CVE-2010-2500
- EPSS 4.99%
- Veröffentlicht 19.08.2010 18:00:04
- Zuletzt bearbeitet 16.06.2026 23:20:52
Integer overflow in the gray_render_span function in smooth/ftgrays.c in FreeType before 2.4.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.
CVE-2010-2519
- EPSS 6.29%
- Veröffentlicht 19.08.2010 18:00:04
- Zuletzt bearbeitet 16.06.2026 23:20:54
Heap-based buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.4.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted length value in a PO...
CVE-2010-2520
- EPSS 5.71%
- Veröffentlicht 19.08.2010 18:00:04
- Zuletzt bearbeitet 16.06.2026 23:20:54
Heap-based buffer overflow in the Ins_IUP function in truetype/ttinterp.c in FreeType before 2.4.0, when TrueType bytecode support is enabled, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code...
CVE-2010-2527
- EPSS 5.64%
- Veröffentlicht 19.08.2010 18:00:04
- Zuletzt bearbeitet 16.06.2026 23:20:55
Multiple buffer overflows in demo programs in FreeType before 2.4.0 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.
CVE-2010-2541
- EPSS 4.78%
- Veröffentlicht 19.08.2010 18:00:04
- Zuletzt bearbeitet 16.06.2026 23:20:56
Buffer overflow in ftmulti.c in the ftmulti demo program in FreeType before 2.4.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font file.
CVE-2010-2805
- EPSS 5.11%
- Veröffentlicht 19.08.2010 18:00:04
- Zuletzt bearbeitet 16.06.2026 23:21:32
The FT_Stream_EnterFrame function in base/ftstream.c in FreeType before 2.4.2 does not properly validate certain position values, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a ...
CVE-2010-2008
- EPSS 9.01%
- Veröffentlicht 13.07.2010 20:30:01
- Zuletzt bearbeitet 16.06.2026 23:19:48
MySQL before 5.1.48 allows remote authenticated users with alter database privileges to cause a denial of service (server crash and database loss) via an ALTER DATABASE command with a #mysql50# string followed by a . (dot), .. (dot dot), ../ (dot dot...
CVE-2010-0832
- EPSS 0.94%
- Veröffentlicht 12.07.2010 16:30:01
- Zuletzt bearbeitet 16.06.2026 23:16:55
pam_motd (aka the MOTD module) in libpam-modules before 1.1.0-2ubuntu1.1 in PAM on Ubuntu 9.10 and libpam-modules before 1.1.1-2ubuntu5 in PAM on Ubuntu 10.04 LTS allows local users to change the ownership of arbitrary files via a symlink attack on ....
CVE-2010-2647
- EPSS 2.11%
- Veröffentlicht 06.07.2010 17:17:14
- Zuletzt bearbeitet 16.06.2026 23:21:09
Google Chrome before 5.0.375.99 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via an invalid SVG document.
CVE-2010-2648
- EPSS 2.05%
- Veröffentlicht 06.07.2010 17:17:14
- Zuletzt bearbeitet 16.06.2026 23:21:09
The implementation of the Unicode Bidirectional Algorithm (aka Bidi algorithm or UBA) in Google Chrome before 5.0.375.99 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown ve...