Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-05-01 | CVE-2006-2116 | Authentication Bypass vulnerability in PlanetGallery Gallery_admin.PHP planetGallery allows remote attackers to gain administrator privileges via a direct request to admin/gallery_admin.php. | 7.5 |
| 2006-05-01 | CVE-2006-2115 | Arbitrary Code Execution vulnerability in SWS Web Server Format string vulnerability in SWS web Server 0.1.7 allows remote attackers to execute arbitrary code via unspecified vectors that are not properly handled in a syslog function call. | 7.5 |
| 2006-05-01 | CVE-2006-2114 | Arbitrary Code Execution vulnerability in SWS Web Server Buffer overflow in SWS web Server 0.1.7 allows remote attackers to execute arbitrary code via a long request. | 7.5 |
| 2006-05-01 | CVE-2006-2111 | Information Exposure vulnerability in Microsoft Outlook Express 6.0 A component in Microsoft Outlook Express 6 allows remote attackers to bypass domain restrictions and obtain sensitive information via redirections with the mhtml: URI handler, as originally reported for Internet Explorer 6 and 7, aka "URL Redirect Cross Domain Information Disclosure Vulnerability." | 4.3 |
| 2006-05-01 | CVE-2006-2110 | Local Insecure Guest Context Capabilities vulnerability in Virtual Private Server Vserver 2.0.2/2.1.1 Virtual Private Server (Vserver) 2.0.x before 2.0.2-rc18 and 2.1.x before 2.1.1-rc18 provides certain context capabilities (ccaps) that allow local guest users to perform operations that were only intended to be allowed by the guest-root. | 2.1 |
| 2006-05-01 | CVE-2006-1989 | Remote Buffer Overflow vulnerability in Clam Anti-Virus Clamav 0.88/0.88.1 Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote web servers to execute arbitrary code via long HTTP headers. | 5.1 |
| 2006-04-29 | CVE-2006-2108 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in OCE North America 3121 Printer and 3122 Printer parser.exe in Océ (OCE) 3121/3122 Printer allows remote attackers to cause a denial of service (crash or reboot) via a long request, possibly triggering a buffer overflow. | 7.8 |
| 2006-04-29 | CVE-2006-2107 | Buffer Overflow vulnerability in BL4 SMTP Server Buffer overflow in BL4 SMTP Server 0.1.4 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long argument to the (1) EHLO, (2) MAIL FROM, and (3) RCPT TO commands. | 7.5 |
| 2006-04-29 | CVE-2006-2106 | Remote HTML Injection vulnerability in Edgewall Software Trac 0.9.4 Cross-site scripting (XSS) vulnerability in Edgewall Software Trac 0.9.4 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors related to a "wiki macro." network edgewall-software | 4.3 |
| 2006-04-29 | CVE-2006-2105 | Local File Include vulnerability in Jupiter CMS 1.1.4/1.1.5 Directory traversal vulnerability in index.php in Jupiter CMS 1.1.4 and 1.1.5 allows remote attackers to read arbitrary files via ".." sequences terminated by a %00 (null) character in the n parameter. | 5.0 |