| # |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
|
2501 |
CVE-2010-0791 |
264 |
|
DoS |
2010-03-10 |
2018-10-10 |
2.1 |
None |
Local |
Low |
Not required |
None |
None |
Partial |
|
The (1) ncpmount, (2) ncpumount, and (3) ncplogin programs in ncpfs 2.2.6 do not properly create lock files, which allows local users to cause a denial of service (application failure) via unspecified vectors that trigger the creation of a /etc/mtab~ file that persists after the program exits. |
|
2502 |
CVE-2010-0790 |
200 |
|
+Info |
2010-03-10 |
2018-10-10 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
sutil/ncpumount.c in ncpumount in ncpfs 2.2.6 produces certain detailed error messages about the results of privileged file-access attempts, which allows local users to determine the existence of arbitrary files via the mountpoint name. |
|
2503 |
CVE-2010-0777 |
20 |
|
+Info |
2010-05-17 |
2017-08-16 |
2.6 |
None |
Remote |
High |
Not required |
Partial |
None |
None |
|
The Web Container in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.43, 6.1 before 6.1.0.31, and 7.0 before 7.0.0.11 does not properly handle long filenames and consequently sends an incorrect file in some responses, which allows remote attackers to obtain sensitive information by reading the retrieved file. |
|
2504 |
CVE-2010-0750 |
200 |
|
+Info |
2010-04-06 |
2017-08-16 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
pkexec.c in pkexec in libpolkit in PolicyKit 0.96 allows local users to determine the existence of arbitrary files via the argument. |
|
2505 |
CVE-2010-0730 |
20 |
|
DoS |
2010-05-12 |
2018-10-10 |
2.6 |
None |
Remote |
High |
Not required |
None |
None |
Partial |
|
The MMIO instruction decoder in the Xen hypervisor in the Linux kernel 2.6.18 in Red Hat Enterprise Linux (RHEL) 5 allows guest OS users to cause a denial of service (32-bit guest OS crash) via vectors that trigger an unspecified instruction emulation. |
|
2506 |
CVE-2010-0650 |
264 |
|
Bypass |
2010-02-18 |
2018-11-16 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
|
WebKit, as used in Google Chrome before 4.0.249.78 and Apple Safari, allows remote attackers to bypass intended restrictions on popup windows via crafted use of a mouse click event. |
|
2507 |
CVE-2010-0640 |
79 |
|
XSS |
2010-02-24 |
2018-10-10 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in CA eHealth Performance Manager 6.0.x through 6.2.x, when malicious HTML detection is disabled, allows remote attackers to inject arbitrary web script or HTML via a crafted request. |
|
2508 |
CVE-2010-0622 |
|
|
DoS |
2010-02-15 |
2018-10-10 |
2.1 |
None |
Local |
Low |
Not required |
None |
None |
Partial |
|
The wake_futex_pi function in kernel/futex.c in the Linux kernel before 2.6.33-rc7 does not properly handle certain unlock operations for a Priority Inheritance (PI) futex, which allows local users to cause a denial of service (OOPS) and possibly have unspecified other impact via vectors involving modification of the futex value from user space. |
|
2509 |
CVE-2010-0547 |
20 |
|
DoS |
2010-02-04 |
2013-04-18 |
2.1 |
None |
Local |
Low |
Not required |
None |
None |
Partial |
|
client/mount.cifs.c in mount.cifs in smbfs in Samba 3.4.5 and earlier does not verify that the (1) device name and (2) mountpoint strings are composed of valid characters, which allows local users to cause a denial of service (mtab corruption) via a crafted string. |
|
2510 |
CVE-2010-0537 |
264 |
|
|
2010-03-30 |
2010-06-18 |
2.6 |
None |
Remote |
High |
Not required |
Partial |
None |
None |
|
DesktopServices in Apple Mac OS X 10.6 before 10.6.3 does not properly resolve pathnames in certain circumstances involving an application's save panel, which allows user-assisted remote attackers to trigger unintended remote file copying via a crafted share name. |
|
2511 |
CVE-2010-0530 |
264 |
|
+Info |
2010-12-09 |
2017-09-18 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Apple QuickTime before 7.6.9 on Windows sets weak permissions for the Apple Computer directory in the profile of a user account, which allows local users to obtain sensitive information by reading files in this directory. |
|
2512 |
CVE-2010-0384 |
200 |
|
+Info |
2010-01-25 |
2011-04-27 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Tor 0.2.2.x before 0.2.2.7-alpha, when functioning as a directory mirror, does not prevent logging of the client IP address upon detection of erroneous client behavior, which might make it easier for local users to discover the identities of clients in opportunistic circumstances by reading log files. |
|
2513 |
CVE-2010-0363 |
79 |
|
XSS |
2010-01-20 |
2010-02-02 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in Zeus Web Server before 4.3r5, when SSL is enabled for the admin server, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2002-1785. |
|
2514 |
CVE-2010-0223 |
264 |
|
|
2010-01-07 |
2018-08-13 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Kingston DataTraveler BlackBox (DTBB), DataTraveler Secure Privacy Edition (DTSP), and DataTraveler Elite Privacy Edition (DTEP) USB flash drives do not prevent password replay attacks, which allows physically proximate attackers to access the cleartext drive contents by providing a key that was captured in a USB data stream at an earlier time. |
|
2515 |
CVE-2010-0221 |
264 |
|
|
2010-01-07 |
2018-08-13 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Kingston DataTraveler BlackBox (DTBB), DataTraveler Secure Privacy Edition (DTSP), and DataTraveler Elite Privacy Edition (DTEP) USB flash drives validate passwords with a program running on the host computer rather than the device hardware, which allows physically proximate attackers to access the cleartext drive contents via a modified program. |
|
2516 |
CVE-2010-0213 |
19 |
|
DoS |
2010-07-28 |
2016-04-04 |
2.6 |
None |
Remote |
High |
Not required |
None |
None |
Partial |
|
BIND 9.7.1 and 9.7.1-P1, when a recursive validating server has a trust anchor that is configured statically or via DNSSEC Lookaside Validation (DLV), allows remote attackers to cause a denial of service (infinite loop) via a query for an RRSIG record whose answer is not in the cache, which causes BIND to repeatedly send RRSIG queries to the authoritative servers. |
|
2517 |
CVE-2010-0132 |
79 |
|
XSS |
2010-03-31 |
2018-10-10 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in ViewVC 1.1 before 1.1.5 and 1.0 before 1.0.11, when the regular expression search functionality is enabled, allows remote attackers to inject arbitrary web script or HTML via vectors related to "search_re input," a different vulnerability than CVE-2010-0736. |
|
2518 |
CVE-2010-0124 |
255 |
|
+Info |
2010-03-15 |
2018-10-10 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Employee Timeclock Software 0.99 places the database password on the mysqldump command line, which allows local users to obtain sensitive information by listing the process. |
|
2519 |
CVE-2010-0119 |
200 |
|
+Info |
2010-02-24 |
2018-10-10 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Bournal before 1.4.1 on FreeBSD 8.0, when the -K option is used, places a ccrypt key on the command line, which allows local users to obtain sensitive information by listing the process and its arguments, related to "echoing." |
|
2520 |
CVE-2010-0039 |
264 |
|
|
2010-12-21 |
2011-01-19 |
2.6 |
None |
Remote |
High |
Not required |
Partial |
None |
None |
|
The Application-Level Gateway (ALG) on the Apple Time Capsule, AirPort Extreme Base Station, and AirPort Express Base Station with firmware before 7.5.2 modifies PORT commands in incoming FTP traffic, which allows remote attackers to use the device's IP address for arbitrary intranet TCP traffic by leveraging write access to an intranet FTP server. |
|
2521 |
CVE-2010-0007 |
264 |
|
Bypass |
2010-01-19 |
2018-10-10 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
net/bridge/netfilter/ebtables.c in the ebtables module in the netfilter framework in the Linux kernel before 2.6.33-rc4 does not require the CAP_NET_ADMIN capability for setting or modifying rules, which allows local users to bypass intended access restrictions and configure arbitrary network-traffic filtering via a modified ebtables application. |
|
2522 |
CVE-2010-0002 |
20 |
|
|
2010-01-14 |
2011-08-08 |
2.1 |
None |
Local |
Low |
Not required |
None |
None |
Partial |
|
The /etc/profile.d/60alias.sh script in the Mandriva bash package for Bash 2.05b, 3.0, 3.2, 3.2.48, and 4.0 enables the --show-control-chars option in LS_OPTIONS, which allows local users to send escape sequences to terminal emulators, or hide the existence of a file, via a crafted filename. |
|
2523 |
CVE-2009-5100 |
200 |
|
+Info |
2011-09-13 |
2018-10-10 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Pentaho BI Server 1.7.0.1062 and earlier does not set the autocomplete tag to off on web pages using a password field, which might allow physically proximate attackers to obtain the password. |
|
2524 |
CVE-2009-5085 |
264 |
|
Bypass |
2011-08-12 |
2012-04-25 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
|
IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.2, when configured as an OpenID provider, does not delete the site information cookie in response to a user's deletion of a relying-party trust entry, which allows user-assisted remote attackers to bypass intended trust restrictions via vectors that trigger absence of the consent-to-authenticate page. |
|
2525 |
CVE-2009-5066 |
255 |
|
|
2012-08-13 |
2015-01-17 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
twiddle.sh in JBoss AS 5.0 and EAP 5.0 and earlier accepts credentials as command-line arguments, which allows local users to read the credentials by listing the process and its arguments. |
|
2526 |
CVE-2009-5061 |
|
|
DoS |
2011-03-22 |
2011-03-24 |
2.1 |
None |
Remote |
High |
Single system |
None |
None |
Partial |
|
Unspecified vulnerability in IBM Lotus Quickr 8.1 before 8.1.0.14 services for Lotus Domino, when Domino Native Authentication is enabled, might allow remote authenticated users to cause a denial of service (daemon crash) by going offline, aka SPR MLZG7UPB9N. |
|
2527 |
CVE-2009-5056 |
20 |
|
Bypass |
2011-03-18 |
2011-03-22 |
2.1 |
None |
Remote |
High |
Single system |
Partial |
None |
None |
|
Open Ticket Request System (OTRS) before 2.4.0-beta2 does not properly enforce the move_into permission setting for a queue, which allows remote authenticated users to bypass intended access restrictions and read a ticket by watching this ticket, and then selecting the ticket from the watched-tickets list. |
|
2528 |
CVE-2009-5008 |
264 |
|
Bypass |
2010-10-14 |
2010-10-14 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
Cisco Secure Desktop (CSD), when used in conjunction with an AnyConnect SSL VPN server, does not properly perform verification, which allows local users to bypass intended policy restrictions via a modified executable file. |
|
2529 |
CVE-2009-4998 |
264 |
|
Bypass |
2010-09-20 |
2010-09-21 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
|
The Workplace (aka WP) component in IBM FileNet P8 Application Engine (P8AE) 3.5.1 before 3.5.1-019 and 4.0.2.x before 4.0.2.7-P8AE-FP007, in certain FileTracker configurations, does not apply a security policy to the first document added during a session, which might allow remote attackers to bypass intended access restrictions via unspecified vectors. |
|
2530 |
CVE-2009-4901 |
119 |
|
DoS Overflow |
2010-06-18 |
2016-12-07 |
2.1 |
None |
Local |
Low |
Not required |
None |
None |
Partial |
|
The MSGFunctionDemarshall function in winscard_svc.c in the PC/SC Smart Card daemon (aka PCSCD) in MUSCLE PCSC-Lite before 1.5.4 might allow local users to cause a denial of service (daemon crash) via crafted SCARD_SET_ATTRIB message data, which is improperly demarshalled and triggers a buffer over-read, a related issue to CVE-2010-0407. |
|
2531 |
CVE-2009-4829 |
79 |
|
XSS |
2010-04-27 |
2010-04-28 |
2.1 |
None |
Remote |
High |
Single system |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in the Automated Logout module 6.x-1.x before 6.x-1.7 and 6.x-2.x before 6.x-2.3 for Drupal allows remote authenticated users with administer autologout privileges to inject arbitrary web script or HTML via unspecified vectors. |
|
2532 |
CVE-2009-4652 |
|
|
DoS |
2010-02-26 |
2017-08-16 |
2.6 |
None |
Remote |
High |
Not required |
None |
None |
Partial |
|
The (1) Conn_GetCipherInfo and (2) Conn_UsesSSL functions in src/ngircd/conn.c in ngIRCd 13 and 14, when SSL/TLS support is present and standalone mode is disabled, allow remote attackers to cause a denial of service (application crash) by sending the MOTD command from another server in the same IRC network, possibly related to an array index error. |
|
2533 |
CVE-2009-4557 |
79 |
|
XSS |
2010-01-04 |
2017-08-16 |
2.1 |
None |
Remote |
High |
Single system |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in the Image Assist module 5.x-1.x before 5.x-1.8, 5.x-2.x before 2.0-alpha4, 6.x-1.x before 6.x-1.1, 6.x-2.x before 2.0-alpha4, and 6.x-3.x-dev before 2009-07-15, a module for Drupal, allows remote authenticated users, with image-node creation privileges, to inject arbitrary web script or HTML via a node title. |
|
2534 |
CVE-2009-4409 |
287 |
|
Bypass |
2009-12-23 |
2010-01-06 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
|
The (1) CHAP and (2) MS-CHAP-V2 authentication capabilities in the PPP Access Concentrator (PPPAC) function in Internet Initiative Japan SEIL/B1 firmware 1.00 through 2.52 use the same challenge for each authentication attempt, which allows remote attackers to bypass authentication via a replay attack. |
|
2535 |
CVE-2009-4269 |
310 |
|
|
2010-08-16 |
2011-01-26 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
The password hash generation algorithm in the BUILTIN authentication functionality for Apache Derby before 10.6.1.0 performs a transformation that reduces the size of the set of inputs to SHA-1, which produces a small search space that makes it easier for local and possibly remote attackers to crack passwords by generating hash collisions, related to password substitution. |
|
2536 |
CVE-2009-4249 |
79 |
|
XSS |
2009-12-09 |
2018-10-10 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
|
Multiple cross-site scripting (XSS) vulnerabilities in CutePHP CuteNews 1.4.6, when register_globals is enabled and magic_quotes_gpc is disabled, allow remote attackers to inject arbitrary web script or HTML via the (1) lastusername and (2) mod parameters to index.php; and (3) the title parameter to search.php. |
|
2537 |
CVE-2009-4172 |
79 |
|
XSS |
2009-12-02 |
2018-10-10 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in index.php in CutePHP CuteNews 1.4.6 and UTF-8 CuteNews 8 and 8b, when magic_quotes_gpc is disabled, allows remote attackers to inject arbitrary web script or HTML via the body of a news article in an addnews action. |
|
2538 |
CVE-2009-4145 |
200 |
|
+Info |
2009-12-23 |
2017-09-18 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
nm-connection-editor in NetworkManager (NM) 0.7.x exports connection objects over D-Bus upon actions in the connection editor GUI, which allows local users to obtain sensitive information by reading D-Bus signals, as demonstrated by using dbus-monitor to discover the password for the WiFi network. |
|
2539 |
CVE-2009-4118 |
|
1
|
DoS |
2009-11-30 |
2012-10-25 |
2.1 |
None |
Local |
Low |
Not required |
None |
None |
Partial |
|
The StartServiceCtrlDispatcher function in the cvpnd service (cvpnd.exe) in Cisco VPN client for Windows before 5.0.06.0100 does not properly handle an ERROR_FAILED_SERVICE_CONTROLLER_CONNECT error, which allows local users to cause a denial of service (service crash and VPN connection loss) via a manual start of cvpnd.exe while the cvpnd service is running. |
|
2540 |
CVE-2009-4080 |
|
|
DoS |
2009-11-29 |
2018-10-30 |
2.1 |
None |
Local |
Low |
Not required |
None |
None |
Partial |
|
Multiple unspecified vulnerabilities in ldap_cachemgr (aka the LDAP client configuration cache daemon) in Sun Solaris 9 and 10, and OpenSolaris before snv_78, allow local users to cause a denial of service (daemon crash) via vectors involving multiple serviceSearchDescriptor attributes and a call to the getldap_lookup function, and unspecified other vectors. |
|
2541 |
CVE-2009-4022 |
|
|
|
2009-11-25 |
2017-09-18 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
|
Unspecified vulnerability in ISC BIND 9.0.x through 9.3.x, 9.4 before 9.4.3-P4, 9.5 before 9.5.2-P1, 9.6 before 9.6.1-P2, and 9.7 beta before 9.7.0b3, with DNSSEC validation enabled and checking disabled (CD), allows remote attackers to conduct DNS cache poisoning attacks by receiving a recursive client query and sending a response that contains an Additional section with crafted data, which is not properly handled when the response is processed "at the same time as requesting DNSSEC records (DO)," aka Bug 20438. |
|
2542 |
CVE-2009-3940 |
|
|
DoS |
2009-11-16 |
2010-03-04 |
2.1 |
None |
Local |
Low |
Not required |
None |
None |
Partial |
|
Unspecified vulnerability in Guest Additions in Sun xVM VirtualBox 1.6.x and 2.0.x before 2.0.12, 2.1.x, and 2.2.x, and Sun VirtualBox before 3.0.10, allows guest OS users to cause a denial of service (memory consumption) on the guest OS via unknown vectors. |
|
2543 |
CVE-2009-3562 |
79 |
1
|
XSS |
2009-10-05 |
2017-09-18 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in Xerver HTTP Server 4.32 allows remote attackers to inject arbitrary web script or HTML via the currentPath parameter in a chooseDirectory action. |
|
2544 |
CVE-2009-3554 |
200 |
|
+Info |
2009-12-15 |
2017-08-16 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Twiddle in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP08 and 4.3 before 4.3.0.CP07 writes the JMX password, and other command-line arguments, to the twiddle.log file, which allows local users to obtain sensitive information by reading this file. |
|
2545 |
CVE-2009-3488 |
79 |
|
XSS |
2009-09-30 |
2017-08-16 |
2.1 |
None |
Remote |
High |
Single system |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in the Bibliography (aka Biblio) module 6.x-1.6 for Drupal allows remote authenticated users, with certain content-creation privileges, to inject arbitrary web script or HTML via the Title field, probably a different vulnerability than CVE-2009-3479. |
|
2546 |
CVE-2009-3406 |
|
|
|
2009-10-22 |
2012-10-22 |
2.7 |
None |
Local Network |
Low |
Single system |
Partial |
None |
None |
|
Unspecified vulnerability in the JD Edwards Tools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.98.2.1 allows remote authenticated users to affect confidentiality via unknown vectors. |
|
2547 |
CVE-2009-3402 |
|
|
|
2009-10-22 |
2012-10-22 |
2.1 |
None |
Remote |
High |
Single system |
Partial |
None |
None |
|
Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.1 allows remote authenticated users to affect confidentiality via unknown vectors. |
|
2548 |
CVE-2009-3300 |
79 |
|
XSS |
2009-11-06 |
2017-08-16 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
|
Multiple cross-site scripting (XSS) vulnerabilities in the Identity Provider (IdP) 1.3.x before 1.3.4 and 2.x before 2.1.5, and the Service Provider 1.3.x before 1.3.5 and 2.x before 2.3, in Internet2 Middleware Initiative Shibboleth allow remote attackers to inject arbitrary web script or HTML via URLs that are encountered in redirections, and appear in automatically generated forms. |
|
2549 |
CVE-2009-3156 |
79 |
|
XSS |
2009-09-10 |
2017-08-16 |
2.1 |
None |
Remote |
High |
Single system |
None |
Partial |
None |
|
Cross-site scripting (XSS) vulnerability in the Date Tools sub-module in the Date module 6.x before 6.x-2.3 for Drupal allows remote authenticated users, with "use date tools" or "administer content types" privileges, to inject arbitrary web script or HTML via a "Content type label" field. |
|
2550 |
CVE-2009-3094 |
|
|
DoS |
2009-09-08 |
2018-10-10 |
2.6 |
None |
Remote |
High |
Not required |
None |
None |
Partial |
|
The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp module in the Apache HTTP Server 2.0.63 and 2.2.13 allows remote FTP servers to cause a denial of service (NULL pointer dereference and child process crash) via a malformed reply to an EPSV command. |
