|
310611
|
- |
|
netwin
|
surgemail
|
Cross-site scripting (XSS) vulnerability in NetWin Surgemail before 4.3g allows remote attackers to inject arbitrary web script or HTML via the username_ex parameter to the surgeweb program.
|
CWE-79
Cross-site Scripting
|
CVE-2010-3201
|
2024-11-21 10:18 |
2011-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310612
|
- |
|
linux
|
linux_kernel
|
drivers/platform/x86/thinkpad_acpi.c in the Linux kernel before 2.6.34 on ThinkPad devices, when the X.Org X server is used, does not properly restrict access to the video output control state, which…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-3448
|
2024-11-21 10:18 |
2011-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310613
|
- |
|
intel
symantec
|
intel_alert_management_system
antivirus
endpoint_protection
|
The GetStringAMSHandler function in prgxhndl.dll in hndlrsvc.exe in the Intel Alert Handler service (aka Symantec Intel Handler service) in Intel Alert Management System (AMS), as used in Symantec An…
|
CWE-20
Improper Input Validation
|
CVE-2010-3268
|
2024-11-21 10:18 |
2010-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310614
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6, 7, and 8 does not prevent rendering of cached content as HTML, which allows remote attackers to access content from a different (1) domain or (2) zone via unspecified s…
|
CWE-200
Information Exposure
|
CVE-2010-3348
|
2024-11-21 10:18 |
2010-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310615
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialize…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2010-3346
|
2024-11-21 10:18 |
2010-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310616
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) i…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2010-3345
|
2024-11-21 10:18 |
2010-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310617
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) i…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2010-3343
|
2024-11-21 10:18 |
2010-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310618
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6, 7, and 8 does not prevent rendering of cached content as HTML, which allows remote attackers to access content from a different (1) domain or (2) zone via unspecified s…
|
CWE-200
Information Exposure
|
CVE-2010-3342
|
2024-11-21 10:18 |
2010-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310619
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 and 7 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or…
|
CWE-94
Code Injection
|
CVE-2010-3340
|
2024-11-21 10:18 |
2010-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310620
|
- |
|
microsoft
|
windows_server_2008
windows_7
windows_vista
|
The Windows Task Scheduler in Microsoft Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly determine the security context of scheduled tasks, which allo…
|
CWE-20
Improper Input Validation
|
CVE-2010-3338
|
2024-11-21 10:18 |
2010-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
