Max CVSS | 10.0 | Min CVSS | 4.0 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2010-0629 | 4.0 |
Use-after-free vulnerability in kadmin/server/server_stubs.c in kadmind in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3 allows remote authenticated users to cause a denial of service (daemon crash) via a request from a kadmin client that sends an inva
|
02-02-2024 - 16:52 | 07-04-2010 - 15:30 | |
CVE-2010-0408 | 5.0 |
The ap_proxy_ajp_request function in mod_proxy_ajp.c in mod_proxy_ajp in the Apache HTTP Server 2.2.x before 2.2.15 does not properly handle certain situations in which a client sends no request body, which allows remote attackers to cause a denial o
|
01-11-2023 - 15:32 | 05-03-2010 - 16:30 | |
CVE-2010-0434 | 4.3 |
The ap_read_request function in server/protocol.c in the Apache HTTP Server 2.2.x before 2.2.15, when a multithreaded MPM is used, does not properly handle headers in subrequests in certain circumstances involving a parent request that has a body, wh
|
13-02-2023 - 04:16 | 05-03-2010 - 19:30 | |
CVE-2010-0205 | 4.3 |
The png_decompress_chunk function in pngrutil.c in libpng 1.0.x before 1.0.53, 1.2.x before 1.2.43, and 1.4.x before 1.4.1 does not properly handle compressed ancillary-chunk data that has a disproportionately large uncompressed representation, which
|
07-08-2020 - 13:26 | 03-03-2010 - 19:30 | |
CVE-2007-2721 | 4.3 |
The jpc_qcx_getcompparms function in jpc/jpc_cs.c for the JasPer JPEG-2000 library (libjasper) before 1.900 allows remote user-assisted attackers to cause a denial of service (crash) and possibly corrupt the heap via malformed image files, as origina
|
11-10-2017 - 01:32 | 16-05-2007 - 20:30 | |
CVE-2010-0423 | 5.0 |
gtkimhtml.c in Pidgin before 2.6.6 allows remote attackers to cause a denial of service (CPU consumption and application hang) by sending many smileys in a (1) IM or (2) chat.
|
19-09-2017 - 01:30 | 24-02-2010 - 18:30 | |
CVE-2010-0420 | 4.3 |
libpurple in Finch in Pidgin before 2.6.6, when an XMPP multi-user chat (MUC) room is used, does not properly parse nicknames containing <br> sequences, which allows remote attackers to cause a denial of service (application crash) via a crafted nick
|
19-09-2017 - 01:30 | 24-02-2010 - 18:30 | |
CVE-2010-0436 | 6.9 |
Race condition in backend/ctrl.c in KDM in KDE Software Compilation (SC) 2.2.0 through 4.4.2 allows local users to change the permissions of arbitrary files, and consequently gain privileges, by blocking the removal of a certain directory that contai
|
19-09-2017 - 01:30 | 15-04-2010 - 17:30 | |
CVE-2010-0305 | 5.0 |
ejabberd_c2s.erl in ejabberd before 2.1.3 allows remote attackers to cause a denial of service (daemon crash) via a large number of c2s (aka client2server) messages that trigger a queue overload.
|
17-08-2017 - 01:31 | 03-02-2010 - 19:30 | |
CVE-2009-2042 | 4.3 |
libpng before 1.2.37 does not properly parse 1-bit interlaced images with width values that are not divisible by 8, which causes libpng to include uninitialized bits in certain rows of a PNG file and might allow remote attackers to read portions of s
|
17-08-2017 - 01:30 | 12-06-2009 - 20:30 | |
CVE-2010-1431 | 7.5 |
SQL injection vulnerability in templates_export.php in Cacti 0.8.7e and earlier allows remote attackers to execute arbitrary SQL commands via the export_item_id parameter.
|
16-02-2012 - 04:02 | 04-05-2010 - 16:00 | |
CVE-2008-7252 | 10.0 |
libraries/File.class.php in phpMyAdmin 2.11.x before 2.11.10 uses predictable filenames for temporary files, which has unknown impact and attack vectors.
|
28-01-2011 - 05:00 | 19-01-2010 - 16:30 | |
CVE-2009-4605 | 5.0 |
scripts/setup.php (aka the setup script) in phpMyAdmin 2.11.x before 2.11.10 calls the unserialize function on the values of the (1) configuration and (2) v[0] parameters, which might allow remote attackers to conduct cross-site request forgery (CSRF
|
06-05-2010 - 05:52 | 19-01-2010 - 16:30 | |
CVE-2008-7251 | 10.0 |
libraries/File.class.php in phpMyAdmin 2.11.x before 2.11.10 creates a temporary directory with 0777 permissions, which has unknown impact and attack vectors.
|
06-05-2010 - 04:00 | 19-01-2010 - 16:30 | |
CVE-2010-0400 | 7.5 |
SQL injection vulnerability in lib/user.php in mahara 1.0.4 allows remote attackers to execute arbitrary SQL commands via a username.
|
08-04-2010 - 13:25 | 07-04-2010 - 15:30 | |
CVE-2002-1342 | 7.5 |
Unknown vulnerability in smb2www 980804-16 and earlier allows remote attackers to execute arbitrary commands.
|
10-09-2008 - 19:14 | 18-12-2002 - 05:00 |