Unknown · CVSS Not scored
Buffer overflow in the (1) smap/smapd and (2) CSMAP daemons for Gauntlet Firewall 5.0 through 6.0 allows remote attackers to execute arbitrary code via a crafted mail message.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Crystal Reports, when displaying data for a password protected database using HTML pages, embeds the username and password in cleartext in the HTML page and the URL, which allows remote attackers to obtain passwords.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
SQL injection vulnerability in article.php in PostNuke 0.62 through 0.64 allows remote attackers to bypass authentication via the user parameter.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
smcboot in Sun SMC (Sun Management Center) 2.0 in Solaris 8 allows local users to delete arbitrary files via a symlink attack on /tmp/smc$SMC_PORT.
Published Jun 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Opera 5.11 allows remote attackers to cause a denial of service (CPU consumption and memory leak) via a web page with a large number of images.
Published Jun 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Handspring Visor 1.0 and 1.0.1 with the VisorPhone Springboard module installed allows remote attackers to cause a denial of service (PalmOS crash and VisorPhone database corruption) by sending a large or crafted SMS image.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in libmysqlclient.so in MySQL 3.23.33 and earlier allows remote attackers to execute arbitrary code via a long host parameter.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in xlock in UnixWare 7.1.0 and 7.1.1 and Open Unix 8.0.0 allows local users to execute arbitrary code.
Published Jun 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
OpenSSH 2.9 and earlier does not initiate a Pluggable Authentication Module (PAM) session if commands are executed with no pty, which allows local users to bypass resource limits (rlimits) set in pam.d.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Find-By-Content in Mac OS X 10.0 through 10.0.4 creates world-readable index files named .FBCIndex in every directory, which allows remote attackers to learn the contents of files in web accessible directories.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to cause the WebID agent to enter debug mode via a URL containing null characters, which may allow attackers to obtain sensitive information.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
SSH before 2.0 disables host key checking when connecting to the localhost, which allows remote attackers to silently redirect connections to the localhost by poisoning the client's DNS cache.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in MySQL before 3.23.33 allows remote attackers to execute arbitrary code via a long drop database request.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Nokia Firewall Appliances running IPSO 3.3 and VPN-1/FireWall-1 4.1 Service Pack 3, IPSO 3.4 and VPN-1/FireWall-1 4.1 Service Pack 4, and IPSO 3.4 or IPSO 3.4.1 and VPN-1/FireWall-1 4.1 Service Pack 5, when SYN Defender is configured in Active Gateway mode, does not properly rewrite the third packet of a TCP three-way handshake to use the NAT IP address, which allows remote attackers to gain sensitive information.
Published Mar 24, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
prefs.php in phpBB 1.4.0 and earlier allows remote authenticated users to execute arbitrary PHP code via an invalid language value, which prevents the variables (1) $l_statsblock in prefs.php or (2) $l_privnotify in auth.php from being properly initialized, which can be modified by the user and later used in an eval statement.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cherokee web server before 0.2.7 does not properly drop root privileges after binding to port 80, which could allow remote attackers to gain privileges via other vulnerabilities.
Published Mar 24, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Microsoft Internet Explorer 5.0 through 6.0 allows attackers to cause a denial of service (browser crash) via a crafted FTP URL such as "/.#./".
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
SSH before 2.0, when using RC4 and password authentication, allows remote attackers to replay messages until a new server key (VK) is generated.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Unknown vulnerability in ColdFusion Server 2.0 through 4.5.1 SP2 allows remote attackers to overwrite templates with zero byte files via unknown attack vectors.
Published Mar 22, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cayman 3220-H DSL Router 1.0 ship without a password set, which allows remote attackers to gain unauthorized access.
Published Mar 24, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Alcatel Speed Touch running firmware KHDSAA.108 and KHDSAA.132 through KHDSAA.134 has a TFTP server running without a password, which allows remote attackers to change firmware versions or the device's configurations.
Published Mar 22, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cisco IOS 12.0(5)XU through 12.1(2) allows remote attackers to read system administration and topology information via an "snmp-server host" command, which creates a readable "community" community string if one has not been previously created.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Unknown vulnerability in the SMTP server in Lotus Domino 5.0 through 5.7 allows remote attackers to bypass mail relaying restrictions via crafted e-mail addresses in "RCPT TO" commands.
Published Apr 21, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
WinVNC 3.3.3 and earlier generates the same challenge string for multiple connections, which allows remote attackers to bypass VNC authentication by sniffing the challenge and response of other users.
Published Mar 20, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
AOL Instant Messenger (AIM) 4.7 allows remote attackers to cause a denial of service (application crash) via a long filename, possibly caused by a buffer overflow.
Published Mar 20, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Vulnerability in autodns.pl for AutoDNS before 0.0.4 related to domain names that are not fully qualified.
Published Jun 11, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The default configuration of sudo in Engarde Secure Linux 1.0.1 allows any user in the admin group to run certain commands that could be leveraged to gain full root access.
Published Jun 25, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Multiple RADIUS implementations do not properly validate the Vendor-Length of the Vendor-Specific attribute, which allows remote attackers to cause a denial of service (crash) via a Vendor-Length that is less than 2.
Published Jun 11, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The Basic Security Module (BSM) for Solaris 2.5.1, 2.6, 7, and 8 does not log anonymous FTP access, which allows remote attackers to hide their activities, possibly when certain BSM audit files are not present under the FTP root.
Published Feb 8, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Unknown vulnerabilities in the UDP port allocation for Linux kernel before 2.2.19 could allow local users to cause a denial of service (deadlock).
Published Aug 31, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
ptrace in Linux 2.2.x through 2.2.19, and 2.4.x through 2.4.9, allows local users to gain root privileges by running ptrace on a setuid or setgid program that itself calls an unprivileged program, such as newgrp.
Published Jul 31, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in ypbind daemon in Solaris 5.4 through 8 allows remote attackers to execute arbitrary code.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Vulnerability in IntraGnat before 1.4.
Published Jun 11, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Stack-based buffer overflow in the comprexx function for ncompress 4.2.4 and earlier, when used in situations that cross security boundaries (such as FTP server), may allow remote attackers to execute arbitrary code via a long filename argument.
Published Oct 20, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
fetchmailconf in fetchmail before 5.7.4 allows local users to overwrite files of other users via a symlink attack on temporary files.
Published Apr 2, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Bugzilla before 2.14 does not restrict access to sanitycheck.cgi, which allows local users to cause a denial of service (CPU consumption) via a flood of requests to sanitycheck.cgi.
Published Aug 31, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Unknown vulnerabilities in strnlen_user for Linux kernel before 2.2.19, with unknown impact.
Published Aug 31, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The Linux kernel before 2.2.19 does not have unregister calls for (1) CPUID and (2) MSR drivers, which could cause a DoS (crash) by unloading and reloading the drivers.
Published Aug 31, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
ghostscript before 6.51 allows local users to read and write arbitrary files as the 'lp' user via the file operator, even with -dSAFER enabled.
Published Jun 5, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
MailSafe in Zone Labs ZoneAlarm 2.6 and earlier and ZoneAlarm Pro 2.6 and 2.4 does not block prohibited file types with long file names, which allows remote attackers to send potentially dangerous attachments.
Published Apr 2, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Signedness error in (1) getsockopt and (2) setsockopt for Linux kernel before 2.2.19 allows local users to cause a denial of service.
Published Aug 31, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
IBM SecureWay 3.2.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, via invalid encodings for the L field of a BER encoding, as demonstrated by the PROTOS LDAPv3 test suite.
Published May 3, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The checkAccess function in PHPSlice 0.1.4, and all other versions between 0.1.1 and 0.1.6, does not properly verify the administrative access level, which could allow remote attackers to gain privileges.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Oracle Internet Directory Server 2.1.1.x and 3.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via invalid encodings of BER OBJECT-IDENTIFIER values, as demonstrated by the PROTOS LDAPv3 test suite.
Published May 3, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
kmmodreg in HP-UX 11.11, 11.04 and 11.00 allows local users to create arbitrary world-writeable files via a symlink attack on the (1) /tmp/.kmmodreg_lock and (2) /tmp/kmpath.tmp temporary files.
Published May 3, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
pSlash PHP script 0.7 and earlier allows remote attackers to execute arbitrary code by including files from remote web sites, using an HTTP request that modifies the includedir variable.
Published Jun 25, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Windows 2000 allows local users to cause a denial of service and possibly gain privileges by setting a hardware breakpoint that is handled using global debug registers, which could cause other processes to terminate due to an exception, and allow hijacking of resources such as named pipes.
Published Sep 1, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
rcs2log, as used in Emacs 20.4, xemacs 21.1.10 and other versions before 21.4, and possibly other packages, allows local users to modify files of other users via a symlink attack on a temporary file.
Published Apr 2, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
netscript before 1.6.3 parses dynamic variables, which could allow remote attackers to alter program behavior or obtain sensitive information.
Published Jun 11, 2002 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cross-site scripting vulnerability in Namazu 2.0.9 and earlier allows remote attackers to execute arbitrary Javascript as other web users via an error message that is returned when an invalid index file is specified in the idxname parameter.
Published Sep 1, 2004 · Updated Aug 8, 2024