Latest CVE Vulnerabilities

CVE-2010-3197 (db2)
(08/31/2010) IBM DB2 9.7 before FP2 does not perform the expected access control on the monitor administrative views in the SYSIBMADM schema, which allows remote attackers to obtain sensitive information via unspecified vectors. Read More

CVE-2010-3196 (db2)
(08/31/2010) IBM DB2 9.7 before FP2, when AUTO_REVAL is IMMEDIATE, allows remote authenticated users to cause a denial of service (loss of privileges) to a view owner by defining a dependent view. Read More

CVE-2010-3195 (db2)
(08/31/2010) Unspecified vulnerability in IBM DB2 9.1 before FP9, 9.5 before FP6, and 9.7 before FP2 on Windows Server 2008 allows attackers to cause a denial of service (trap) via vectors involving "special group and user enumeration." Read More

CVE-2010-3194 (db2)
(08/31/2010) The DB2DART program in IBM DB2 9.1 before FP9, 9.5 before FP6, and 9.7 before FP2 allows attackers to bypass intended file access restrictions via unspecified vectors related to overwriting files owned by an instance owner. Read More

CVE-2010-3193 (db2)
(08/31/2010) Unspecified vulnerability in the DB2STST program in IBM DB2 9.1 before FP9, 9.5 before FP6, and 9.7 before FP2 has unknown impact and attack vectors. Read More

CVE-2010-2365 (moobbs2)
(08/31/2010) Cross-site scripting (XSS) vulnerability in Free CGI Moo moobbs2 before 1.03 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Read More

CVE-2010-2364 (moobbs)
(08/31/2010) Cross-site scripting (XSS) vulnerability in Free CGI Moo moobbs before 1.03 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Read More

CVE-2010-3191 (captivate)
(08/31/2010) Untrusted search path vulnerability in Adobe Captivate 5.0.0.596, and possibly other versions, allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is ... Read More

CVE-2010-3190 (visual_studio)
(08/31/2010) Untrusted search path vulnerability in ATL MFC Trace Tool (AtlTraceTool8.exe), as used in Microsoft Visual Studio, allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse ... Read More

CVE-2010-3189 (internet_security)
(08/31/2010) The extSetOwner function in the UfProxyBrowserCtrl ActiveX control (UfPBCtrl.dll) in Trend Micro Internet Security Pro 2010 allows remote attackers to execute arbitrary code via an invalid address that is dereferenced as a pointer. Read More

For more information on any of our services, sign up here!



DDI is a certified PCI ASV (Approved Scanning Vendor)

Click here to view a demo of our Security Training Education and Awareness Module.


Click here to view the latest CVE vulnerabilities
See available DDI RSS feeds              Click here to follow Digital Defense on Twitter!              Click here to follow Digital Defense on LinkedIn!

 

Valid XHTML 1.0 Transitional Valid CSS!

This site has been optimized for FF2/3 and IE7/IE8. Site functionality may be reduced when utilized with other web browsing software.

Homeland Security Portal
The Homeland Security Portal is an interactive platform and informative arena where industry professionals can register, advertise and obtain publicly available information regarding new products, new technologies, industry news, case studies, investment opportunities and much more.