|
289541
|
- |
|
redhat
|
sysreport
enterprise_linux
enterprise_linux_desktop
linux_advanced_workstation
|
sysreport 1.3.15 and earlier includes contents of the up2date file in a report, which leaks the password for a proxy server in plaintext and allows local users to gain privileges.
|
NVD-CWE-Other
|
CVE-2005-1760
|
2017-10-11 10:30 |
2005-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289542
|
- |
|
realnetworks
|
realplayer
|
Heap-based buffer overflow in rtffplin.cpp in RealPlayer 10.5 6.0.12.1056 on Windows, and 10, 10.0.1.436, and other versions before 10.0.5 on Linux, allows remote attackers to execute arbitrary code …
|
NVD-CWE-Other
|
CVE-2005-1766
|
2017-10-11 10:30 |
2005-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289543
|
- |
|
linux
|
linux_kernel
|
Race condition in the ia32 compatibility code for the execve system call in Linux kernel 2.4 before 2.4.31 and 2.6 before 2.6.6 allows local users to cause a denial of service (kernel panic) and poss…
|
NVD-CWE-Other
|
CVE-2005-1768
|
2017-10-11 10:30 |
2005-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289544
|
- |
|
squirrelmail
|
squirrelmail
|
Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.0 through 1.4.4 allow remote attackers to inject arbitrary web script or HTML via unknown attack vectors in (1) the URL or (2) …
|
NVD-CWE-Other
|
CVE-2005-1769
|
2017-10-11 10:30 |
2005-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289545
|
- |
|
ekg
kde
centericq
kadu
|
ekg
kde
centericq
kadu
|
Multiple integer overflows in libgadu, as used in Kopete in KDE 3.2.3 to 3.4.1, ekg before 1.6rc3, GNU Gadu, CenterICQ, Kadu, and other packages, allows remote attackers to cause a denial of service …
|
CWE-189
Numeric Errors
|
CVE-2005-1852
|
2017-10-11 10:30 |
2005-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289546
|
- |
|
mozilla
|
firefox
mozilla
|
A regression error in Firefox 1.0.3 and Mozilla 1.7.7 allows remote attackers to inject arbitrary Javascript from one page into the frameset of another site, aka the frame injection spoofing vulnerab…
|
NVD-CWE-Other
|
CVE-2005-1937
|
2017-10-11 10:30 |
2005-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289547
|
- |
|
yukihiro_matsumoto
|
ruby
|
The XMLRPC server in utils.rb for the ruby library (libruby) 1.8 sets an invalid default value that prevents "security protection" using handlers, which allows remote attackers to execute arbitrary c…
|
NVD-CWE-Other
|
CVE-2005-1992
|
2017-10-11 10:30 |
2005-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289548
|
- |
|
active_web_softwares
|
activebuyandsell
|
Multiple SQL injection vulnerabilities in ActiveBuyAndSell 6.2 allow remote attackers to execute arbitrary SQL commands via the catid parameter to (1) default.asp or (2) buyersend.asp, (3) Administra…
|
NVD-CWE-Other
|
CVE-2005-2062
|
2017-10-11 10:30 |
2005-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289549
|
- |
|
squirrelmail
|
squirrelmail
|
options_identities.php in SquirrelMail 1.4.4 and earlier uses the extract function to process the $_POST variable, which allows remote attackers to modify or read the preferences of other users, cond…
|
NVD-CWE-noinfo
|
CVE-2005-2095
|
2017-10-11 10:30 |
2005-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289550
|
- |
|
redhat
|
enterprise_linux
enterprise_linux_desktop
|
The rw_vm function in usercopy.c in the 4GB split patch for the Linux kernel in Red Hat Enterprise Linux 4 does not perform proper bounds checking, which allows local users to cause a denial of servi…
|
NVD-CWE-Other
|
CVE-2005-2100
|
2017-10-11 10:30 |
2005-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
