LiveActive security incident?Get immediate response
CVE archive

January 2005

Browse CVE records published in January 2005, with severity, affected products, CWE, KEV, and source-backed vulnerability context.

Showing 50 of 199 matching CVEs · Page 2 of 4.

Unknown · CVSS Not scored

CVE-2005-4646: Unspecified vulnerability in index.php in PEARLINGER Pearl Forums 2.4 allows remote attackers to include ar...

Unspecified vulnerability in index.php in PEARLINGER Pearl Forums 2.4 allows remote attackers to include arbitrary files via the mode parameter, possibly due to a directory traversal vulnerability. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Published Jan 11, 2006 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2005-4654: Multiple unspecified vulnerabilities in Oracle for OpenView (OfO) 8.1.7, 9.1.01, and 9.2, and OfO for Linux...

Multiple unspecified vulnerabilities in Oracle for OpenView (OfO) 8.1.7, 9.1.01, and 9.2, and OfO for Linux, allow remote attackers to have an unknown impact via unknown attack vectors. NOTE: because of the lack of details in the vendor advisory, it is unclear which set of existing CVEs this advisory might refer to.

Published Jan 16, 2006 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2005-4620: Buffer overflow in WinRAR 3.50 and earlier allows local users to execute arbitrary code via a long command-...

Buffer overflow in WinRAR 3.50 and earlier allows local users to execute arbitrary code via a long command-line argument. NOTE: because this program executes with the privileges of the invoking user, and because remote programs do not normally have the ability to specify a command-line argument for this program, there may not be a typical attack vector for the issue that crosses privilege boundaries. Therefore this may not be a vulnerability.

Published Jan 6, 2006 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2005-4591: Heap-based buffer overflow in bogofilter 0.96.2, 0.95.2, 0.94.14, 0.94.12, and other versions from 0.93.5 t...

Heap-based buffer overflow in bogofilter 0.96.2, 0.95.2, 0.94.14, 0.94.12, and other versions from 0.93.5 to 0.96.2, when using Unicode databases, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via "invalid input sequences" that lead to heap corruption when bogofilter or bogolexer converts character sets.

Published Jan 9, 2006 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2005-4618: Buffer overflow in sysctl in the Linux Kernel 2.6 before 2.6.15 allows local users to corrupt user memory a...

Buffer overflow in sysctl in the Linux Kernel 2.6 before 2.6.15 allows local users to corrupt user memory and possibly cause a denial of service via a long string, which causes sysctl to write a zero byte outside the buffer. NOTE: since the sysctl is called from a userland program that provides the argument, this might not be a vulnerability, unless a legitimate user-assisted or setuid scenario can be identified.

Published Jan 5, 2006 · Updated Aug 7, 2024

Unknown · CVSS Not scored

CVE-2005-4352: The securelevels implementation in NetBSD 2.1 and earlier, and Linux 2.6.15 and earlier, allows local users...

The securelevels implementation in NetBSD 2.1 and earlier, and Linux 2.6.15 and earlier, allows local users to bypass time setting restrictions and set the clock backwards by setting the clock ahead to the maximum unixtime value (19 Jan 2038), which then wraps around to the minimum value (13 Dec 1901), which can then be set ahead to the desired time, aka "settimeofday() time wrap."

Published Jan 9, 2006 · Updated Aug 7, 2024