2010 CVE Vulnerabilities

5,249 CVEs published in 2010.

CVE IDSeverityCVSSDescription
CVE-2010-0106The on-demand scanning in Symantec AntiVirus 10.0.x and 10.1.x before MR9, AntiVirus 10.2.x, and Client Security 3.0.x a...
CVE-2010-0417Buffer overflow in common/util/rlstate.cpp in Helix Player 1.0.6 and RealPlayer allows remote attackers to cause a denia...
CVE-2010-0416Buffer overflow in the Unescape function in common/util/hxurl.cpp and player/hxclientkit/src/CHXClientSink.cpp in Helix ...
CVE-2010-0664Stack consumption vulnerability in the ChildProcessSecurityPolicy::CanRequestURL function in browser/child_process_secur...
CVE-2010-0663The ParamTraits<SkBitmap>::Read function in common/common_param_traits.cc in Google Chrome before 4.0.249.78 does not in...
CVE-2010-0662The ParamTraits<SkBitmap>::Read function in common/common_param_traits.cc in Google Chrome before 4.0.249.78 does not us...
CVE-2010-0661WebCore/bindings/v8/custom/V8DOMWindowCustom.cpp in WebKit before r52401, as used in Google Chrome before 4.0.249.78, al...
CVE-2010-0660Google Chrome before 4.0.249.78 sends an https URL in the Referer header of an http request in certain circumstances inv...
CVE-2010-0659The image decoder in WebKit before r52833, as used in Google Chrome before 4.0.249.78, does not properly handle a failur...
CVE-2010-0658Multiple integer overflows in Skia, as used in Google Chrome before 4.0.249.78, allow remote attackers to execute arbitr...
CVE-2010-0657Google Chrome before 4.0.249.78 on Windows does not perform the expected encoding, escaping, and quoting for the URL in ...
CVE-2010-0656WebKit before r51295, as used in Google Chrome before 4.0.249.78, presents a directory-listing page in response to an XM...
CVE-2010-0655Use-after-free vulnerability in Google Chrome before 4.0.249.78 allows user-assisted remote attackers to cause a denial ...
CVE-2010-0654Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and S...
CVE-2010-0653Opera before 10.10 permits cross-origin loading of CSS stylesheets even when the stylesheet download has an incorrect MI...
CVE-2010-0652Microsoft Internet Explorer permits cross-origin loading of CSS stylesheets even when the stylesheet download has an inc...
CVE-2010-0651WebKit before r52784, as used in Google Chrome before 4.0.249.78 and Apple Safari before 4.0.5, permits cross-origin loa...
CVE-2010-0650WebKit, as used in Google Chrome before 4.0.249.78 and Apple Safari, allows remote attackers to bypass intended restrict...
CVE-2010-0649Integer overflow in the CrossCallParamsEx::CreateFromBuffer function in sandbox/src/crosscall_server.cc in Google Chrome...
CVE-2010-0648Mozilla Firefox, possibly before 3.6, allows remote attackers to discover a redirect's target URL, for the session of a ...
CVE-2010-0647WebKit before r53525, as used in Google Chrome before 4.0.249.89, allows remote attackers to execute arbitrary code in t...
CVE-2010-0646Multiple integer signedness errors in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, ...
CVE-2010-0645Multiple integer overflows in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, allow re...
CVE-2010-0644Google Chrome before 4.0.249.89, when a SOCKS 5 proxy server is configured, sends DNS queries directly, which allows rem...
CVE-2010-0643Google Chrome before 4.0.249.89 attempts to make direct connections to web sites when all configured proxy servers are u...

Check if your code is affected by 2010 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now