|
310011
|
- |
|
linux
vmware
|
linux_kernel
esx
esxi
|
The igb_receive_skb function in drivers/net/igb/igb_main.c in the Intel Gigabit Ethernet (aka igb) subsystem in the Linux kernel before 2.6.34, when Single Root I/O Virtualization (SR-IOV) and promis…
|
CWE-476
NULL Pointer Dereference
|
CVE-2010-4263
|
2024-11-21 10:20 |
2011-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310012
|
- |
|
joomla
|
joomla\!
|
Multiple SQL injection vulnerabilities in Joomla! 1.5.x before 1.5.22 allow remote attackers to execute arbitrary SQL commands via (1) the filter_order parameter in a com_weblinks category action to …
|
CWE-89
SQL Injection
|
CVE-2010-4166
|
2024-11-21 10:20 |
2011-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310013
|
- |
|
hypermail-project
|
hypermail
|
Cross-site scripting (XSS) vulnerability in Hypermail 2.2.0 allows remote attackers to inject arbitrary web script or HTML via a crafted From address, which is not properly handled when indexing mess…
|
CWE-79
Cross-site Scripting
|
CVE-2010-4339
|
2024-11-21 10:20 |
2011-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310014
|
- |
|
gnu
|
gnash
|
The configure script in gnash 0.8.8 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/gnash-configure-errors.$$, (2) /tmp/gnash-configure-warnings.$$, or (3) /tmp/g…
|
CWE-59
Link Following
|
CVE-2010-4337
|
2024-11-21 10:20 |
2011-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310015
|
- |
|
cakefoundation
|
cakephp
|
The _validatePost function in libs/controller/components/security.php in CakePHP 1.3.x through 1.3.5 and 1.2.8 allows remote attackers to modify the internal Cake cache and execute arbitrary code via…
|
CWE-20
Improper Input Validation
|
CVE-2010-4335
|
2024-11-21 10:20 |
2011-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310016
|
- |
|
io-socket-ssl
|
io-socket-ssl
|
The IO::Socket::SSL module 1.35 for Perl, when verify_mode is not VERIFY_NONE, fails open to VERIFY_NONE instead of throwing an error when a ca_file/ca_path cannot be verified, which allows remote at…
|
CWE-310
Cryptographic Issues
|
CVE-2010-4334
|
2024-11-21 10:20 |
2011-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310017
|
- |
|
gnu
|
glibc
|
Stack consumption vulnerability in the regcomp implementation in the GNU C Library (aka glibc or libc6) through 2.11.3, and 2.12.x through 2.12.2, allows context-dependent attackers to cause a denial…
|
CWE-399
Resource Management Errors
|
CVE-2010-4052
|
2024-11-21 10:20 |
2011-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310018
|
- |
|
gnu
|
glibc
|
The regcomp implementation in the GNU C Library (aka glibc or libc6) through 2.11.3, and 2.12.x through 2.12.2, allows context-dependent attackers to cause a denial of service (application crash) via…
|
NVD-CWE-noinfo
|
CVE-2010-4051
|
2024-11-21 10:20 |
2011-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310019
|
- |
|
citrix
|
xen
|
The do_block_io_op function in (1) drivers/xen/blkback/blkback.c and (2) drivers/xen/blktap/blktap.c in Xen before 3.4.0 for the Linux kernel 2.6.18, and possibly other versions, allows guest OS user…
|
CWE-20
Improper Input Validation
|
CVE-2010-4247
|
2024-11-21 10:20 |
2011-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310020
|
- |
|
linux
|
linux_kernel
|
The hci_uart_tty_open function in the HCI UART driver (drivers/bluetooth/hci_ldisc.c) in the Linux kernel 2.6.36, and possibly other versions, does not verify whether the tty has a write operation, w…
|
NVD-CWE-Other
|
CVE-2010-4242
|
2024-11-21 10:20 |
2011-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
