267201
|
- |
|
cisco
|
unified_presence_server
|
SIPD in Cisco Unified Presence 6.x before 6.0(7) and 7.x before 7.0(8) allows remote attackers to cause a denial of service (stack memory corruption and process failure) via a malformed SIP message, …
|
CWE-399
Resource Management Errors
|
CVE-2010-2839
|
2010-09-9 14:43 |
2010-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267202
|
- |
|
cisco
|
unified_presence_server
|
The Presence Engine (PE) service in Cisco Unified Presence 6.x before 6.0(7) and 7.x before 7.0(8) does not properly handle an erroneous Contact field in the header of a SIP SUBSCRIBE message, which …
|
CWE-20
Improper Input Validation
|
CVE-2010-2840
|
2010-09-9 14:43 |
2010-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267203
|
- |
|
w3m
|
w3m
|
istream.c in w3m 0.5.2 and possibly other versions, when ssl_verify_server is enabled, does not properly handle a '\0' character in a domain name in the (1) subject's Common Name or (2) Subject Alter…
|
CWE-20
Improper Input Validation
|
CVE-2010-2074
|
2010-09-9 14:42 |
2010-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267204
|
- |
|
mono
|
mono
|
The default configuration of ASP.NET in Mono before 2.6.4 has a value of FALSE for the EnableViewStateMac property, which allows remote attackers to conduct cross-site scripting (XSS) attacks, as dem…
|
CWE-79
Cross-site Scripting
|
CVE-2010-1459
|
2010-09-9 14:41 |
2010-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267205
|
- |
|
otrs
|
otrs
|
Multiple SQL injection vulnerabilities in Kernel/System/Ticket.pm in OTRS-Core in Open Ticket Request System (OTRS) 2.1.x before 2.1.9, 2.2.x before 2.2.9, 2.3.x before 2.3.5, and 2.4.x before 2.4.7 …
|
CWE-89
SQL Injection
|
CVE-2010-0438
|
2010-09-9 14:39 |
2010-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267206
|
- |
|
adobe
|
extendedscript_toolkit_cs5
|
Untrusted search path vulnerability in Adobe ExtendScript Toolkit (ESTK) CS5 3.5.0.52 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks vi…
|
NVD-CWE-Other
|
CVE-2010-3155
|
2010-09-9 13:00 |
2010-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267207
|
- |
|
novell
|
identity_manager
|
The engine installer in Novell Identity Manager (aka IDM) 3.6.1 stores admin tree credentials in /tmp/idmInstall.log, which allows local users to obtain sensitive information by reading this file.
|
CWE-255
Credentials Management
|
CVE-2010-3264
|
2010-09-9 13:00 |
2010-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267208
|
- |
|
blackboard
|
transact_suite
|
BbtsConnection_Edit.exe in Blackboard Transact Suite (formerly Blackboard Commerce Suite) before 3.6.0.2 relies on field names when determining whether it is appropriate to decrypt a connection.xml f…
|
CWE-200
Information Exposure
|
CVE-2010-3244
|
2010-09-9 02:43 |
2010-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267209
|
- |
|
gnome
|
power_manager
|
gnome-power-manager 2.27.92 does not properly implement the lock_on_suspend and lock_on_hibernate settings for locking the screen when the suspend or hibernate button is pressed, which might make it …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-4997
|
2010-09-9 02:08 |
2010-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267210
|
- |
|
gnome
|
power_manager
|
gnome-power-manager 2.14.0 does not properly implement the lock_on_suspend and lock_on_hibernate settings for locking the screen when the suspend or hibernate button is pressed, which might make it e…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2006-7240
|
2010-09-9 00:26 |
2010-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|