|
346751
|
- |
|
mandrakesoft
todd_miller
debian
trustix
ubuntu
|
mandrake_multi_network_firewall
sudo
debian_linux
mandrake_linux
mandrake_linux_corporate_server
secure_linux
ubuntu_linux
|
sudo before 1.6.8p2 allows local users to execute arbitrary commands by using "()" style environment variables to create functions that have the same name as any program within the bash script that i…
|
NVD-CWE-Other
|
CVE-2004-1051
|
2017-07-11 10:30 |
2005-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346752
|
- |
|
bnc
debian
gentoo
|
bnc
debian_linux
linux
|
Buffer overflow in the getnickuserhost function in BNC 2.8.9, and possibly other versions, allows remote IRC servers to execute arbitrary code via an IRC server response that contains many (1) ! (exc…
|
NVD-CWE-Other
|
CVE-2004-1052
|
2017-07-11 10:30 |
2005-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346753
|
- |
|
freebsd
|
fetch
|
Integer overflow in fetch on FreeBSD 4.1 through 5.3 allows remote malicious servers to execute arbitrary code via certain HTTP headers in an HTTP response, which lead to a buffer overflow.
|
NVD-CWE-Other
|
CVE-2004-1053
|
2017-07-11 10:30 |
2005-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346754
|
- |
|
ibm
|
aix
|
Untrusted execution path vulnerability in invscout in IBM AIX 5.1.0, 5.2.0, and 5.3.0 allows local users to gain privileges by modifying the PATH environment variable to point to a malicious "uname" …
|
NVD-CWE-Other
|
CVE-2004-1054
|
2017-07-11 10:30 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346755
|
- |
|
phpmyadmin
gentoo
|
phpmyadmin
linux
|
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 2.6.0-pl2 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the PmaAbsoluteUri parameter, (2) the zer…
|
NVD-CWE-Other
|
CVE-2004-1055
|
2017-07-11 10:30 |
2005-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346756
|
- |
|
mnogosearch
|
mnogosearch
|
Multiple cross-site scripting (XSS) vulnerabilities in mnoGoSearch 3.2.26 and earlier allow remote attackers to inject arbitrary HTML and web script via the (1) next and (2) prev result search pages,…
|
NVD-CWE-Other
|
CVE-2004-1059
|
2017-07-11 10:30 |
2004-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346757
|
- |
|
mozilla
|
bugzilla
|
Cross-site scripting (XSS) vulnerability in Bugzilla before 2.18, including 2.16.x before 2.16.11, allows remote attackers to inject arbitrary HTML and web script via forced error messages, as demons…
|
NVD-CWE-Other
|
CVE-2004-1061
|
2017-07-11 10:30 |
2005-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346758
|
- |
|
viewcvs
|
viewcvs
|
Multiple cross-site scripting (XSS) vulnerabilities in ViewCVS 0.9.2 allow remote attackers to inject arbitrary HTML and web script via certain error messages.
|
NVD-CWE-Other
|
CVE-2004-1062
|
2017-07-11 10:30 |
2004-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346759
|
- |
|
freebsd
|
freebsd
|
The cmdline pseudofiles in (1) procfs on FreeBSD 4.8 through 5.3, and (2) linprocfs on FreeBSD 5.x through 5.3, do not properly validate a process argument vector, which allows local users to cause a…
|
NVD-CWE-Other
|
CVE-2004-1066
|
2017-07-11 10:30 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346760
|
- |
|
carnegie_mellon_university
redhat
ubuntu
|
cyrus_imap_server
fedora_core
ubuntu_linux
|
Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2.2.9 and earlier leads to a buffer overflow, which may allow remote attackers to execute arbitrary code via the username.
|
NVD-CWE-Other
|
CVE-2004-1067
|
2017-07-11 10:30 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
