8.2, recurses into disk-image backing stores without extracting the defined disk backing-store format, which might allow guest OS users to read arbitrary fil…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2238
|
2010-10-30 13:00 |
2010-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264968
|
- |
|
unrealircd
|
unrealircd
|
Buffer overflow in UnrealIRCd 3.2beta11 through 3.2.8, when allow::options::noident is enabled, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via un…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-4893
|
2010-10-28 14:42 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264969
|
- |
|
realpage
|
module_activex_controls
|
The Upload method in the RealPage Module Upload ActiveX control in Realpage.dll 1.0.0.9 in RealPage Module ActiveX Controls does not properly restrict certain property values, which allows remote att…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2584
|
2010-10-28 13:00 |
2010-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264970
|
- |
|
realpage
|
module_activex_control
|
Multiple buffer overflows in the RealPage Module Upload ActiveX control in Realpage.dll 1.0.0.9 in RealPage Module ActiveX Controls allow remote attackers to execute arbitrary code via a long (1) Des…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2585
|
2010-10-28 13:00 |
2010-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
