|
343771
|
- |
|
tiki
|
tikiwiki_cms\/groupware
|
tiki-view_forum_thread.php in TikiWiki 1.9.0 through 1.9.2 allows remote attackers to obtain the installation path via an invalid topics_sort_mode parameter, possibly related to an SQL injection vuln…
|
CWE-200
Information Exposure
|
CVE-2005-3529
|
2018-10-20 00:36 |
2005-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
343772
|
- |
|
ifax_solutions
|
hylafax
|
hfaxd in HylaFAX 4.2.3, when PAM support is disabled, accepts arbitrary passwords, which allows remote attackers to gain privileges.
|
NVD-CWE-Other
|
CVE-2005-3538
|
2018-10-20 00:36 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
343773
|
- |
|
hylafax
|
hylafax
|
Multiple eval injection vulnerabilities in HylaFAX 4.2.3 and earlier allow remote attackers to execute arbitrary commands via (1) the notify script in HylaFAX 4.2.0 to 4.2.3 and (2) crafted CallID pa…
|
NVD-CWE-Other
|
CVE-2005-3539
|
2018-10-20 00:36 |
2005-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
343774
|
- |
|
xpdf
|
xpdf
|
Heap-based buffer overflow in the StreamPredictor function in Xpdf 3.01, as used in products such as (1) Poppler, (2) teTeX, (3) KDE kpdf, and (4) pdftohtml, (5) KOffice KWord, (6) CUPS, and (7) libe…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2005-3192
|
2018-10-20 00:35 |
2005-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
343775
|
- |
|
xpdf
|
xpdf
|
Heap-based buffer overflow in the JPXStream::readCodestream function in the JPX stream parsing code (JPXStream.c) for xpdf 3.01 and earlier, as used in products such as (1) Poppler, (2) teTeX, (3) KD…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2005-3193
|
2018-10-20 00:35 |
2005-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
343776
|
- |
|
paros
|
paros
|
Paros 3.2.5 uses a default password for the "sa" account in the underlying HSQLDB database and does not restrict access to the local machine, which allows remote attackers to gain privileges.
|
NVD-CWE-Other
|
CVE-2005-3280
|
2018-10-20 00:35 |
2005-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
343777
|
- |
|
libungif
|
libungif
|
libungif library before 4.1.0 allows attackers to corrupt memory and possibly execute arbitrary code via a crafted GIF file that leads to an out-of-bounds write.
|
NVD-CWE-Other
|
CVE-2005-3350
|
2018-10-20 00:35 |
2005-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
343778
|
- |
|
andries_brouwer
|
util-linux
|
umount in util-linux 2.8 to 2.12q, 2.13-pre1, and 2.13-pre2, and other packages such as loop-aes-utils, allows local users with unmount permissions to gain privileges via the -r (remount) option, whi…
|
NVD-CWE-Other
|
CVE-2005-2876
|
2018-10-20 00:34 |
2005-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
343779
|
- |
|
sgi
|
irix
|
runpriv in SGI IRIX allows local users to bypass intended restrictions and execute arbitrary commands via shell metacharacters in a command line for a privileged binary in /usr/sysadm/privbin.
|
NVD-CWE-Other
|
CVE-2005-2925
|
2018-10-20 00:34 |
2005-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
343780
|
- |
|
university_of_kansas
|
lynx
|
Lynx 2.8.5, and other versions before 2.8.6dev.15, allows remote attackers to execute arbitrary commands via (1) lynxcgi:, (2) lynxexec, and (3) lynxprog links, which are not properly restricted in t…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-2929
|
2018-10-20 00:34 |
2005-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
