266301
|
- |
|
cisco
|
unified_communications_manager
|
Per: http://www.cisco.com/en/US/products/products_security_advisory09186a0080b43908.shtml
'Cisco bug ID CSCtd17310 and has been assigned the CVE identifier CVE-2010-2837. This vulnerability is fix…
|
NVD-CWE-Other
|
CVE-2010-2837
|
2010-09-9 14:43 |
2010-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266302
|
- |
|
cisco
|
unified_communications_manager
|
The SendCombinedStatusInfo implementation in Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 7.0SU before 7.0(2a)SU3, 7.1 before 7.1(5), and 8.0 before 8.0(3) allows remote atta…
|
NVD-CWE-Other
|
CVE-2010-2838
|
2010-09-9 14:43 |
2010-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266303
|
- |
|
cisco
|
unified_communications_manager
|
Per: http://www.cisco.com/en/US/products/products_security_advisory09186a0080b43908.shtml
'Cisco bug ID CSCtd17310 and has been assigned the CVE identifier CVE-2010-2837. This vulnerability is fix…
|
NVD-CWE-Other
|
CVE-2010-2838
|
2010-09-9 14:43 |
2010-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266304
|
- |
|
cisco
|
unified_presence_server
|
SIPD in Cisco Unified Presence 6.x before 6.0(7) and 7.x before 7.0(8) allows remote attackers to cause a denial of service (stack memory corruption and process failure) via a malformed SIP message, …
|
CWE-399
Resource Management Errors
|
CVE-2010-2839
|
2010-09-9 14:43 |
2010-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266305
|
- |
|
cisco
|
unified_presence_server
|
The Presence Engine (PE) service in Cisco Unified Presence 6.x before 6.0(7) and 7.x before 7.0(8) does not properly handle an erroneous Contact field in the header of a SIP SUBSCRIBE message, which …
|
CWE-20
Improper Input Validation
|
CVE-2010-2840
|
2010-09-9 14:43 |
2010-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266306
|
- |
|
w3m
|
w3m
|
istream.c in w3m 0.5.2 and possibly other versions, when ssl_verify_server is enabled, does not properly handle a '\0' character in a domain name in the (1) subject's Common Name or (2) Subject Alter…
|
CWE-20
Improper Input Validation
|
CVE-2010-2074
|
2010-09-9 14:42 |
2010-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266307
|
- |
|
mono
|
mono
|
The default configuration of ASP.NET in Mono before 2.6.4 has a value of FALSE for the EnableViewStateMac property, which allows remote attackers to conduct cross-site scripting (XSS) attacks, as dem…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1459
|
2010-09-9 14:41 |
2010-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266308
|
- |
|
otrs
|
otrs
|
Multiple SQL injection vulnerabilities in Kernel/System/Ticket.pm in OTRS-Core in Open Ticket Request System (OTRS) 2.1.x before 2.1.9, 2.2.x before 2.2.9, 2.3.x before 2.3.5, and 2.4.x before 2.4.7 …
|
CWE-89
SQL Injection
|
CVE-2010-0438
|
2010-09-9 14:39 |
2010-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266309
|
- |
|
adobe
|
extendedscript_toolkit_cs5
|
Untrusted search path vulnerability in Adobe ExtendScript Toolkit (ESTK) CS5 3.5.0.52 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks vi…
|
NVD-CWE-Other
|
CVE-2010-3155
|
2010-09-9 13:00 |
2010-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266310
|
- |
|
novell
|
identity_manager
|
The engine installer in Novell Identity Manager (aka IDM) 3.6.1 stores admin tree credentials in /tmp/idmInstall.log, which allows local users to obtain sensitive information by reading this file.
|
CWE-255
Credentials Management
|
CVE-2010-3264
|
2010-09-9 13:00 |
2010-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|