|
260181
|
- |
|
sun
|
java_system_web_server
|
Multiple heap-based buffer overflows in (1) webservd and (2) the admin server in Sun Java System Web Server 7.0 Update 7 allow remote attackers to cause a denial of service (daemon crash) and possibl…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0387
|
2017-08-17 10:31 |
2010-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260182
|
- |
|
sun
|
java_system_web_server
|
Format string vulnerability in the WebDAV implementation in webservd in Sun Java System Web Server 7.0 Update 6 allows remote attackers to cause a denial of service (daemon crash) and possibly have u…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2010-0388
|
2017-08-17 10:31 |
2010-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260183
|
- |
|
nanosleep
|
trac-git
|
PyGIT.py in the Trac Git plugin (trac-git) before 0.0.20080710-3+lenny1 and before 0.0.20090320-1 on Debian GNU/Linux, when enabled in Trac, allows remote attackers to execute arbitrary commands via …
|
CWE-20
Improper Input Validation
|
CVE-2010-0394
|
2017-08-17 10:31 |
2010-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260184
|
- |
|
debian
|
dpkg
|
Directory traversal vulnerability in the dpkg-source component in dpkg before 1.14.29 allows remote attackers to modify arbitrary files via a crafted Debian source archive.
|
CWE-22
Path Traversal
|
CVE-2010-0396
|
2017-08-17 10:31 |
2010-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260185
|
- |
|
gnome
|
screensaver
|
gnome-screensaver 2.28.x before 2.28.3 does not properly synchronize the state of screen locking and the unlock dialog in situations involving a change to the number of monitors, which allows physica…
|
NVD-CWE-Other
|
CVE-2010-0422
|
2017-08-17 10:31 |
2010-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260186
|
- |
|
flock
mozilla
|
flock
firefox
seamonkey
|
Mozilla Firefox 3.5.1 and SeaMonkey 1.1.17, and Flock 2.5.1, allow context-dependent attackers to spoof the address bar, via window.open with a relative URI, to show an arbitrary file: URL after a vi…
|
NVD-CWE-Other
|
CVE-2009-3007
|
2017-08-17 10:31 |
2009-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260187
|
- |
|
christophe_thibault
|
k-meleon
|
K-Meleon 1.5.3 allows context-dependent attackers to spoof the address bar, via window.open with a relative URI, to show an arbitrary file: URL after a victim has visited any file: URL, as demonstrat…
|
NVD-CWE-Other
|
CVE-2009-3008
|
2017-08-17 10:31 |
2009-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260188
|
- |
|
google
|
chrome
|
Google Chrome 1.0.154.48 and earlier, 2.0.172.28, 2.0.172.37, and 3.0.193.2 Beta does not properly block data: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cros…
|
CWE-79
Cross-site Scripting
|
CVE-2009-3011
|
2017-08-17 10:31 |
2009-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260189
|
- |
|
qtweb
|
qtweb
|
QtWeb 3.0 Builds 001 and 003 does not properly block javascript: and data: URIs in Refresh and Location headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) …
|
CWE-79
Cross-site Scripting
|
CVE-2009-3015
|
2017-08-17 10:31 |
2009-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260190
|
- |
|
symantec
|
securityexpressions_audit_and_compliance_server
|
Cross-site scripting (XSS) vulnerability in Symantec SecurityExpressions Audit and Compliance Server 4.1.1, 4.1, and earlier allows remote attackers to inject arbitrary web script or HTML via vectors…
|
CWE-79
Cross-site Scripting
|
CVE-2009-3030
|
2017-08-17 10:31 |
2009-10-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
