|
350411
|
- |
|
phrozensmoke
|
gyach_enhanced
|
Gyach Enhanced (Gyach-E) before 1.0.0 stores passwords in plaintext, which allows attackers to obtain user passwords by reading the configuration file.
|
CWE-255
Credentials Management
|
CVE-2004-2708
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350412
|
- |
|
phrozensmoke
|
gyach_enhanced
|
Buffer overflow in the strip_html_tags method for Gyach Enhanced (Gyach-E) before 1.0.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via unknown vectors in…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2004-2709
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350413
|
- |
|
phrozensmoke
|
gyach_enhanced
|
Multiple buffer overflows in Gyach Enhanced (Gyach-E) before 1.0.3 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to (1) sending c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2004-2710
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350414
|
- |
|
phrozensmoke
|
gyach_enhanced
|
Multiple buffer overflows in Gyach Enhanced (Gyach-E) before 1.0.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to "avatar retri…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2004-2711
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350415
|
- |
|
phrozensmoke
|
gyach_enhanced
|
Buffer overflow in Gyach Enhanced (Gyach-E) before 1.0.0-SneakPeek-3 allows remote attackers to cause a denial of service (crash) via unspecified vectors related to "URL data."
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2004-2712
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350416
|
- |
|
php_heaven
|
phpmychat
|
PHPMyChat 0.14.5 does not remove or protect setup.php3 after installation, which allows attackers to obtain sensitive information including database passwords via a direct request.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2004-2718
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350417
|
- |
|
mailenable
|
mailenable
|
HTTPMail service in MailEnable Professional 1.18 does not properly handle arguments to the Authorization header, which allows remote attackers to cause a denial of service (null dereference and appli…
|
NVD-CWE-Other
|
CVE-2004-2726
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350418
|
- |
|
linux
|
linux_kernel
|
Multiple integer overflows in Sbus PROM driver (drivers/sbus/char/openprom.c) for the Linux kernel 2.4.x up to 2.4.27, 2.6.x up to 2.6.7, and possibly later versions, allow local users to execute arb…
|
CWE-189
Numeric Errors
|
CVE-2004-2731
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350419
|
- |
|
zen_cart
|
zen_cart
|
SQL injection vulnerability in application_top.php for Zen Cart 1.1.3 before patch 2 may allow remote attackers to execute arbitrary SQL commands via the products_id parameter.
|
NVD-CWE-Other
|
CVE-2004-2025
|
2008-09-6 05:43 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
350420
|
- |
|
-
|
-
|
The Altiris Client Service for Windows 5.6 SP1 Hotfix E (5.6.181) allows local users to execute arbitrary commands by opening the AClient tray icon and using the View Log File option, a different vul…
|
NVD-CWE-Other
|
CVE-2004-2070
|
2008-09-6 05:43 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
