LiveActive security incident?Get immediate response
CVE archive

January 2005

Browse CVE records published in January 2005, with severity, affected products, CWE, KEV, and source-backed vulnerability context.

Showing 50 of 199 matching CVEs · Page 1 of 4.

Medium · CVSS 5.3

CVE-2005-4650: Joomla!

Joomla! 1.03 does not restrict the number of "Search" Mambots, which allows remote attackers to cause a denial of service (resource consumption) via a large number of Search Mambots.

Published Jan 14, 2006 · Updated Jan 16, 2025

Unknown · CVSS Not scored

CVE-2005-4660: Race condition in IPCop (aka IPCop Firewall) before 1.4.10 might allow local users to overwrite system conf...

Race condition in IPCop (aka IPCop Firewall) before 1.4.10 might allow local users to overwrite system configuration files and gain privileges by replacing a backup archive during the time window when the archive is owned by "nobody" but not yet encrypted, then executing ipcoprscfg to restore from this backup.

Published Jan 16, 2006 · Updated Sep 17, 2024

Unknown · CVSS Not scored

CVE-2005-4649: Multiple cross-site scripting (XSS) vulnerabilities in Advanced Guestbook 2.2 and 2.3.1 allow remote attack...

Multiple cross-site scripting (XSS) vulnerabilities in Advanced Guestbook 2.2 and 2.3.1 allow remote attackers to inject arbitrary web script or HTML via (1) the entry parameter in index.php and (2) the gb_id parameter in comment.php. NOTE: The index.php/entry vector might be resultant from CVE-2005-1548.

Published Jan 13, 2006 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2005-4624: The m_join function in channel.c for PTnet ircd 1.5 and 1.6 allows remote attackers to cause a denial of se...

The m_join function in channel.c for PTnet ircd 1.5 and 1.6 allows remote attackers to cause a denial of service (memory exhaustion that triggers a daemon restart) via a large number of requests to join a "charmed channel" such as PTnet, #PTnoticias and #*.log, which causes ircd to open the channel even though it does not have any valid users.

Published Jan 6, 2006 · Updated Sep 16, 2024

Unknown · CVSS Not scored

CVE-2005-4826: Unspecified vulnerability in the VLAN Trunking Protocol (VTP) feature in Cisco IOS 12.1(22)EA3 on Catalyst...

Unspecified vulnerability in the VLAN Trunking Protocol (VTP) feature in Cisco IOS 12.1(22)EA3 on Catalyst 2950T switches allows remote attackers to cause a denial of service (device reboot) via a crafted Subset-Advert message packet, a different issue than CVE-2006-4774, CVE-2006-4775, and CVE-2006-4776.

Published Jan 31, 2007 · Updated Aug 8, 2024

Unknown · CVSS Not scored

CVE-2005-4667: Buffer overflow in UnZip 5.50 and earlier allows user-assisted attackers to execute arbitrary code via a lo...

Buffer overflow in UnZip 5.50 and earlier allows user-assisted attackers to execute arbitrary code via a long filename command line argument. NOTE: since the overflow occurs in a non-setuid program, there are not many scenarios under which it poses a vulnerability, unless unzip is passed long arguments when it is invoked from other programs.

Published Jan 25, 2006 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2005-4642: Multiple cross-site scripting (XSS) vulnerabilities in HydroBB 1.0.0 Beta 2 allow remote attackers to injec...

Multiple cross-site scripting (XSS) vulnerabilities in HydroBB 1.0.0 Beta 2 allow remote attackers to inject arbitrary web script or HTML via the s parameter to (1) search.php, (2) members.php, (3) stats.php, (4) viewforum.php, (5) register.php, (6) usercp.php, (7) groups.php, (8) pms.php, and (9) calendar.php.

Published Jan 10, 2006 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2005-4637: Multiple cross-site scripting (XSS) vulnerabilities in index.php in Kayako SupportSuite 3.00.26 and earlier...

Multiple cross-site scripting (XSS) vulnerabilities in index.php in Kayako SupportSuite 3.00.26 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) nav parameter in the downloads module, (2) Full Name and (3) Email fields in the core module, (4) Full Name, (5) Email, and (6) Subject fields in the tickets module, or (7) Registered Email field in the lostpassword feature in the core module.

Published Jan 9, 2006 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2005-4606: SQL injection vulnerability in check_user.asp in multiple Web Wiz products including (1) Site News 3.06 and...

SQL injection vulnerability in check_user.asp in multiple Web Wiz products including (1) Site News 3.06 and earlier, (2) Journal 1.0 and earlier, (3) Polls 3.06 and earlier, and (4) and Database Login 1.71 and earlier allows remote attackers to execute arbitrary SQL commands via the txtUserName parameter.

Published Jan 3, 2006 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2005-4659: IPCop (aka IPCop Firewall) before 1.4.10 has world-readable permissions for the backup.key file, which migh...

IPCop (aka IPCop Firewall) before 1.4.10 has world-readable permissions for the backup.key file, which might allow local users to overwrite system configuration files and gain privileges by creating a malicious encrypted backup archive owned by "nobody", then executing ipcoprscfg to restore from this backup.

Published Jan 16, 2006 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2005-4634: SQL injection vulnerability in index.php in ActiveCampaign SupportTrio 1.4 allows remote attackers to execu...

SQL injection vulnerability in index.php in ActiveCampaign SupportTrio 1.4 allows remote attackers to execute arbitrary SQL commands via the page parameter. NOTE: the provenance of this information is unknown because the source URL is not available; the details are obtained solely from third party information.

Published Jan 9, 2006 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2005-4648: Buffer overflow in Illustrate dBpowerAMP Music Converter 11.5 and earlier, possibly including (1) MusicConv...

Buffer overflow in Illustrate dBpowerAMP Music Converter 11.5 and earlier, possibly including (1) MusicConverter.exe, (2) playlist.exe, and (3) amp.exe, allows user-assisted attackers to cause a denial of service or execute arbitrary code via a .m3u playlist with a long entry, possibly involving large field names, as demonstrated by SecuBox.Labs.m3u. NOTE: this issue might be the same as the .m3u vulnerability in CVE-2004-1569, but if so, then CD:SF-LOC suggests creating a different identifier since the .m3u issue would affect different versions than the .pls issue.

Published Jan 12, 2006 · Updated Aug 7, 2024