2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-4226 | HIGH | 7.2 | 2.9% | Feb 6, 2014 | cpio, as used in build 2007.05.10, 2010.07.28, and possibly other versions, allows remote attackers to overwrite arbitra... |
| CVE-2010-5107 | HIGH | 7.5 | 16.5% | Mar 7, 2013 | The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and c... |
| CVE-2010-5181 | HIGH | 7 | 0.3% | Aug 25, 2012 | Race condition in VIPRE Antivirus Premium 4.0.3272 on Windows XP allows local users to bypass kernel-mode hook handlers,... |
| CVE-2010-5169 | HIGH | 7 | 0.3% | Aug 25, 2012 | Race condition in Online Armor Premium 4.0.0.35 on Windows XP allows local users to bypass kernel-mode hook handlers, an... |
| CVE-2010-5159 | HIGH | 7 | 0.3% | Aug 25, 2012 | Race condition in Dr.Web Security Space Pro 6.0.0.03100 on Windows XP allows local users to bypass kernel-mode hook hand... |
| CVE-2010-4656 | HIGH | 7.8 | 0.4% | Jul 18, 2011 | The iowarrior_write function in drivers/usb/misc/iowarrior.c in the Linux kernel before 2.6.37 does not properly allocat... |
| CVE-2010-4805 | HIGH | 7.5 | 3.6% | May 26, 2011 | The socket implementation in net/core/sock.c in the Linux kernel before 2.6.35 does not properly manage a backlog of rec... |
| CVE-2010-4251 | HIGH | 7.5 | 3.9% | May 26, 2011 | The socket implementation in net/core/sock.c in the Linux kernel before 2.6.34 does not properly manage a backlog of rec... |
| CVE-2010-4577 | HIGH | 7.5 | 2.2% | Dec 22, 2010 | The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552... |
| CVE-2010-3957 | HIGH | 7.3 | 1.8% | Dec 16, 2010 | Double free vulnerability in the OpenType Font (OTF) driver in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2... |
| CVE-2010-3941 | HIGH | 8.4 | 1.4% | Dec 16, 2010 | Double free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2... |
| CVE-2010-4345 | HIGH | 7.8 | 17.8% | Dec 14, 2010 | Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specif... |
| CVE-2010-3904 | HIGH | 7.8 | 11.2% | Dec 6, 2010 | The rds_page_copy_user function in net/rds/page.c in the Reliable Datagram Sockets (RDS) protocol implementation in the ... |
| CVE-2010-4398 | HIGH | 7.8 | 8.7% | Dec 6, 2010 | Stack-based buffer overflow in the RtlQueryRegistryValues function in win32k.sys in Microsoft Windows XP SP2 and SP3, Wi... |
| CVE-2010-4210 | HIGH | 7.8 | 1.1% | Nov 22, 2010 | The pfs_getextattr function in FreeBSD 7.x before 7.3-RELEASE and 8.x before 8.0-RC1 unlocks a mutex that was not previo... |
| CVE-2010-3872 | HIGH | 7.5 | 2.8% | Nov 22, 2010 | A flaw was found in the mod_fcgid module of httpd. A malformed FastCGI response may result in a stack-based buffer overf... |
| CVE-2010-4168 | HIGH | 7.5 | 3.7% | Nov 17, 2010 | Multiple use-after-free vulnerabilities in OpenTTD 1.0.x before 1.0.5 allow (1) remote attackers to cause a denial of se... |
| CVE-2010-3333 | HIGH | 7.8 | 89.5% | Nov 10, 2010 | Stack-based buffer overflow in Microsoft Office XP SP3, Office 2003 SP3, Office 2007 SP2, Office 2010, Office 2004 and 2... |
| CVE-2010-2572 | HIGH | 7.8 | 62.6% | Nov 10, 2010 | Buffer overflow in Microsoft PowerPoint 2002 SP3 and 2003 SP3 allows remote attackers to execute arbitrary code via a cr... |
| CVE-2010-4206 | HIGH | 8.8 | 2.5% | Nov 6, 2010 | Array index error in the FEBlend::apply function in WebCore/platform/graphics/filters/FEBlend.cpp in WebKit, as used in ... |
| CVE-2010-4199 | HIGH | 8.8 | 1.0% | Nov 6, 2010 | Google Chrome before 7.0.517.44 does not properly perform a cast of an unspecified variable during processing of an SVG ... |
| CVE-2010-4198 | HIGH | 8.8 | 1.5% | Nov 6, 2010 | WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk before 1.2.6, and other products, does not properly handle... |
| CVE-2010-3962 | HIGH | 8.1 | 96.9% | Nov 5, 2010 | Use-after-free vulnerability in Microsoft Internet Explorer 6, 7, and 8 allows remote attackers to execute arbitrary cod... |
| CVE-2010-4040 | HIGH | 7.8 | 1.4% | Oct 21, 2010 | Google Chrome before 7.0.517.41 does not properly handle animated GIF images, which allows remote attackers to cause a d... |
| CVE-2010-4038 | HIGH | 7.5 | 1.7% | Oct 21, 2010 | The Web Sockets implementation in Google Chrome before 7.0.517.41 does not properly handle a shutdown action, which allo... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now