2010 CVE Vulnerabilities

5,249 CVEs published in 2010.

CVE IDSeverityCVSSDescription
CVE-2010-3062mysqlnd_wireprotocol.c in the Mysqlnd extension in PHP 5.3 through 5.3.2 allows remote attackers to (1) read sensitive m...
CVE-2010-3014The Coda filesystem kernel module, as used in NetBSD and FreeBSD, when Coda is loaded and Venus is running with /coda mo...
CVE-2010-2944The authenticate function in LDAPUserFolder/LDAPUserFolder.py in zope-ldapuserfolder 2.9-1 does not verify the password ...
CVE-2010-1795Untrusted search path vulnerability in Apple iTunes before 9.1, when running on Windows 7, Vista, and XP, allows local u...
CVE-2010-1768Unspecified vulnerability in Apple iTunes before 9.1 allows local users to gain console privileges via vectors related t...
CVE-2010-3061Unspecified vulnerability in the message-protocol implementation in the Mount service in IBM Tivoli Storage Manager (TSM...
CVE-2010-3060Unspecified vulnerability in the message-protocol implementation in the Server in IBM Tivoli Storage Manager (TSM) FastB...
CVE-2010-3059Buffer overflow in the message-protocol implementation in the Server in IBM Tivoli Storage Manager (TSM) FastBack 5.x.x ...
CVE-2010-3058The Mount service in IBM Tivoli Storage Manager (TSM) FastBack 5.x.x before 5.5.7, and 6.1.0.0, establishes an open UDP ...
CVE-2010-3015Integer overflow in the ext4_ext_get_blocks function in fs/ext4/extents.c in the Linux kernel before 2.6.34 allows local...
CVE-2010-2937The ReadMetaFromId3v2 function in taglib.cpp in the TagLib plugin in VideoLAN VLC media player 0.9.0 through 1.1.2 does ...
CVE-2010-2810Heap-based buffer overflow in the convert_to_idna function in WWW/Library/Implementation/HTParse.c in Lynx 2.8.8dev.1 th...
CVE-2010-2628The IKE daemon in strongSwan 4.3.x before 4.3.7 and 4.4.x before 4.4.1 does not properly check the return values of snpr...
CVE-2010-1172DBus-GLib 0.73 disregards the access flag of exported GObject properties, which allows local users to bypass intended ac...
CVE-2010-2809The default configuration of the <Button2> binding in Uzbl before 2010.08.05 does not properly use the @SELECTED_URI fea...
CVE-2010-2234Cross-site request forgery (CSRF) vulnerability in Apache CouchDB 0.8.0 through 0.11.0 allows remote attackers to hijack...
CVE-2010-1760loader/DocumentThreadableLoader.cpp in the XMLHttpRequest implementation in WebCore in WebKit before r58409 does not pro...
CVE-2010-1386page/Geolocation.cpp in WebCore in WebKit before r56188 and before 1.2.5 does not properly restrict access to the lastPo...
CVE-2010-3054Unspecified vulnerability in FreeType 2.3.9, and other versions before 2.4.2, allows remote attackers to cause a denial ...
CVE-2010-3053bdf/bdflib.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service (application crash) via a cra...
CVE-2010-2813functions/imap_general.php in SquirrelMail before 1.4.21 does not properly handle 8-bit characters in passwords, which a...
CVE-2010-2808Buffer overflow in the Mac_Read_POST_Resource function in base/ftobjs.c in FreeType before 2.4.2 allows remote attackers...
CVE-2010-2807FreeType before 2.4.2 uses incorrect integer data types during bounds checking, which allows remote attackers to cause a...
CVE-2010-2806Array index error in the t42_parse_sfnts function in type42/t42parse.c in FreeType before 2.4.2 allows remote attackers ...
CVE-2010-2805The FT_Stream_EnterFrame function in base/ftstream.c in FreeType before 2.4.2 does not properly validate certain positio...

Check if your code is affected by 2010 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now