CVE Daily
← All years

Uncategorized 2005

Page 37/38.

CVEs without a recognized CWE (not present in the CWE map or marked as N/A).

CVSS ≥ 0.0
2005-01-13
Medium

CVE-2005-0381

Cross-site scripting (XSS) vulnerability in f.aspx in forumKIT 1.0 allows remote attackers to inject arbitrary web script or HTML via the members parameter.

CVSS: 4.3CWE: N/A
Read more
Medium

CVE-2005-0740

The TCP stack (tcp_input.c) in OpenBSD 3.5 and 3.6 allows remote attackers to cause a denial of service (system panic) via crafted values in the TCP timestamp option, which causes invalid arguments t…

CVSS: 5.0CWE: N/A
Read more
Medium

CVE-2005-0069

The (1) tcltags or (2) vimspell.sh scripts in vim 6.3 allow local users to overwrite or create arbitrary files via a symlink attack on temporary files.

CVSS: 4.6CWE: N/A
Read more
High

CVE-2005-0111

Stack-based buffer overflow in the websql CGI program in MySQL MaxDB 7.5.00 allows remote attackers to execute arbitrary code via a long password parameter.

CVSS: 7.5CWE: N/A
Read more
2005-01-12
High

CVE-2005-0376

PHP remote file inclusion vulnerability in SGallery 1.01 allows local and possibly remote attackers to execute arbitrary PHP code by modifying the DOCUMENT_ROOT parameter to reference a URL on a remo…

CVSS: 7.5CWE: N/A
Read more
Medium

CVE-2005-0456

Opera 7.54 and earlier does not properly validate base64 encoded binary data in a data: (RFC 2397) URL, which causes the URL to be obscured in a download dialog, which may allow remote attackers to t…

CVSS: 5.0CWE: N/A
Read more
2005-01-11
Medium

CVE-2005-0108

Apache mod_auth_radius 1.5.4 and libpam-radius-auth allow remote malicious RADIUS servers to cause a denial of service (crash) via a RADIUS_REPLY_MESSAGE with a RADIUS attribute length of 1, which le…

CVSS: 5.0CWE: N/A
Read more
Low

CVE-2005-0288

The change password functionality in Bottomline Webseries Payment Application does not require the old password when users enter a new password, which could allow remote authenticated users to change…

CVSS: 3.6CWE: N/A
Read more
Medium

CVE-2005-0117

Buffer overflow in XShisen before 1.36 allows local users to execute arbitrary code via a long GECOS field.

CVSS: 4.6CWE: N/A
Read more
Medium

CVE-2005-0097

The NTLM component in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via a malformed NTLM type 3 message that triggers a NULL dereference.

CVSS: 5.0CWE: N/A
Read more
High

CVE-2004-0991

Buffer overflow in mpg123 before 0.59s-r9 allows remote attackers to execute arbitrary code via frame headers in MP2 or MP3 files.

CVSS: 7.5CWE: N/A
Read more
Critical

CVE-2004-0897

The Indexing Service for Microsoft Windows XP and Server 2003 does not properly validate the length of a message, which allows remote attackers to execute arbitrary code via a buffer overflow attack.

CVSS: 10.0CWE: N/A
Read more
Medium

CVE-2004-1039

The NFS mountd service on SCO UnixWare 7.1.1, 7.1.3, 7.1.4, and 7.0.1, and possibly other versions, when run from inetd, allows remote attackers to cause a denial of service (memory exhaustion) via a…

CVSS: 5.0CWE: N/A
Read more
2005-01-10
Medium

CVE-2004-1210

Cross-site scripting (XSS) vulnerability in proxylog.dat in IPCop 1.4.1 and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via the (1) url or (2) part variabl…

CVSS: 6.8CWE: N/A
Read more
Medium

CVE-2004-1224

Off-by-one error in the mtr_curses_keyaction function for mtr 0.55 through 0.65 allows local users to hijack raw sockets, as demonstrated using the "s" keybinding, which leaves a buffer without a NUL…

CVSS: 4.6CWE: N/A
Read more
Medium

CVE-2004-1213

Cross-site scripting (XSS) vulnerability in index.php in Advanced Guestbook 2.3.1, 2.2, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the entry parame…

CVSS: 6.8CWE: N/A
Read more
Critical

CVE-2004-1214

Format string vulnerability in Kreed 1.05 and earlier allows remote attackers to execute arbitrary code via format specifiers in (1) a nickname or (2) message text.

CVSS: 10.0CWE: N/A
Read more
Medium

CVE-2004-1215

Kreed 1.05 and earlier allows remote attackers to cause a denial of service (server disconnect) via a long UDP packet, which causes a "message too long" socket error.

CVSS: 5.0CWE: N/A
Read more
Medium

CVE-2004-1216

The scripts that handle players in Kreed 1.05 and earlier allow remote attackers to cause a denial of service (server freeze) via a long (1) nickname or (2) model type, which generates dialog boxes o…

CVSS: 5.0CWE: N/A
Read more
Medium

CVE-2004-1217

Hosting Controller 6.1 Hotfix 1.4, and possibly other versions, allows remote attackers to view arbitrary directories by specifying the target pathname in the FilePath parameter to (1) Statsbrowse.as…

CVSS: 5.0CWE: N/A
Read more
Medium

CVE-2004-1218

Remote Execute 2.30 allows remote attackers to cause a denial of service (application crash) by making 7 simultaneous connections.

CVSS: 5.0CWE: N/A
Read more
Medium

CVE-2004-1219

paFileDB 3.1, when using sessions authentication and while the administrator logs on, allows remote attackers to read the administrator's password hash and conduct brute force password guessing attac…

CVSS: 5.0CWE: N/A
Read more
Medium

CVE-2004-1221

Directory traversal vulnerability in weblibs.pl in WebLibs 1.0 allows remote attackers to read arbitrary files via .. sequences in the TextFile parameter.

CVSS: 5.0CWE: N/A
Read more
Critical

CVE-2004-1222

weblibs.pl in WebLibs 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the TextFile parameter.

CVSS: 10.0CWE: N/A
Read more
Medium

CVE-2004-1223

The Management Agent in F-Secure Policy Manager 5.11.2810 allows remote attackers to gain sensitive information, such as the absolute path for the web server, via an HTTP request to fsmsh.dll without…

CVSS: 5.0CWE: N/A
Read more
Medium

CVE-2004-1226

SugarCRM Sugar Sales 2.0.1c and earlier allows remote attackers to gain sensitive information via certain requests to scripts that contain invalid input, which reveals the path in an error message, a…

CVSS: 5.0CWE: N/A
Read more
Critical

CVE-2004-1225

SQL injection vulnerability in SugarCRM Sugar Sales before 2.0.1a allows remote attackers to execute arbitrary SQL commands and gain privileges via the record parameter in a DetailView action to inde…

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1227

Directory traversal vulnerability in SugarCRM Sugar Sales 2.0.1c and earlier allows remote attackers to read arbitrary files and possibly execute arbitrary PHP code via .. (dot dot) sequences in the…

CVSS: 10.0CWE: N/A
Read more
Medium

CVE-2004-1228

The install scripts in SugarCRM Sugar Sales 2.0.1c and earlier are not removed after installation, which allows attackers to obtain the MySQL administrative password in cleartext from an installation…

CVSS: 6.4CWE: N/A
Read more
High

CVE-2004-1229

Cross-site scripting vulnerability in the parser for Gadu-Gadu allows remote attackers to inject arbitrary web script or HTML via (1) http:// or (2) news:// URLs, a different vulnerability than CVE-2…

CVSS: 7.5CWE: N/A
Read more
Medium

CVE-2004-1230

Gadu-Gadu allows remote attackers to gain sensitive information and read files from the _cache directory of other users via a DCC connection and a CTCP packet that contains a 1 as the type and a 4 as…

CVSS: 5.0CWE: N/A
Read more
Medium

CVE-2004-1231

Directory traversal vulnerability in Gadu-Gadu allows remote attackers to read arbitrary files via .. (dot dot) sequences in a DCC connection with a CTCP packet that contains a 1 as the type and a 4…

CVSS: 5.0CWE: N/A
Read more
Critical

CVE-2004-1232

Stack-based buffer overflow in the code that sends images in Gadu-Gadu allows remote attackers to execute arbitrary code via a large image filename.

CVSS: 10.0CWE: N/A
Read more
Medium

CVE-2004-1233

Integer overflow in Gadu-Gadu allows remote attackers to cause a denial of service (disk consumption) via a user packet to the DCC file transfer capability with an invalid file length.

CVSS: 5.0CWE: N/A
Read more
Critical

CVE-2004-1254

WinRAR 3.40, and possibly earlier versions, allows remote attackers to execute arbitrary code via a ZIP file containing a file with a long filename, possibly causing an integer overflow that leads to…

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1255

Buffer overflow in the expandtabs function in 2fax 3.04 allows remote attackers to execute arbitrary code via a text file that is converted to TIFF.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1256

Multiple buffer overflows in the (1) event_text and (2) event_specific functions in abc2midi 2004.12.04 allow remote attackers to execute arbitrary code via crafted ABC files.

CVSS: 10.0CWE: N/A
Read more
Medium

CVE-2004-1212

Directory traversal vulnerability in btdownload.php in Blog Torrent preview 0.8 allows remote attackers to download arbitrary files via a .. (dot dot) in the file argument.

CVSS: 5.0CWE: N/A
Read more
Low

CVE-2004-1191

Race condition in SuSE Linux 8.1 through 9.2, when run on SMP systems that have more than 4GB of memory, could allow local users to read unauthorized memory from "foreign memory pages."

CVSS: 1.2CWE: N/A
Read more
Medium

CVE-2004-1209

Verisign Payflow Link, when running with empty Accepted URL fields, does not properly verify the data in the hidden AMOUNT field, which allows remote attackers to modify the price of the items that t…

CVSS: 5.0CWE: N/A
Read more
Medium

CVE-2004-1193

Prevx Home 1.0 allows local users with administrator privileges to bypass the intrusion prevention features by directly writing to \device\physicalmemory, which restores the running kernel's original…

CVSS: 6.6CWE: CWE-264
Read more
Critical

CVE-2004-1259

Multiple buffer overflows in the handle_directive function in abcpp.c for abcpp 1.3.0 allow remote attackers to execute arbitrary code via crafted ABC files.

CVSS: 10.0CWE: N/A
Read more
Medium

CVE-2004-1169

MaxDB WebTools 7.5.00.18 and earlier allows remote attackers to cause a denial of service (application crash) via an HTTP GET request for a file that does not exist, followed by two carriage returns,…

CVSS: 5.0CWE: N/A
Read more
Critical

CVE-2004-1170

a2ps 4.13 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename.

CVSS: 10.0CWE: N/A
Read more
Low

CVE-2004-1171

KDE 3.2.x and 3.3.0 through 3.3.2, when saving credentials that are (1) manually entered by the user or (2) created by the SMB protocol handler, stores those credentials for plaintext in the user's .…

CVSS: 2.1CWE: N/A
Read more
Critical

CVE-2004-1172

Stack-based buffer overflow in the Agent Browser in Veritas Backup Exec 8.x before 8.60.3878 Hotfix 68, and 9.x before 9.1.4691 Hotfix 40, allows remote attackers to execute arbitrary code via a regi…

CVSS: 10.0CWE: N/A
Read more
Medium

CVE-2004-1177

Cross-site scripting (XSS) vulnerability in the driver script in mailman before 2.1.5 allows remote attackers to inject arbitrary web script or HTML via a URL, which is not properly escaped in the re…

CVSS: 4.3CWE: N/A
Read more
Critical

CVE-2004-1187

Heap-based buffer overflow in the pnm_get_chunk function for xine 0.99.2, and other packages such as MPlayer that use the same code, allows remote attackers to execute arbitrary code via long PNA_TAG…

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1188

The pnm_get_chunk function in xine 0.99.2 and earlier, and other packages such as MPlayer that use the same code, does not properly verify that the chunk size is less than the PREAMBLE_SIZE, which ca…

CVSS: 10.0CWE: N/A
Read more
Low

CVE-2004-1190

SUSE Linux before 9.1 and SUSE Linux Enterprise Server before 9 do not properly check commands sent to CD devices that have been opened read-only, which could allow local users to conduct unauthorize…

CVSS: 2.1CWE: N/A
Read more
Critical

CVE-2004-1192

Format string vulnerability in the lprintf function in Citadel/UX 6.27 and earlier allows remote attackers to execute arbitrary code via format string specifiers sent to the server.

CVSS: 10.0CWE: N/A
Read more
Medium

CVE-2004-1194

Buffer overflow in Star Wars Battlefront 1.11 and earlier allows remote attackers to cause a denial of service (application crash) via a long nickname.

CVSS: 5.0CWE: N/A
Read more
Critical

CVE-2004-1208

Buffer overflow in Orbz 2.10 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long password field in a join request.

CVSS: 10.0CWE: N/A
Read more
Medium

CVE-2004-1195

Star Wars Battlefront 1.11 and earlier allows remote attackers to cause a denial of service (application crash) via a join request that contains a memory address that causes the server to read arbitr…

CVSS: 5.0CWE: N/A
Read more
Medium

CVE-2004-1196

Cross-site scripting (XSS) vulnerability in inmail.pl in Insite Inmail allows remote attackers to inject arbitrary web script or HTML via the acao parameter.

CVSS: 6.8CWE: N/A
Read more
Medium

CVE-2004-1197

Cross-site scripting (XSS) vulnerability in inshop.pl in Insite inShop allows remote attackers to inject arbitrary web script or HTML via the screen parameter.

CVSS: 6.8CWE: N/A
Read more
Medium

CVE-2004-1199

Safari 1.2.4 on Mac OS X 10.3.6 allows remote attackers to cause a denial of service (application crash from memory exhaustion), as demonstrated using Javascript code that continuously creates nested…

CVSS: 5.0CWE: N/A
Read more
Medium

CVE-2004-1202

Cross-site scripting (XSS) vulnerability in parser.php in phpCMS 1.2.1 and earlier, with non-stealth and debug modes enabled, allows remote attackers to inject arbitrary web script or HTML via the fi…

CVSS: 6.8CWE: N/A
Read more
Medium

CVE-2004-1203

parser.php in phpCMS 1.2.1 and earlier, with non-stealth and debug modes enabled, allows remote attackers to gain sensitive information via an invalid file parameter, which reveals the web server's i…

CVSS: 5.0CWE: N/A
Read more
Low

CVE-2004-1204

FluxBox 0.9.10 and earlier versions allows local users to cause a denial of service (application crash) by calling Xman with a long -title value, possibly triggering a buffer overflow.

CVSS: 2.1CWE: N/A
Read more
Medium

CVE-2004-1205

codebrowserpntm.php in PnTresMailer 6.03 allows remote attackers to gain sensitive information via an invalid filetohighlight parameter, which reveals the full path in an error message.

CVSS: 5.0CWE: N/A
Read more
Medium

CVE-2004-1206

Directory traversal vulnerability in codebrowserpntm.php in pnTresMailer 6.0.3 allows remote attackers to read arbitrary files via a .. (dot dot) in the filetodownload parameter.

CVSS: 5.0CWE: N/A
Read more
Medium

CVE-2004-1207

The Serious engine, as used in (1) Alpha Black Zero Intrepid Protocol 1.04 and earlier, (2) Nitro family, and (3) Serious Sam Second Encounter 1.07 allows remote attackers to cause a denial of servic…

CVSS: 5.0CWE: N/A
Read more
Critical

CVE-2004-1257

Buffer overflow in the process_abc function in abc.c for abc2mtex 1.6.1 allows remote attackers to execute arbitrary code via crafted ABC files.

CVSS: 10.0CWE: N/A
Read more
Medium

CVE-2004-1167

mirrorselect before 0.89 creates temporary files in a world-writable location with predictable file names, which allows remote attackers to overwrite arbitrary files via a symlink attack.

CVSS: 5.0CWE: N/A
Read more
Critical

CVE-2004-1260

Multiple buffer overflows in the (1) write_heading function in subs.cpp or (2) trim_title function in parse.cpp for abctab2ps 1.6.3 allow remote attackers to execute arbitrary code via crafted ABC fi…

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1301

Buffer overflow in the book_format_sql function in format.c for xlreader 0.9.0 allows remote attackers to execute arbitrary code via a crafted Excel (XLS) file.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1290

Buffer overflow in the process_moves function in pgn2web.c for pgn2web 0.3 allows remote attackers to execute arbitrary code via a crafted PGN file.

CVSS: 10.0CWE: N/A
Read more
High

CVE-2004-1291

Buffer overflow in qwik-smtpd allows remote attackers to use the server as an SMTP spam relay via a long HELO command, which overwrites the adjacent localIP data buffer.

CVSS: 7.5CWE: N/A
Read more
Critical

CVE-2004-1292

Buffer overflow in the parse_emelody function in parse_emelody.c for ringtonetools 2.22 allows remote attackers to execute arbitrary code via a crafted eMelody file.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1293

Buffer overflow in the ReadFontTbl function in reader.c for rtf2latex2e 1.0fc2 allows remote attackers to execute arbitrary code via a crafted RTF file.

CVSS: 10.0CWE: N/A
Read more
Medium

CVE-2004-1294

The mget function in cmds.c for tnftp 20030825 allows remote FTP servers to overwrite arbitrary files via FTP responses containing file names with / (slash) characters.

CVSS: 5.0CWE: N/A
Read more
Low

CVE-2004-1295

The slip_down function in slip.c for the uml_net program in uml-utilities 20030903, when uml_net is installed setuid root, does not verify whether the calling user has sufficient permission to disabl…

CVSS: 2.1CWE: N/A
Read more
Critical

CVE-2004-1297

Buffer overflow in the process_font_table function in convert.c for unrtf 0.19.3 allows remote attackers to execute arbitrary code via a crafted RTF file.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1298

Buffer overflow in the parse function in vb2c.c for vb2c 0.02 allows remote attackers to execute arbitrary code via a crafted FRM file.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1299

Buffer overflow in the get_attr function in html.c for vilistextum 2.6.6 allows remote attackers to execute arbitrary code via a crafted web page.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1300

Buffer overflow in the open_aiff_file function in demux_aiff.c for xine-lib (libxine) 1-rc7 allows remote attackers to execute arbitrary code via a crafted AIFF file.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1302

The id3tag_sort function in id3tag.c for YAMT 0.5 allows remote attackers to execute arbitrary commands via an MP3 file with double quotes in the Artist tag.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1288

Buffer overflow in the parse_html function in o3read.c for o3read 0.0.3 allows remote attackers to execute arbitrary code via a crafted SXW file.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1303

Buffer overflow in the get function in get.c for Yanf 0.4 allows remote malicious web servers to execute arbitrary code via crafted HTTP responses.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1304

Stack-based buffer overflow in the ELF header parsing code in file before 4.12 allows attackers to execute arbitrary code via a crafted ELF file.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1308

Integer overflow in (1) tif_dirread.c and (2) tif_fax3.c for libtiff 3.5.7 and 3.7.0 allows remote attackers to execute arbitrary code via a TIFF file containing a TIFF_ASCII or TIFF_UNDEFINED direct…

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1309

Heap-based buffer overflow in the demux_open_bmp function in demux_bmp.c for Unix MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a bitmap (BMP) file containing a large biClrUse…

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1310

Stack-based buffer overflow in the asf_mmst_streaming.c functionality for MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a large MMST stream packet.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1311

Integer overflow in the real_setup_and_get_header function in real.c for Unix MPlayer 1.0pre5 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary c…

CVSS: 10.0CWE: N/A
Read more
High

CVE-2004-1313

The Smc.exe process in My Firewall Plus 5.0 build 1117, and possibly other versions, does not drop privileges before invoking help, which allows local users to gain privileges.

CVSS: 7.2CWE: N/A
Read more
High

CVE-2004-1314

Safari 1.x allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a different domain, as demonstrated using…

CVSS: 7.5CWE: N/A
Read more
High

CVE-2005-0284

SQL injection vulnerability in addentry.php in Woltlab Burning Book 1.0 Gold, 1.1.1e, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the user-agent paramet…

CVSS: 7.5CWE: N/A
Read more
Medium

CVE-2005-0287

Bottomline Webseries Payment Application allows remote attackers to read arbitrary files on the network via a report template with modified ReportPath or ReportName values.

CVSS: 5.0CWE: N/A
Read more
Critical

CVE-2004-1289

Multiple buffer overflows in (1) the getline function in pcalutil.c and (2) the get_holiday function in readfile.c for pcal 4.7.1 allow remote attackers to execute arbitrary code via a crafted calend…

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1286

Buffer overflow in the auto_filter_extern function in auto.c for NapShare 1.2, with the extern filter enabled, allows remote attackers to execute arbitrary code via a crafted gnutella response.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1261

Multiple buffer overflows in the preparse function in asp2php 0.76.23 allow remote attackers to execute arbitrary code via crafted ASP scripts.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1273

Buffer overflow in the DownloadLoop function in main.c for greed 0.81p allows remote attackers to execute arbitrary code via a GRX file containing a long filename.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1262

Buffer overflow in the bsb_open_header function in libbsb for bsb2ppm 0.0.6 allows remote attackers to execute arbitrary code via crafted BSB pictures.

CVSS: 10.0CWE: N/A
Read more
High

CVE-2004-1263

changepassword.cgi in ChangePassword 0.8, when installed setuid, allows local users to execute arbitrary code by modifying the PATH environment variable to point to a malicious "make" program.

CVSS: 7.2CWE: N/A
Read more
Critical

CVE-2004-1264

Buffer overflow in the simplify_path function in config.c for ChBg 1.5 allows remote attackers to execute arbitrary code via a crafted chbg scenario file.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1265

Buffer overflow in the readObjectChunk function in 3dsimp.cpp for the convex-tool program in Convex 3D 0.8pre1 allows remote attackers to execute arbitrary code via a crafted 3DS file.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1266

Buffer overflow in the get_field_headers function in csv2xml.cpp for csv2xml 0.5.1 allows remote attackers to execute arbitrary code via a crafted CSV file.

CVSS: 10.0CWE: N/A
Read more
Low

CVE-2004-1268

lppasswd in CUPS 1.1.22 ignores write errors when modifying the CUPS passwd file, which allows local users to corrupt the file by filling the associated file system and triggering the write errors.

CVSS: 2.1CWE: N/A
Read more
Medium

CVE-2004-1269

lppasswd in CUPS 1.1.22 does not remove the passwd.new file if it encounters a file-size resource limit while writing to passwd.new, which causes subsequent invocations of lppasswd to fail.

CVSS: 5.0CWE: N/A
Read more
Low

CVE-2004-1270

lppasswd in CUPS 1.1.22, when run in environments that do not ensure that file descriptors 0, 1, and 2 are open when lppasswd is called, does not verify that the passwd.new file is different from STD…

CVSS: 2.1CWE: N/A
Read more
Critical

CVE-2004-1271

Buffer overflow in the dxfin function in d.c for dxfscope 0.2 allows remote attackers to execute arbitrary code via a crafted DXF file.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1272

Buffer overflow in the save_embedded_address function in filter.c for elm/bolthole filter 2.6.1 allows remote attackers to execute arbitrary code via a crafted email message.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1274

The DownloadLoop function in main.c for greed 0.81p allows remote attackers to execute arbitrary code via a GRX file containing a filename with shell metacharacters.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1285

Buffer overflow in the get_header function in asf_mmst_streaming.c for MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a crafted ASF video stream.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1275

Buffer overflow in the remove_quote function in convert.c for html2hdml 1.0.3 allows remote attackers to execute arbitrary code via a crafted HTML file.

CVSS: 10.0CWE: N/A
Read more
Low

CVE-2004-1276

IglooFTP 0.6.1, when recursively uploading a directory, allows local users to overwrite the files that are being uploaded by creating temporary files with names generated by the tmpnam function, befo…

CVSS: 2.1CWE: N/A
Read more
Medium

CVE-2004-1277

The download_selection_recursive() function in ftplist.c for IglooFTP 0.6.1 allows remote malicious FTP servers to overwrite arbitrary files via filenames that contain / (slash) characters.

CVSS: 5.0CWE: N/A
Read more
Critical

CVE-2004-1278

Buffer overflow in the switch_voice function in parse.c for jcabc2ps 20040902 allows remote attackers to execute arbitrary code via a crafted ABC file.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1279

Buffer overflow in the get_file_list_stdin function in jpegtoavi 1.5 allows remote attackers to execute arbitrary code via a crafted set of JPEG files and filenames.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1280

The gui_popup_view_fly function in gui_tview_popup.c for junkie 0.3.1 allows remote malicious FTP servers to execute arbitrary commands via shell metacharacters in a filename.

CVSS: 10.0CWE: N/A
Read more
Medium

CVE-2004-1281

The ftp_retr function in junkie 0.3.1 allows remote malicious FTP servers to overwrite arbitrary files via .. (dot dot) sequences in a filename.

CVSS: 5.0CWE: N/A
Read more
Critical

CVE-2004-1282

Buffer overflow in the strexpand function in string.c for LinPopUp 1.2.0 allows remote attackers to execute arbitrary code via a crafted message that is not properly handled during a Reply operation.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1283

Buffer overflow in the Mesh::type method in mesh.c for the mview program in Mesh Viewer 0.2.2 allows remote attackers to execute arbitrary code via crafted mesh files.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1284

Buffer overflow in the find_next_file function in playlist.c for mpg123 0.59r allows remote attackers to execute arbitrary code via a crafted MP3 playlist.

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1168

Stack-based buffer overflow in the WebDav handler in MaxDB WebTools 7.5.00.18 and earlier allows remote attackers to execute arbitrary code via a long Overwrite header.

CVSS: 10.0CWE: N/A
Read more
Medium

CVE-2004-1220

Battlefield 1942 1.6.19 and earlier, and Battlefield Vietnam 1.2 and earlier, allows a remote master server to cause a denial of service (client crash) via a server reply that contains a large numpla…

CVSS: 5.0CWE: N/A
Read more
High

CVE-2004-1165

Konqueror 3.3.1 allows remote attackers to execute arbitrary FTP commands via an ftp:// URL that contains a URL-encoded newline ("%0a") before the FTP command, which causes the commands to be inserte…

CVSS: 7.5CWE: N/A
Read more
Critical

CVE-2004-1015

Buffer overflow in proxyd for Cyrus IMAP Server 2.2.9 and earlier, with the imapmagicplus option enabled, may allow remote attackers to execute arbitrary code, a different vulnerability than CVE-2004…

CVSS: 10.0CWE: N/A
Read more
Critical

CVE-2004-1018

Multiple integer handling errors in PHP before 4.3.10 allow attackers to bypass safe mode restrictions, cause a denial of service, or execute arbitrary code via (1) a negative offset value to the shm…

CVSS: 10.0CWE: N/A
Read more
>