2010 CVE Vulnerabilities

5,249 CVEs published in 2010.

CVE IDSeverityCVSSDescription
CVE-2010-2741The OpenType Font (OTF) format driver in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 performs an incorrect inte...
CVE-2010-2740The OpenType Font (OTF) format driver in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly perform ...
CVE-2010-1883HIGH7.8Integer overflow in the Embedded OpenType (EOT) Font Engine in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2...
CVE-2010-0808Microsoft Internet Explorer 6 and 7 on Windows XP and Vista does not prevent script from simulating user interaction wit...
CVE-2010-3701lib/MessageStoreImpl.cpp in Red Hat Enterprise MRG before 1.2.2 allows remote authenticated users to cause a denial of s...
CVE-2010-3085The network-play implementation in Mednafen before 0.8.D might allow remote servers to execute arbitrary code via unspec...
CVE-2010-3083sys/ssl/SslSocket.cpp in qpidd in Apache Qpid, as used in Red Hat Enterprise MRG before 1.2.2 and other products, when S...
CVE-2010-2951dns_internal.cc in Squid 3.1.6, when IPv6 DNS resolution is not enabled, accesses an invalid socket during an IPv4 TCP D...
CVE-2010-3110Multiple buffer overflows in the Novell Client novfs module for the Linux kernel in SUSE Linux Enterprise 11 SP1 and ope...
CVE-2010-3889Unspecified vulnerability in Microsoft Windows on 32-bit platforms allows local users to gain privileges via unknown vec...
CVE-2010-3888Unspecified vulnerability in Microsoft Windows on 32-bit platforms allows local users to gain privileges via unknown vec...
CVE-2010-3887The Limit Mail feature in the Parental Controls functionality in Mail on Apple Mac OS X does not properly enforce the co...
CVE-2010-3886The CTimeoutEventList::InsertIntoTimeoutList function in Microsoft mshtml.dll uses a certain pointer value as part of pr...
CVE-2010-3885Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-3227. Reason: This candidate is a duplicate of...
CVE-2010-3884Cross-site request forgery (CSRF) vulnerability in CMS Made Simple 1.8.1 and earlier allows remote attackers to hijack t...
CVE-2010-3883Cross-site request forgery (CSRF) vulnerability in the Change Group Permissions module in CMS Made Simple 1.7.1 and earl...
CVE-2010-3882Multiple cross-site scripting (XSS) vulnerabilities in CMS Made Simple 1.7.1 and earlier allow remote attackers to injec...
CVE-2010-3743Directory traversal vulnerability in Visual Synapse HTTP Server 1.0 RC1 through RC3, and 0.60 and earlier, allows remote...
CVE-2010-3088The notify function in pidgin-knotify.c in the pidgin-knotify plugin 0.2.1 and earlier for Pidgin allows remote attacker...
CVE-2010-2938arch/x86/hvm/vmx/vmcs.c in the virtual-machine control structure (VMCS) implementation in the Linux kernel 2.6.18 on Red...
CVE-2010-2797Directory traversal vulnerability in lib/translation.functions.php in CMS Made Simple before 1.8.1 allows remote attacke...
CVE-2010-3697The wait_for_child_to_die function in main/event.c in FreeRADIUS 2.1.x before 2.1.10, in certain circumstances involving...
CVE-2010-3696The fr_dhcp_decode function in lib/dhcp.c in FreeRADIUS 2.1.9, in certain non-default builds, does not properly handle t...
CVE-2010-3692Directory traversal vulnerability in the callback function in client.php in phpCAS before 1.1.3, when proxy mode is enab...
CVE-2010-3691PGTStorage/pgt-file.php in phpCAS before 1.1.3, when proxy mode is enabled, allows local users to overwrite arbitrary fi...

Check if your code is affected by 2010 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now