|
312321
|
- |
|
muscle
|
pcsc-lite
|
Multiple buffer overflows in the MSGFunctionDemarshall function in winscard_svc.c in the PC/SC Smart Card daemon (aka PCSCD) in MUSCLE PCSC-Lite before 1.5.4 allow local users to gain privileges via …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0407
|
2024-11-21 10:12 |
2010-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312322
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Folder Manager in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows local users to delete arbitrary folders via a symlink attack in conjunction with an unmount operation on a crafted volume, rela…
|
CWE-59
Link Following
|
CVE-2010-0546
|
2024-11-21 10:12 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312323
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The Finder in DesktopServices in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, does not set the expected file ownerships during an "Apply to enclosed items" action, which allows local users to bypas…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0545
|
2024-11-21 10:12 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312324
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
ImageIO in Apple Mac OS X 10.5.8, and 10.6 before 10.6.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0543
|
2024-11-21 10:12 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312325
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Cross-site scripting (XSS) vulnerability in the WEBrick HTTP server in Ruby in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows remote attackers to inject arbitrary web script or HTML via a craf…
|
CWE-79
Cross-site Scripting
|
CVE-2010-0541
|
2024-11-21 10:12 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312326
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Cross-site request forgery (CSRF) vulnerability in the web interface in CUPS before 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 before 10.6.4, and other platforms, allows remote attackers …
|
CWE-352
Origin Validation Error
|
CVE-2010-0540
|
2024-11-21 10:12 |
2010-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312327
|
6.1 |
MEDIUM
Network
|
invisioncommunity
microsoft
|
invision_power_board
internet_explorer
|
Invision Power Board (aka IPB or IP.Board) 2.x through 3.0.4, when Internet Explorer 5 is used, allows XSS via a .txt attachment.
|
CWE-79
Cross-site Scripting
|
CVE-2009-5159
|
2024-11-21 10:11 |
2020-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312328
|
8.8 |
HIGH
Network
|
linksys
|
spa2102_firmware
|
The SIP implementation on the Linksys SPA2102 phone adapter provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain acce…
|
CWE-307
mproper Restriction of Excessive Authentication Attempts
|
CVE-2009-5140
|
2024-11-21 10:11 |
2020-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312329
|
7.5 |
HIGH
Network
|
google
|
gizmo5
|
The SIP implementation on the Gizmo5 software phone provides hashed credentials in a response to an invalid authentication challenge, which makes it easier for remote attackers to obtain access via a…
|
CWE-916
Use of Password Hash With Insufficient Computational Effort
|
CVE-2009-5139
|
2024-11-21 10:11 |
2020-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312330
|
7.2 |
HIGH
Network
|
simplemachines
|
simple_machines_forum
|
There is a file disclosure vulnerability in SMF (Simple Machines Forum) affecting versions through v2.0.3. On some configurations a SMF deployment is shared by several "co-admins" that are not truste…
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2009-5068
|
2024-11-21 10:11 |
2020-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
