|
310421
|
- |
|
f5
|
nginx
|
nginx 0.8 before 0.8.40 and 0.7 before 0.7.66, when running on Windows, allows remote attackers to obtain source code or unparsed content of arbitrary files under the web document root by appending :…
|
CWE-200
Information Exposure
|
CVE-2010-2263
|
2024-11-21 10:16 |
2010-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310422
|
7.1 |
HIGH
Local
|
rpcbind_project
|
rpcbind
|
rpcbind 0.2.0 allows local users to write to arbitrary files or gain privileges via a symlink attack on (1) /tmp/portmap.xdr and (2) /tmp/rpcbind.xdr.
|
CWE-59
Link Following
|
CVE-2010-2064
|
2024-11-21 10:15 |
2019-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310423
|
7.8 |
HIGH
Local
|
rpcbind_project
|
rpcbind
|
rpcbind 0.2.0 does not properly validate (1) /tmp/portmap.xdr and (2) /tmp/rpcbind.xdr, which can be created by an attacker before the daemon is started.
|
CWE-20
Improper Input Validation
|
CVE-2010-2061
|
2024-11-21 10:15 |
2019-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310424
|
4.8 |
MEDIUM
Network
|
apple
|
iphone_os
|
Find My iPhone on iOS 2.0 through 3.1.3 for iPhone 3G and later and iOS 2.1 through 3.1.3 for iPod touch (2nd generation) and later, when Find My iPhone is disabled, allows remote authenticated users…
|
CWE-254
7PK - Security Features
|
CVE-2010-1776
|
2024-11-21 10:15 |
2017-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310425
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x_server
mac_os_x
|
Apple Mac OS X 10.6 through 10.6.3 and Mac OS X Server 10.6 through 10.6.3 allows local users to obtain system privileges.
|
CWE-20
Improper Input Validation
|
CVE-2010-1821
|
2024-11-21 10:15 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310426
|
7.8 |
HIGH
Local
|
apple
|
mac_os_x_server
mac_os_x
|
Buffer overflow in ImageIO in Apple Mac OS X 10.6 through 10.6.3 and Mac OS X Server 10.6 through 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1816
|
2024-11-21 10:15 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310427
|
- |
|
videolan
|
vlc_media_player
|
Integer underflow in the real_get_rdt_chunk function in real.c, as used in modules/access/rtsp/real.c in VideoLAN VLC media player before 1.0.1 and stream/realrtsp/real.c in MPlayer before r29447, al…
|
CWE-189
Numeric Errors
|
CVE-2010-2062
|
2024-11-21 10:15 |
2014-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310428
|
- |
|
apple
|
quicktime
|
Untrusted search path vulnerability in the Picture Viewer in Apple QuickTime before 7.6.8 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attack…
|
NVD-CWE-Other
|
CVE-2010-1819
|
2024-11-21 10:15 |
2013-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310429
|
- |
|
nicholasthompson
|
global_redirect
|
Open redirect vulnerability in the Global Redirect module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.4 for Drupal, when non-clean to clean is enabled, allows remote attackers to redirect users t…
|
CWE-20
Improper Input Validation
|
CVE-2010-2021
|
2024-11-21 10:15 |
2012-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310430
|
- |
|
apple
|
airport_express_base_station_firmware
airport_extreme_base_station_firmware
airport_express
airport_extreme
time_capsule
|
Unspecified vulnerability in the network bridge functionality on the Apple Time Capsule, AirPort Extreme Base Station, and AirPort Express Base Station with firmware before 7.5.2 allows remote attack…
|
NVD-CWE-noinfo
|
CVE-2010-1804
|
2024-11-21 10:15 |
2010-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
