|
348451
|
- |
|
mozilla
|
bugzilla
|
Cross-site scripting (XSS) vulnerability in Bugzilla before 2.18, including 2.16.x before 2.16.11, allows remote attackers to inject arbitrary HTML and web script via forced error messages, as demons…
|
NVD-CWE-Other
|
CVE-2004-1061
|
2017-07-11 10:30 |
2005-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348452
|
- |
|
viewcvs
|
viewcvs
|
Multiple cross-site scripting (XSS) vulnerabilities in ViewCVS 0.9.2 allow remote attackers to inject arbitrary HTML and web script via certain error messages.
|
NVD-CWE-Other
|
CVE-2004-1062
|
2017-07-11 10:30 |
2004-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348453
|
- |
|
freebsd
|
freebsd
|
The cmdline pseudofiles in (1) procfs on FreeBSD 4.8 through 5.3, and (2) linprocfs on FreeBSD 5.x through 5.3, do not properly validate a process argument vector, which allows local users to cause a…
|
NVD-CWE-Other
|
CVE-2004-1066
|
2017-07-11 10:30 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348454
|
- |
|
carnegie_mellon_university
redhat
ubuntu
|
cyrus_imap_server
fedora_core
ubuntu_linux
|
Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2.2.9 and earlier leads to a buffer overflow, which may allow remote attackers to execute arbitrary code via the username.
|
NVD-CWE-Other
|
CVE-2004-1067
|
2017-07-11 10:30 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348455
|
- |
|
linux
ubuntu
|
linux_kernel
ubuntu_linux
|
Race condition in SELinux 2.6.x through 2.6.9 allows local users to cause a denial of service (kernel crash) via SOCK_SEQPACKET unix domain sockets, which are not properly handled in the sock_dgram_s…
|
NVD-CWE-Other
|
CVE-2004-1069
|
2017-07-11 10:30 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348456
|
- |
|
zwiki
|
zwiki
|
Cross-site scripting (XSS) vulnerability in standard_error_message.dtml for Zwiki after 0.10.0rc1 to 0.36.2 allows remote attackers to inject arbitrary HTML and web script via a malformed URL, which …
|
NVD-CWE-Other
|
CVE-2004-1075
|
2017-07-11 10:30 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348457
|
- |
|
apple
|
darwin_streaming_server
quicktime_streaming_server
mac_os_x
mac_os_x_server
|
The Application Framework (AppKit) for Apple Mac OS X 10.2.8 and 10.3.6 does not properly restrict access to a secure text input field, which allows local users to read keyboard input from other appl…
|
NVD-CWE-Other
|
CVE-2004-1081
|
2017-07-11 10:30 |
2004-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348458
|
- |
|
apple
|
darwin_streaming_server
quicktime_streaming_server
mac_os_x
mac_os_x_server
|
Apache for Apple Mac OS X 10.2.8 and 10.3.6 allows remote attackers to read files and resource fork content via HTTP requests to certain special file names related to multiple data streams in HFS+, w…
|
NVD-CWE-Other
|
CVE-2004-1084
|
2017-07-11 10:30 |
2004-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348459
|
- |
|
apple
|
darwin_streaming_server
quicktime_streaming_server
mac_os_x
mac_os_x_server
|
Human Interface Toolbox (HIToolBox) for Apple Mac 0S X 10.3.6 allows local users to exit applications via the force-quit key combination, even when the system is running in kiosk mode.
|
NVD-CWE-Other
|
CVE-2004-1085
|
2017-07-11 10:30 |
2004-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348460
|
- |
|
apple
|
darwin_streaming_server
quicktime_streaming_server
mac_os_x
mac_os_x_server
|
Buffer overflow in PSNormalizer for Apple Mac OS X 10.3.6 allows remote attackers to execute arbitrary code via a crafted PostScript input file.
|
NVD-CWE-Other
|
CVE-2004-1086
|
2017-07-11 10:30 |
2004-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
