266501
|
- |
|
bernhard_wymann
|
torcs
|
The (1) torcs, (2) nfsperf, (3) accc, (4) texmapper, (5) trackgen, and (6) nfs2ac scripts in TORCS 1.3.1 place a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain pr…
|
NVD-CWE-Other
|
CVE-2010-3384
|
2010-10-21 13:00 |
2010-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266502
|
- |
|
herac
|
tuxguitar
|
TuxGuitar 1.2 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
|
NVD-CWE-Other
|
CVE-2010-3385
|
2010-10-21 13:00 |
2010-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266503
|
- |
|
lttng
|
ust
|
usttrace in LTTng Userspace Tracer (aka UST) 0.7 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the curre…
|
NVD-CWE-Other
|
CVE-2010-3386
|
2010-10-21 13:00 |
2010-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266504
|
- |
|
ecmwf
|
magics\+\+
|
magics-config in Magics++ 2.10.0 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working direc…
|
NVD-CWE-Other
|
CVE-2010-3393
|
2010-10-21 13:00 |
2010-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266505
|
- |
|
oracle
|
mojarra
|
Oracle Mojarra uses an encrypted View State without a Message Authentication Code (MAC), which makes it easier for remote attackers to perform successful modifications of the View State via a padding…
|
CWE-310
Cryptographic Issues
|
CVE-2010-4007
|
2010-10-21 13:00 |
2010-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266506
|
- |
|
g.rodola
|
pyftpdlib
|
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TC…
|
CWE-362
Race Condition
|
CVE-2010-3494
|
2010-10-20 13:00 |
2010-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266507
|
- |
|
g.rodola
|
pyftpdlib
|
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.1 allows remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TC…
|
CWE-362
Race Condition
|
CVE-2009-5010
|
2010-10-20 13:00 |
2010-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266508
|
- |
|
g.rodola
|
pyftpdlib
|
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TC…
|
CWE-362
Race Condition
|
CVE-2009-5011
|
2010-10-20 13:00 |
2010-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266509
|
- |
|
g.rodola
|
pyftpdlib
|
ftpserver.py in pyftpdlib before 0.5.2 does not require the l permission for the MLST command, which allows remote authenticated users to bypass intended access restrictions and list the root directo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-5012
|
2010-10-20 13:00 |
2010-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
266510
|
- |
|
g.rodola
|
pyftpdlib
|
Memory leak in the on_dtp_close function in ftpserver.py in pyftpdlib before 0.5.2 allows remote authenticated users to cause a denial of service (memory consumption) by sending a QUIT command during…
|
CWE-399
Resource Management Errors
|
CVE-2009-5013
|
2010-10-20 13:00 |
2010-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|