|
349141
|
- |
|
mplayer
|
mplayer
|
Integer overflow in the real_setup_and_get_header function in real.c for Unix MPlayer 1.0pre5 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary c…
|
NVD-CWE-Other
|
CVE-2004-1311
|
2017-07-11 10:30 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349142
|
- |
|
webroot_software
|
my_firewall_plus
|
The Smc.exe process in My Firewall Plus 5.0 build 1117, and possibly other versions, does not drop privileges before invoking help, which allows local users to gain privileges.
|
NVD-CWE-Other
|
CVE-2004-1313
|
2017-07-11 10:30 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349143
|
- |
|
apple
|
safari
|
Safari 1.x allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a different domain, as demonstrated using …
|
NVD-CWE-Other
|
CVE-2004-1314
|
2017-07-11 10:30 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349144
|
- |
|
phpbb_group
|
phpbb
|
viewtopic.php in phpBB 2.x before 2.0.11 improperly URL decodes the highlight parameter when extracting words and phrases to highlight, which allows remote attackers to execute arbitrary PHP code by …
|
NVD-CWE-Other
|
CVE-2004-1315
|
2017-07-11 10:30 |
2004-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349145
|
- |
|
-
|
-
|
Stack-based buffer overflow in doexec.c in Netcat for Windows 1.1, when running with the -e option, allows remote attackers to execute arbitrary code via a long DNS command.
|
NVD-CWE-Other
|
CVE-2004-1317
|
2017-07-11 10:30 |
2004-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349146
|
- |
|
namazu
|
namazu
|
Cross-site scripting (XSS) vulnerability in namazu.cgi for Namazu 2.0.13 and earlier allows remote attackers to inject arbitrary HTML and web script via a query that starts with a tab ("%09") charact…
|
NVD-CWE-Other
|
CVE-2004-1318
|
2017-07-11 10:30 |
2005-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349147
|
- |
|
asante
|
fm2008_managed_ethernet_switch
|
Asante FM2008 running firmware 1.06 is shipped with a default username and password, which could allow remote attackers to gain unauthorized access.
|
NVD-CWE-Other
|
CVE-2004-1320
|
2017-07-11 10:30 |
2004-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349148
|
- |
|
cisco
|
unity_server
|
Cisco Unity 2.x, 3.x, and 4.x, when integrated with Microsoft Exchange, has several hard coded usernames and passwords, which allows remote attackers to gain unauthorized access and change configurat…
|
NVD-CWE-Other
|
CVE-2004-1322
|
2017-07-11 10:30 |
2004-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349149
|
- |
|
netbsd
|
netbsd
|
Multiple syscalls in the compat subsystem for NetBSD before 2.0 allow local users to cause a denial of service (kernel crash) via a large signal number to (1) xxx_sys_kill, (2) xxx_sys_sigaction, and…
|
NVD-CWE-Other
|
CVE-2004-1323
|
2017-07-11 10:30 |
2004-12-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349150
|
- |
|
microsoft
|
windows_media_player
|
The Microsoft Windows Media Player 9.0 ActiveX control may allow remote attackers to execute arbitrary web script in the Local computer zone via the (1) artist or (2) song fields of a music file, if …
|
NVD-CWE-Other
|
CVE-2004-1324
|
2017-07-11 10:30 |
2004-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
