|
312851
|
- |
|
redhat
|
qspice
enterprise_virtualization
|
libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and qspice 0.3.0, does not properly restrict the addresses upon which memory-mana…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0429
|
2024-11-21 10:12 |
2010-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312852
|
- |
|
redhat
|
qspice
enterprise_virtualization
|
libspice, as used in QEMU-KVM in the Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2 and qspice 0.3.0, does not properly validate guest QXL driver pointers, which all…
|
CWE-20
Improper Input Validation
|
CVE-2010-0428
|
2024-11-21 10:12 |
2010-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312853
|
- |
|
ibm
|
websphere_application_server
|
Cross-site scripting (XSS) vulnerability in the Administration Console in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.43, 6.1 before 6.1.0.33, and 7.0 before 7.0.0.11 allows remote attack…
|
CWE-79
Cross-site Scripting
|
CVE-2010-0779
|
2024-11-21 10:12 |
2010-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312854
|
- |
|
ibm
|
websphere_application_server
|
Cross-site scripting (XSS) vulnerability in the Administration Console in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.33 and 7.0 before 7.0.0.11 allows remote attackers to inject arbitrar…
|
CWE-79
Cross-site Scripting
|
CVE-2010-0778
|
2024-11-21 10:12 |
2010-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312855
|
- |
|
apple
|
cups
|
The _WriteProlog function in texttops.c in texttops in the Text Filter subsystem in CUPS before 1.4.4 does not check the return values of certain calloc calls, which allows remote attackers to cause …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0542
|
2024-11-21 10:12 |
2010-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312856
|
- |
|
muscle
|
pcsc-lite
|
Multiple buffer overflows in the MSGFunctionDemarshall function in winscard_svc.c in the PC/SC Smart Card daemon (aka PCSCD) in MUSCLE PCSC-Lite before 1.5.4 allow local users to gain privileges via …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0407
|
2024-11-21 10:12 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312857
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Folder Manager in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows local users to delete arbitrary folders via a symlink attack in conjunction with an unmount operation on a crafted volume, rela…
|
CWE-59
Link Following
|
CVE-2010-0546
|
2024-11-21 10:12 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312858
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The Finder in DesktopServices in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, does not set the expected file ownerships during an "Apply to enclosed items" action, which allows local users to bypas…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0545
|
2024-11-21 10:12 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312859
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
ImageIO in Apple Mac OS X 10.5.8, and 10.6 before 10.6.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0543
|
2024-11-21 10:12 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312860
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Cross-site scripting (XSS) vulnerability in the WEBrick HTTP server in Ruby in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows remote attackers to inject arbitrary web script or HTML via a craf…
|
CWE-79
Cross-site Scripting
|
CVE-2010-0541
|
2024-11-21 10:12 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
