CVE-2010-0840
- EPSS 96.32%
- Veröffentlicht 01.04.2010 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:16:57
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, and 1.4.2_25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. ...
CVE-2010-1187
- EPSS 0.42%
- Veröffentlicht 31.03.2010 18:00:00
- Zuletzt bearbeitet 16.06.2026 23:17:47
The Transparent Inter-Process Communication (TIPC) functionality in Linux kernel 2.6.16-rc1 through 2.6.33, and possibly other versions, allows local users to cause a denial of service (kernel OOPS) by sending datagrams through AF_TIPC before enterin...
CVE-2010-0050
- EPSS 11.64%
- Veröffentlicht 15.03.2010 14:15:32
- Zuletzt bearbeitet 16.06.2026 23:15:19
Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an HTML document with improperly nested tags.
CVE-2010-0302
- EPSS 2.58%
- Veröffentlicht 05.03.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:15:53
Use-after-free vulnerability in the abstract file-descriptor handling interface in the cupsdDoSelect function in scheduler/select.c in the scheduler in cupsd in CUPS before 1.4.4, when kqueue or epoll is used, allows remote attackers to cause a denia...
CVE-2010-0205
- EPSS 4.21%
- Veröffentlicht 03.03.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:15:42
The png_decompress_chunk function in pngrutil.c in libpng 1.0.x before 1.0.53, 1.2.x before 1.2.43, and 1.4.x before 1.4.1 does not properly handle compressed ancillary-chunk data that has a disproportionately large uncompressed representation, which...
- EPSS 4.79%
- Veröffentlicht 22.02.2010 13:00:02
- Zuletzt bearbeitet 16.06.2026 23:15:35
The browser engine in Mozilla Firefox 3.0.x before 3.0.18 and 3.5.x before 3.5.8, Thunderbird before 3.0.2, and SeaMonkey before 2.0.3 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute ...
CVE-2010-0410
- EPSS 0.45%
- Veröffentlicht 22.02.2010 13:00:02
- Zuletzt bearbeitet 16.06.2026 23:16:06
drivers/connector/connector.c in the Linux kernel before 2.6.32.8 allows local users to cause a denial of service (memory consumption and system crash) by sending the kernel many NETLINK_CONNECTOR messages.
CVE-2010-0650
- EPSS 2.42%
- Veröffentlicht 18.02.2010 18:00:00
- Zuletzt bearbeitet 16.06.2026 23:16:34
WebKit, as used in Google Chrome before 4.0.249.78 and Apple Safari, allows remote attackers to bypass intended restrictions on popup windows via crafted use of a mouse click event.
CVE-2010-0307
- EPSS 0.83%
- Veröffentlicht 17.02.2010 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:15:54
The load_elf_binary function in fs/binfmt_elf.c in the Linux kernel before 2.6.32.8 on the x86_64 platform does not ensure that the ELF interpreter is available before a call to the SET_PERSONALITY macro, which allows local users to cause a denial of...
CVE-2009-2949
- EPSS 14.09%
- Veröffentlicht 16.02.2010 19:30:00
- Zuletzt bearbeitet 16.06.2026 23:10:33
Integer overflow in the XPMReader::ReadXPM function in filter.vcl/ixpm/svt_xpmread.cxx in OpenOffice.org (OOo) before 3.2 allows remote attackers to execute arbitrary code via a crafted XPM file that triggers a heap-based buffer overflow.