|
279561
|
- |
|
mozilla
|
bugzilla
|
The shadow database feature (syncshadowdb) in Bugzilla 2.9 through 2.16.10 allows local users to overwrite arbitrary files via a symlink attack on temporary files.
|
NVD-CWE-Other
|
CVE-2005-4534
|
2018-10-20 00:41 |
2005-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279562
|
- |
|
dev
|
dev_web_management_system
|
Multiple SQL injection vulnerabilities in DEV web management system 1.5 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) cat parameter in an openforum action (openforu…
|
NVD-CWE-Other
|
CVE-2005-4554
|
2018-10-20 00:41 |
2005-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279563
|
- |
|
dev
|
dev_web_management_system
|
Cross-site scripting (XSS) vulnerability in add.php in DEV web management system 1.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) ENTER_ARTICLE_TITLE, (2) SP…
|
NVD-CWE-Other
|
CVE-2005-4555
|
2018-10-20 00:41 |
2005-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279564
|
- |
|
deerfield
icewarp
merak
|
visnetic_mail_server
web_mail
mail_server
|
PHP remote file include vulnerability in IceWarp Web Mail 5.5.1, as used by Merak Mail Server 8.3.0r and VisNetic Mail Server version 8.3.0 build 1, when register_globals is enabled, allows remote at…
|
NVD-CWE-Other
|
CVE-2005-4556
|
2018-10-20 00:41 |
2005-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279565
|
- |
|
deerfield
icewarp
merak
|
visnetic_mail_server
web_mail
mail_server
|
dir/include.html in IceWarp Web Mail 5.5.1, as used by Merak Mail Server 8.3.0r and VisNetic Mail Server version 8.3.0 build 1, allows remote attackers to include arbitrary local files via a null byt…
|
NVD-CWE-Other
|
CVE-2005-4557
|
2018-10-20 00:41 |
2005-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279566
|
- |
|
deerfield
icewarp
merak
|
visnetic_mail_server
web_mail
mail_server
|
IceWarp Web Mail 5.5.1, as used by Merak Mail Server 8.3.0r and VisNetic Mail Server version 8.3.0 build 1, does not properly restrict acceptable values for the language parameter to mail/settings.ht…
|
NVD-CWE-Other
|
CVE-2005-4558
|
2018-10-20 00:41 |
2005-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279567
|
- |
|
deerfield
icewarp
merak
|
visnetic_mail_server
web_mail
mail_server
|
mail/include.html in IceWarp Web Mail 5.5.1, as used by Merak Mail Server 8.3.0r and VisNetic Mail Server version 8.3.0 build 1, does not properly initialize the default_layout and layout_settings va…
|
NVD-CWE-Other
|
CVE-2005-4559
|
2018-10-20 00:41 |
2005-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279568
|
- |
|
microsoft
|
windows_2003_server
windows_xp
|
The Windows Graphical Device Interface library (GDI32.DLL) in Microsoft Windows allows remote attackers to execute arbitrary code via a Windows Metafile (WMF) format image with a crafted SETABORTPROC…
|
CWE-20
Improper Input Validation
|
CVE-2005-4560
|
2018-10-20 00:41 |
2005-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279569
|
- |
|
scott_draves
|
electric_sheep
|
Buffer overflow in Electric Sheep 2.6.3 client allows local users to execute arbitrary code via a long window-id parameter. NOTE: because the program is not setuid and not normally called from remote…
|
NVD-CWE-Other
|
CVE-2005-4581
|
2018-10-20 00:41 |
2005-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279570
|
- |
|
scott_draves
|
electric_sheep
|
Electric Sheep 2.6.3 does not require authentication or integrity checks from the server to the client, which allows remote attackers to download and display arbitrary MPEG movie files via (1) DNS sp…
|
NVD-CWE-Other
|
CVE-2005-4582
|
2018-10-20 00:41 |
2005-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
