|
310831
|
- |
|
zaal
arne_redlich_\&_ross_walker
vladislav_bolkhovitin
|
tgt
iscsitarget
generic_scsi_target_subsystem
|
Multiple buffer overflows in the iSNS implementation in isns.c in (1) Linux SCSI target framework (aka tgt or scsi-target-utils) before 1.0.6, (2) iSCSI Enterprise Target (aka iscsitarget or IET) 1.4…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2221
|
2024-11-21 10:16 |
2010-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310832
|
- |
|
freeciv
|
freeciv
|
freeciv 2.2 before 2.2.1 and 2.3 before 2.3.0 allows attackers to read arbitrary files or execute arbitrary commands via a scenario that contains Lua functionality, related to the (1) os, (2) io, (3)…
|
CWE-78
OS Command
|
CVE-2010-2445
|
2024-11-21 10:16 |
2010-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310833
|
- |
|
avahi
|
avahi
|
The AvahiDnsPacket function in avahi-core/socket.c in avahi-daemon in Avahi 0.6.16 and 0.6.25 allows remote attackers to cause a denial of service (assertion failure and daemon exit) via a DNS packet…
|
NVD-CWE-Other
|
CVE-2010-2244
|
2024-11-21 10:16 |
2010-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310834
|
- |
|
htmlpurifier
mahara
|
htmlpurifier
mahara
|
Cross-site scripting (XSS) vulnerability in HTML Purifier before 4.1.1, as used in Mahara and other products, when the browser is Internet Explorer, allows remote attackers to inject arbitrary web sc…
|
CWE-79
Cross-site Scripting
|
CVE-2010-2479
|
2024-11-21 10:16 |
2010-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310835
|
- |
|
libtiff
|
libtiff
|
The TIFFRGBAImageGet function in LibTIFF 3.9.0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a TIFF file with an invalid combination of SamplesPe…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2483
|
2024-11-21 10:16 |
2010-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310836
|
- |
|
libtiff
|
libtiff
|
LibTIFF 3.9.4 and earlier does not properly handle an invalid td_stripbytecount field, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via …
|
NVD-CWE-Other
|
CVE-2010-2482
|
2024-11-21 10:16 |
2010-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310837
|
- |
|
libtiff
|
libtiff
|
The TIFFExtractData macro in LibTIFF before 3.9.4 does not properly handle unknown tag types in TIFF directory entries, which allows remote attackers to cause a denial of service (out-of-bounds read …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-2481
|
2024-11-21 10:16 |
2010-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310838
|
- |
|
search.cpan
gisle_aas
|
libwww-perl
|
lwp-download in libwww-perl before 5.835 does not reject downloads to filenames that begin with a . (dot) character, which allows remote servers to create or overwrite files via (1) a 3xx redirect to…
|
CWE-20
Improper Input Validation
|
CVE-2010-2253
|
2024-11-21 10:16 |
2010-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310839
|
- |
|
gnu
|
wget
|
GNU Wget 1.12 and earlier uses a server-provided filename instead of the original URL to determine the destination filename of a download, which allows remote servers to create or overwrite arbitrary…
|
CWE-20
Improper Input Validation
|
CVE-2010-2252
|
2024-11-21 10:16 |
2010-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310840
|
- |
|
alexander_v._lukyanov
|
lftp
|
The get1 command, as used by lftpget, in LFTP before 4.0.6 does not properly validate a server-provided filename before determining the destination filename of a download, which allows remote servers…
|
CWE-20
Improper Input Validation
|
CVE-2010-2251
|
2024-11-21 10:16 |
2010-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
