|
357831
|
- |
|
-
|
-
|
RC.BOOT in IBM AIX 5.1, 5.2, and 5.3 does not "use a secure location for temporary files," which allows local users to have an unknown impact, probably by overwriting files.
|
NVD-CWE-Other
|
CVE-2005-0991
|
2008-09-6 05:47 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
357832
|
- |
|
early_impact
|
productcart
|
Multiple cross-site scripting (XSS) vulnerabilities in ProductCart 2.7 allow remote attackers to inject arbitrary web script or HTML via (1) the keyword parameter to advSearch_h.asp, (2) the redirect…
|
NVD-CWE-Other
|
CVE-2005-0995
|
2008-09-6 05:47 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
357833
|
- |
|
asp-dev
|
xm_forum
|
Cross-site scripting (XSS) vulnerability in posts.asp for ASP-DEv XM Forum RC3 allows remote attackers to inject arbitrary web script or HTML via a "javascript:" URL in an IMG tag.
|
NVD-CWE-Other
|
CVE-2005-1008
|
2008-09-6 05:47 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
357834
|
- |
|
iatek
|
siteenable
|
SQL injection vulnerability in content.asp in SiteEnable allows remote attackers to execute arbitrary SQL commands via the sortby parameter.
|
NVD-CWE-Other
|
CVE-2005-1011
|
2008-09-6 05:47 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
357835
|
- |
|
mailenable
|
imapd
|
Buffer overflow in MailEnable Imapd (MEIMAP.exe) allows remote attackers to execute arbitrary code via a long LOGIN command.
|
NVD-CWE-Other
|
CVE-2005-1015
|
2008-09-6 05:47 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
357836
|
- |
|
f-secure
|
f-secure_anti-virus
f-secure_internet_security
f-secure_personal_express
internet_gatekeeper
|
Heap-based buffer overflow in multiple F-Secure Anti-Virus and Internet Security products allows remote attackers to execute arbitrary code via a crafted ARJ archive.
|
NVD-CWE-Other
|
CVE-2005-0350
|
2008-09-6 05:46 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
357837
|
- |
|
sco
|
openserver
|
Buffer overflow in (1) termsh, (2) atcronsh, and (3) auditsh in SCO OpenServer 5.0.6 and 5.0.7 might allow local users to execute arbitrary code via a long HOME environment variable.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2005-0351
|
2008-09-6 05:46 |
2005-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
357838
|
- |
|
microsoft
|
log_sink_class_activex_control
|
The Microsoft Log Sink Class ActiveX control in pkmcore.dll is marked as "safe for scripting" for Internet Explorer, which allows remote attackers to create or append to arbitrary files.
|
NVD-CWE-Other
|
CVE-2005-0360
|
2008-09-6 05:46 |
2005-07-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
357839
|
- |
|
awstats
|
awstats
|
awstats.pl in AWStats 6.2 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) "pluginmode", (2) "loadplugin", or (3) "noloadplugin" parameters.
|
NVD-CWE-Other
|
CVE-2005-0362
|
2008-09-6 05:46 |
2005-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
357840
|
- |
|
awstats
|
awstats
|
awstats.pl in AWStats 4.0 and 6.2 allows remote attackers to execute arbitrary commands via shell metacharacters in the config parameter.
|
NVD-CWE-Other
|
CVE-2005-0363
|
2008-09-6 05:46 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
