Security Dashboard
PAGES
ALERTS
| DATE | SEVERITY | NAME | DETAIL |
|---|---|---|---|
 2010-09-08 |
|
CVE-2010-2066 | The mext_check_arguments function in fs/ext4/move_extent.c in the Linux kernel before 2.6.35 allows local users to overwrite an append-only file vi... |
| 2010-09-08 |
|
CVE-2010-2803 | The drm_ioctl function in drivers/gpu/drm/drm_drv.c in the Direct Rendering Manager (DRM) subsystem in the Linux kernel before 2.6.27.53, 2.6.32.x ... |
| 2010-09-08 |
|
CVE-2010-2955 | The cfg80211_wext_giwessid function in net/wireless/wext-compat.c in the Linux kernel before 2.6.36-rc3-next-20100831 does not properly initialize ... |
| 2010-09-08 |
|
CVE-2010-3264 | The engine installer in Novell Identity Manager (aka IDM) 3.6.1 stores admin tree credentials in /tmp/idmInstall.log, which allows local users to o... |
| 2010-09-07 |
|
CVE-2010-2802 | Cross-site scripting (XSS) vulnerability in MantisBT before 1.2.2 allows remote authenticated users to inject arbitrary web script or HTML via an H... |
| 2010-09-07 |
|
CVE-2010-3245 | The automated-backup functionality in Blackboard Transact Suite (formerly Blackboard Commerce Suite) stores the (1) database username and (2) datab... |
| 2010-09-07 |
|
CVE-2010-3256 | Google Chrome before 6.0.472.53 does not properly limit the number of stored autocomplete entries, which has unspecified impact and attack vectors. |
| 2010-09-03 |
|
CVE-2010-2226 | The xfs_swapext function in fs/xfs/xfs_dfrag.c in the Linux kernel before 2.6.35 does not properly check the file descriptors passed to the SWAPEXT... |
| 2010-08-31 |
|
CVE-2010-3196 | IBM DB2 9.7 before FP2, when AUTO_REVAL is IMMEDIATE, allows remote authenticated users to cause a denial of service (loss of privileges) to a view... |
| 2010-08-30 |
|
CVE-2010-2792 | Race condition in the SPICE (aka spice-xpi) plug-in 2.2 for Firefox allows local users to obtain sensitive information, and conduct man-in-the-midd... |
| 2010-08-30 |
|
CVE-2010-2794 | The SPICE (aka spice-xpi) plug-in 2.2 for Firefox allows local users to overwrite arbitrary files via a symlink attack on an unspecified log file. |
| 2010-08-25 |
|
RHSA-2010:0632-03 | Problem Description: An updated qspice-client package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red... |
| 2010-08-25 |
|
RHSA-2010:0651-01 | Moderate: spice-xpi security and bug fix update |
| 2010-08-23 |
|
MDVSA-2010:159 | Problem Description: A vulnerability has been found and corrected in gv: GNU gv before 3.7.0 allows local users to overwrite arbitrary fil... |
| 2010-08-20 |
|
MDVSA-2010:155 | Problem Description: Multiple vulnerabilities has been found and corrected in mysql: MySQL before 5.1.48 allows remote authenticated users... |
| 2010-08-20 |
|
CVE-2008-7258 | ** DISPUTED ** The standardise function in Anibal Monsalve Salazar sSMTP 2.61 and 2.62 allows local users to cause a denial of service (applicatio... |
| 2010-08-20 |
|
CVE-2010-1172 | DBus-GLib 0.73 disregards the access flag of exported GObject properties, which allows local users to bypass intended access restrictions and possi... |
| 2010-08-20 |
|
CVE-2010-3014 | The Coda filesystem kernel module, as used in NetBSD and FreeBSD, when Coda is loaded and Venus is running with /coda mounted, allows local users t... |
| 2010-08-19 |
|
CVE-2010-2242 | Red Hat libvirt 0.2.0 through 0.8.2 creates iptables rules with improper mappings of privileged source ports, which allows guest OS users to bypass... |
| 2010-08-17 |
|
CVE-2010-2241 | The (1) setup-ds.pl and (2) setup-ds-admin.pl setup scripts for Red Hat Directory Server 8 before 8.2 use world-readable permissions when creating ... |
PAGES
