Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ubuntu ubuntu linux 9.10 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2010-3709
The ZipArchive::getArchiveComment function in PHP 5.2.x up to and including 5.2.14 and 5.3.x up to and including 5.3.3 allows context-dependent malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted ZIP archive.
Php Php
Canonical Ubuntu Linux 10.10
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 6.06
1 EDB exploit
6.8
CVSSv2
CVE-2010-3870
The utf8_decode function in PHP prior to 5.3.4 does not properly handle non-shortest form UTF-8 encoding and ill-formed subsequences in UTF-8 data, which makes it easier for remote malicious users to bypass cross-site scripting (XSS) and SQL injection protection mechanisms via a ...
Php Php
Canonical Ubuntu Linux 10.10
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 6.06
1 EDB exploit
4.3
CVSSv2
CVE-2008-2009
Xiph.org libvorbis prior to 1.0 does not properly check for underpopulated Huffman trees, which allows remote malicious users to cause a denial of service (crash) via a crafted OGG file that triggers memory corruption during execution of the _make_decode_tree function.
Xiph.org Libvorbis 1.0
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 9.10
5
CVSSv2
CVE-2009-2797
The WebKit component in Safari in Apple iPhone OS prior to 3.1, and iPhone OS prior to 3.1.1 for iPod touch, does not remove usernames and passwords from URLs sent in Referer headers, which allows remote malicious users to obtain sensitive information by reading Referer logs on a...
Apple Iphone Os
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 10.10
2.1
CVSSv2
CVE-2010-2946
fs/jfs/xattr.c in the Linux kernel prior to 2.6.35.2 does not properly handle a certain legacy format for storage of extended attributes, which might allow local users by bypass intended xattr namespace restrictions via an "os2." substring at the beginning of a name.
Linux Linux Kernel
Canonical Ubuntu Linux 10.10
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 9.10
10
CVSSv2
CVE-2010-3114
The text-editing implementation in Google Chrome prior to 5.0.375.127, and webkitgtk prior to 1.2.6, does not check a node type before performing a cast, which has unspecified impact and attack vectors related to (1) DeleteSelectionCommand.cpp, (2) InsertLineBreakCommand.cpp, or ...
Google Chrome
Webkitgtk Webkitgtk
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 10.10
5
CVSSv2
CVE-2010-3115
Google Chrome prior to 5.0.375.127, and webkitgtk prior to 1.2.6, does not properly implement the history feature, which might allow remote malicious users to spoof the address bar via unspecified vectors.
Google Chrome
Webkitgtk Webkitgtk
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 10.10
2.6
CVSSv2
CVE-2010-0650
WebKit, as used in Google Chrome prior to 4.0.249.78 and Apple Safari, allows remote malicious users to bypass intended restrictions on popup windows via crafted use of a mouse click event.
Google Chrome
Apple Safari -
Canonical Ubuntu Linux 9.10
Canonical Ubuntu Linux 10.10
Canonical Ubuntu Linux 10.04
6.8
CVSSv2
CVE-2010-1812
Use-after-free vulnerability in WebKit in Apple iOS prior to 4.1 on the iPhone and iPod touch, and webkitgtk prior to 1.2.6, allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via vectors involving selections.
Apple Iphone Os
Webkitgtk Webkitgtk
Canonical Ubuntu Linux 10.10
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 9.10
6.8
CVSSv2
CVE-2010-1814
WebKit in Apple iOS prior to 4.1 on the iPhone and iPod touch, and webkitgtk prior to 1.2.6, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors involving form menus.
Apple Iphone Os
Webkitgtk Webkitgtk
Canonical Ubuntu Linux 10.10
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 9.10
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »