|
312021
|
- |
|
smarty
|
smarty
|
Multiple unspecified vulnerabilities in Smarty before 3.0.0 beta 6 have unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2009-5052
|
2024-11-21 10:11 |
2011-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312022
|
- |
|
symantec
|
antivirus
system_center
antivirus_central_quarantine_server
|
HDNLRSVC.EXE in the Intel Alert Handler service (aka Symantec Intel Handler service) in Intel Alert Management System (aka AMS or AMS2), as used in Symantec AntiVirus Corporate Edition (SAVCE) 10.x b…
|
CWE-20
Improper Input Validation
|
CVE-2010-0111
|
2024-11-21 10:11 |
2011-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312023
|
- |
|
symantec
|
antivirus
system_center
antivirus_central_quarantine_server
|
Multiple stack-based buffer overflows in Intel Alert Management System (aka AMS or AMS2), as used in Symantec AntiVirus Corporate Edition (SAVCE) 10.x before 10.1 MR10, Symantec System Center (SSC) 1…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0110
|
2024-11-21 10:11 |
2011-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312024
|
- |
|
hastymail
|
hastymail2
|
Hastymail2 before RC 8 does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission with…
|
CWE-16
Configuration
|
CVE-2009-5051
|
2024-11-21 10:11 |
2011-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312025
|
- |
|
symantec
|
web_gateway
|
SQL injection vulnerability in login.php in the GUI management console in Symantec Web Gateway 4.5 before 4.5.0.376 allows remote attackers to execute arbitrary SQL commands via the USERNAME paramete…
|
CWE-89
SQL Injection
|
CVE-2010-0115
|
2024-11-21 10:11 |
2011-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312026
|
- |
|
catb
|
gif2png
|
Stack-based buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to execute arbitrary code via a long command-line argument, as demonstrated by a CGI prog…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-5018
|
2024-11-21 10:11 |
2011-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312027
|
- |
|
polyvision
|
roomwizard_firmware
roomwizard
|
The administrative interface on the PolyVision RoomWizard with firmware 3.2.3 places the Sync Connector Active Directory (AD) credentials in a web form that is accessed over HTTP on port 80, which al…
|
CWE-200
Information Exposure
|
CVE-2010-0214
|
2024-11-21 10:11 |
2011-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312028
|
- |
|
activecollab
|
activecollab
|
ActiveCollab before 2.3.2 allows remote authenticated users to bypass intended access restrictions, and (1) delete an attachment or (2) subscribe to an object, via a crafted URL.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0215
|
2024-11-21 10:11 |
2011-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312029
|
- |
|
cisco
|
ios
|
CallManager Express (CME) on Cisco IOS before 15.0(1)XA allows remote authenticated users to cause a denial of service (device crash) by using an extension mobility (EM) phone to interact with the me…
|
CWE-399
Resource Management Errors
|
CVE-2009-5040
|
2024-11-21 10:11 |
2011-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312030
|
- |
|
cisco
|
ios
|
Memory leak in the gk_circuit_info_do_in_acf function in the H.323 implementation in Cisco IOS before 15.0(1)XA allows remote attackers to cause a denial of service (memory consumption) via a large n…
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2009-5039
|
2024-11-21 10:11 |
2011-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
