|
349551
|
- |
|
the_ignition_project
|
ignitionserver
|
Unknown vulnerability in The Ignition Project ignitionServer 0.1.2 through 0.3.1, with the linking service enabled, allows remote attackers to bypass authentication.
|
NVD-CWE-Other
|
CVE-2004-2431
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349552
|
- |
|
-
|
-
|
WinAgents TFTP Server 3.0 allows remote attackers to cause a denial of service (crash) via a request for a file with a long file name, possibly due to an off-by-one buffer overflow.
|
NVD-CWE-Other
|
CVE-2004-2432
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349553
|
- |
|
altnet
grokster
kazaa
|
altnet_download_manager
grokster
kazaa_media_desktop
|
Buffer overflow in the IsValidFile function in the ADM ActiveX control for Altnet Download Manager 4.0.0.4 and earlier, as used in Kazaa Media Desktop 1.3 through 2.6.4 and Grokkster 1.3 through 2.6,…
|
NVD-CWE-Other
|
CVE-2004-2433
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349554
|
- |
|
axis
|
2100_network_camera
2110_network_camera
2120_network_camera
2130_ptz_network_camera
230_mpeg2_video_server
2400_video_server
2401_video_server
2411_video_server
2420_network_c…
|
Directory traversal vulnerability in Axis Network Camera 2.40 and earlier, and Video Server 3.12 and earlier, allows remote attackers to bypass authentication via a .. (dot dot) in an HTTP POST requ…
|
NVD-CWE-Other
|
CVE-2004-2426
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349555
|
- |
|
microsoft
|
ie
|
Microsoft Internet Explorer 6.0 SP1 allows remote attackers to cause a denial of service (browser crash) via a link with "::{" (colon colon left brace), which triggers a null dereference when the use…
|
NVD-CWE-Other
|
CVE-2004-2434
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349556
|
- |
|
peoplesoft
|
hrms
|
Cross-site scripting (XSS) vulnerability in PeopleSoft Human Resources Management System (HRMS) 7.0, when "web enabled" using HTML Access, allows remote attackers to inject arbitrary web script or HT…
|
NVD-CWE-Other
|
CVE-2004-2435
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349557
|
- |
|
php_fusion
|
php_fusion
|
SQL injection vulnerability in PHP-Fusion 4.01 allows remote attackers to execute arbitrary SQL commands via the rowstart parameter to (1) index.php or (2) members.php, or (3) the comment_id paramete…
|
NVD-CWE-Other
|
CVE-2004-2437
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349558
|
- |
|
php_fusion
|
php_fusion
|
Cross-site scripting (XSS) vulnerability in PHP-Fusion 4.01 allows remote attackers to inject arbitrary web script or HTML via the (1) Submit News, (2) Submit Link or (3) Submit Article field.
|
NVD-CWE-Other
|
CVE-2004-2438
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349559
|
- |
|
hp
|
color_laserjet
color_laserjet_4600
laserjet_2500
laserjet_3000
laserjet_3700
laserjet_4100_mfp
laserjet_4200
laserjet_4300
laserjet_9000
laserjet_9000_mfp
laserjet_9040_…
|
The remote upgrade capability in HP LaserJet 4200 and 4300 printers does not require a password, which allows remote attackers to upgrade firmware.
|
NVD-CWE-Other
|
CVE-2004-2439
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349560
|
- |
|
proxytunnel
|
proxytunnel
|
Unspecified vulnerability in cmdline.c in proxytunnel 1.1.3 and earlier allows local users to obtain proxy credentials (username or password) of other users.
|
NVD-CWE-Other
|
CVE-2004-2440
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
