|
266161
|
- |
|
herac
|
tuxguitar
|
TuxGuitar 1.2 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
|
NVD-CWE-Other
|
CVE-2010-3385
|
2010-10-21 13:00 |
2010-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266162
|
- |
|
lttng
|
ust
|
usttrace in LTTng Userspace Tracer (aka UST) 0.7 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the curre…
|
NVD-CWE-Other
|
CVE-2010-3386
|
2010-10-21 13:00 |
2010-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266163
|
- |
|
ecmwf
|
magics\+\+
|
magics-config in Magics++ 2.10.0 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working direc…
|
NVD-CWE-Other
|
CVE-2010-3393
|
2010-10-21 13:00 |
2010-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266164
|
- |
|
oracle
|
mojarra
|
Oracle Mojarra uses an encrypted View State without a Message Authentication Code (MAC), which makes it easier for remote attackers to perform successful modifications of the View State via a padding…
|
CWE-310
Cryptographic Issues
|
CVE-2010-4007
|
2010-10-21 13:00 |
2010-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266165
|
- |
|
g.rodola
|
pyftpdlib
|
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TC…
|
CWE-362
Race Condition
|
CVE-2010-3494
|
2010-10-20 13:00 |
2010-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266166
|
- |
|
g.rodola
|
pyftpdlib
|
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.1 allows remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TC…
|
CWE-362
Race Condition
|
CVE-2009-5010
|
2010-10-20 13:00 |
2010-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266167
|
- |
|
g.rodola
|
pyftpdlib
|
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TC…
|
CWE-362
Race Condition
|
CVE-2009-5011
|
2010-10-20 13:00 |
2010-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266168
|
- |
|
g.rodola
|
pyftpdlib
|
ftpserver.py in pyftpdlib before 0.5.2 does not require the l permission for the MLST command, which allows remote authenticated users to bypass intended access restrictions and list the root directo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-5012
|
2010-10-20 13:00 |
2010-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266169
|
- |
|
g.rodola
|
pyftpdlib
|
Memory leak in the on_dtp_close function in ftpserver.py in pyftpdlib before 0.5.2 allows remote authenticated users to cause a denial of service (memory consumption) by sending a QUIT command during…
|
CWE-399
Resource Management Errors
|
CVE-2009-5013
|
2010-10-20 13:00 |
2010-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266170
|
- |
|
g.rodola
|
pyftpdlib
|
Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.3.0 allow remote authenticated users to access arbitrary files and directories via vectors involving a symlink in a …
|
CWE-22
Path Traversal
|
CVE-2008-7262
|
2010-10-20 13:00 |
2010-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
