Vulnerabilities > Critical
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-07-13 | CVE-2010-0899 | Remote Secure Backup vulnerability in Oracle Secure Backup 10.3.0.1 Unspecified vulnerability in Oracle Secure Backup 10.3.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2010-0898, CVE-2010-0907, and CVE-2010-0906. | 9.0 |
2010-07-13 | CVE-2010-0898 | Unspecified vulnerability in Oracle Secure Backup 10.3.0.1 Unspecified vulnerability in Oracle Secure Backup 10.3.0.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. | 10.0 |
2010-07-13 | CVE-2010-0873 | Remote Data Server vulnerability in Oracle Timesten In-Memory Database 7.0.6.0 Unspecified vulnerability in the Data Server component in Oracle TimesTen In-Memory Database 7.0.6.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. | 10.0 |
2010-07-13 | CVE-2010-2523 | Buffer Errors vulnerability in Linux-Ipv6 Umip 0.4 Multiple buffer overflows in ha.c in the mipv6 daemon in UMIP 0.4 allow remote attackers to have an unspecified impact via a crafted (1) ND_OPT_PREFIX_INFORMATION or (2) ND_OPT_HOME_AGENT_INFO packet. | 10.0 |
2010-07-12 | CVE-2010-2702 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Epicgames products Buffer overflow in the UGameEngine::UpdateConnectingMessage function in the Unreal engine 1, 2, and 2.5, as used in multiple games including Unreal Tournament 2004, Unreal tournament 2003, Postal 2, Raven Shield, and SWAT4, when downloads are enabled, allows remote attackers to execute arbitrary code via a long LEVEL field in a WELCOME response to a download request. | 9.3 |
2010-07-12 | CVE-2010-2701 | Buffer Errors vulnerability in Fathsoft Fathftp 1.7 Multiple buffer overflows in the FathFTP ActiveX control 1.7 allow remote attackers to execute arbitrary code via (1) the GetFromURL member or (2) a long argument to the RasIsConnected method. | 9.3 |
2010-07-08 | CVE-2010-1574 | Permissions, Privileges, and Access Controls vulnerability in Cisco Industrial Ethernet 3000 and IOS IOS 12.2(52)SE and 12.2(52)SE1 on Cisco Industrial Ethernet (IE) 3000 series switches has (1) a community name of public for RO access and (2) a community name of private for RW access, which makes it easier for remote attackers to modify the configuration or obtain potentially sensitive information via SNMP requests, aka Bug ID CSCtf25589. | 10.0 |
2010-07-08 | CVE-2010-2666 | Permissions, Privileges, and Access Controls vulnerability in Opera Browser Opera before 10.54 on Windows and Mac OS X does not properly enforce permission requirements for widget filesystem access and directory selection, which allows user-assisted remote attackers to create or modify arbitrary files, and consequently execute arbitrary code, via widget File I/O operations. | 9.3 |
2010-07-08 | CVE-2010-2657 | Permissions, Privileges, and Access Controls vulnerability in Opera Browser Opera before 10.60 on Windows and Mac OS X does not properly prevent certain double-click operations from running a program located on a web site, which allows user-assisted remote attackers to execute arbitrary code via a crafted web page that bypasses a dialog. | 9.3 |
2010-07-08 | CVE-2010-2445 | OS Command Injection vulnerability in Freeciv 2.2.0/2.3.0 freeciv 2.2 before 2.2.1 and 2.3 before 2.3.0 allows attackers to read arbitrary files or execute arbitrary commands via a scenario that contains Lua functionality, related to the (1) os, (2) io, (3) package, (4) dofile, (5) loadfile, (6) loadlib, (7) module, and (8) require modules or functions. | 10.0 |