|
267461
|
- |
|
apple
|
mac_os_x_server
|
Server Admin in Apple Mac OS X Server 10.5.8 does not properly determine the privileges of users who had former membership in the admin group, which allows remote authenticated users to leverage this…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0522
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267462
|
- |
|
apple
|
mac_os_x_server
|
Wiki Server in Apple Mac OS X 10.5.8 does not restrict the file types of uploaded files, which allows remote attackers to obtain sensitive information or possibly have unspecified other impact via a …
|
CWE-200
Information Exposure
|
CVE-2010-0523
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267463
|
- |
|
apple
|
mac_os_x_server
|
Per: http://support.apple.com/kb/HT4077
'This issue only affects Mac OS X Server systems, and does not affect versions 10.6 or later.'
|
CWE-200
Information Exposure
|
CVE-2010-0523
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267464
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Mail in Apple Mac OS X before 10.6.3 does not properly enforce the key usage extension during processing of a keychain that specifies multiple certificates for an e-mail recipient, which might make i…
|
CWE-310
Cryptographic Issues
|
CVE-2010-0525
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267465
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Wiki Server in Apple Mac OS X 10.6 before 10.6.3 does not enforce the service access control list (SACL) for weblogs during weblog creation, which allows remote authenticated users to publish content…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0534
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267466
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Dovecot in Apple Mac OS X 10.6 before 10.6.3, when Kerberos is enabled, does not properly enforce the service access control list (SACL) for sending and receiving e-mail, which allows remote authenti…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0535
|
2010-06-21 13:00 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267467
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.11, when addNode -trace is used during node federation, allows attackers to obtain sensitive information about CIMMetadataCollectorImpl trace a…
|
CWE-200
Information Exposure
|
CVE-2010-2326
|
2010-06-21 13:00 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267468
|
- |
|
ibm
|
websphere_application_server
|
mod_ibm_ssl in IBM HTTP Server 6.0 before 6.0.2.43, 6.1 before 6.1.0.33, and 7.0 before 7.0.0.11, as used in IBM WebSphere Application Server (WAS) on z/OS, does not properly handle a large HTTP requ…
|
CWE-20
Improper Input Validation
|
CVE-2010-2327
|
2010-06-21 13:00 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267469
|
- |
|
ibm
|
websphere_application_server
|
The HTTP Channel in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.11 allows remote attackers to cause a denial of service (NullPointerException) via a large amount of chunked data that uses…
|
NVD-CWE-Other
|
CVE-2010-2328
|
2010-06-21 13:00 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267470
|
- |
|
upredsun
|
isharer_file_sharing_wizard
|
Stack-based buffer overflow in iSharer File Sharing Wizard 1.5.0 allows remote attackers to execute arbitrary code via a long HEAD request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2331
|
2010-06-21 13:00 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
