CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In October 2019

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1551 CVE-2010-0749 119 Overflow 2019-10-30 2020-08-18
5.0
None Remote Low Not required None None Partial
Transmission before 1.92 allows attackers to prevent download of a file by corrupted data during the endgame.
1552 CVE-2010-0748 20 DoS 2019-10-30 2020-08-18
7.5
None Remote Low Not required Partial Partial Partial
Transmission before 1.92 allows an attacker to cause a denial of service (crash) or possibly have other unspecified impact via a large number of tr arguments in a magnet link.
1553 CVE-2010-0747 732 Bypass 2019-10-30 2019-11-07
4.6
None Local Low Not required Partial Partial Partial
drbd8 allows local users to bypass intended restrictions for certain actions via netlink packets, similar to CVE-2009-3725.
1554 CVE-2010-0737 732 2019-10-30 2019-11-05
5.2
None Local Network Low ??? Partial Partial Partial
A missing permission check was found in The CLI in JBoss Operations Network before 2.3.1 does not properly check permissions, which allows JBoss ON users to perform management tasks and configuration changes with the privileges of the administrator user.
1555 CVE-2010-0398 59 2019-10-30 2019-11-05
5.5
None Remote Low ??? None Partial Partial
The init script in autokey before 0.61.3-2 allows local attackers to write to arbitrary files via a symlink attack.
1556 CVE-2010-0207 835 DoS 2019-10-30 2019-11-01
4.3
None Remote Medium Not required None None Partial
In xpdf, the xref table contains an infinite loop which allows remote attackers to cause a denial of service (application crash) in xpdf-based PDF viewers.
1557 CVE-2010-0206 476 DoS 2019-10-30 2019-11-01
4.3
None Remote Medium Not required None None Partial
xpdf allows remote attackers to cause a denial of service (NULL pointer dereference and crash) in the way it processes JBIG2 PDF stream objects.
1558 CVE-2009-5043 755 2019-10-31 2019-11-06
7.5
None Remote Low Not required Partial Partial Partial
burn allows file names to escape via mishandled quotation marks
1559 CVE-2009-5042 668 2019-10-31 2019-11-06
6.4
None Remote Low Not required Partial Partial None
python-docutils allows insecure usage of temporary files
1560 CVE-2009-5041 120 Overflow 2019-10-31 2019-11-05
7.5
None Remote Low Not required Partial Partial Partial
overkill has buffer overflow via long player names that can corrupt data on the server machine
1561 CVE-2009-4900 79 XSS 2019-10-28 2019-11-01
4.3
None Remote Medium Not required None Partial None
pixelpost 1.7.1 has XSS
1562 CVE-2009-4899 89 Sql 2019-10-28 2019-11-01
7.5
None Remote Low Not required Partial Partial Partial
pixelpost 1.7.1 has SQL injection
1563 CVE-2009-3887 22 Dir. Trav. 2019-10-29 2019-11-01
7.5
None Remote Low Not required Partial Partial Partial
ytnef has directory traversal
1564 CVE-2009-3723 863 2019-10-29 2019-11-01
5.0
None Remote Low Not required None Partial None
asterisk allows calls on prohibited networks
1565 CVE-2005-2349 22 Dir. Trav. 2019-10-28 2019-11-01
5.0
None Remote Low Not required Partial None None
Zoo 2.10 has Directory traversal
1566 CVE-2002-2444 20 2019-10-28 2019-11-01
7.5
None Remote Low Not required Partial Partial Partial
Snoopy before 2.0.0 has a security hole in exec cURL
1567 CVE-2002-2439 190 Overflow 2019-10-23 2019-10-31
4.6
None Local Low Not required Partial Partial Partial
Integer overflow in the new[] operator in gcc before 4.8.0 allows attackers to have unspecified impacts.
Total number of vulnerabilities : 1567   Page : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 (This Page)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.