Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-01-19 | CVE-2006-0313 | SQL Injection vulnerability in PDFDirectory Multiple SQL injection vulnerabilities in PDFdirectory before 1.0 allow remote attackers to execute arbitrary SQL commands via multiple unspecified vectors involving (1) util.php, (2) userpref.php, (3) user.php, (4) uploadfrm.php, (5) title.php, (6) team.php, (7) stats.php, (8) page.php, (9) org.php, (10) member.php, (11) index.php, (12) group.php, or (13) anniv.php. | 7.5 |
| 2006-01-19 | CVE-2006-0309 | Remote Denial Of Service vulnerability in Linksys Befvp41 1.01.04 Linksys BEFVP41 VPN Router 2.0 with firmware 1.01.04 allows remote attackers on the local network, to cause a denial of service via IP packets with a null IP option length. | 4.0 |
| 2006-01-19 | CVE-2006-0226 | Remote Buffer Overflow vulnerability in Freebsd 6.0 Integer overflow in IEEE 802.11 network subsystem (ieee80211_ioctl.c) in FreeBSD before 6.0-STABLE, while scanning for wireless networks, allows remote attackers to execute arbitrary code by broadcasting crafted (1) beacon or (2) probe response frames. | 10.0 |
| 2006-01-19 | CVE-2006-0308 | Code Injection vulnerability in Htmltonuke 2.0Alpha PHP remote file inclusion vulnerability in htmltonuke.php in the htmltonuke 2.0 alpha, and possibly other versions, module for PHP-Nuke allows remote attackers to execute arbitrary PHP code via a URL in the filnavn parameter. | 7.5 |
| 2006-01-19 | CVE-2006-0307 | Resource Management Errors vulnerability in multiple products The DM Primer in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops & Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption and log file consumption) via unspecified "unrecognized network messages" that are not properly handled. | 5.0 |
| 2006-01-19 | CVE-2006-0305 | Remote Administrative Access vulnerability in Clipcomm Cp-100E Voip Wifi Phone and Cpw-100E Voip Wifi Phone Clipcomm CPW-100E VoIP 802.11b Wireless Handset Phone running firmware 1.1.12 (051129) and CP-100E VoIP 802.11b Wireless Phone running firmware 1.1.60 allows remote attackers to gain unauthorized access via the debug service on TCP port 60023. | 7.5 |
| 2006-01-19 | CVE-2006-0304 | Remote Buffer Overflow vulnerability in Achal Dhir Dual Dhcp DNS Server 1.0 Buffer overflow in Dual DHCP DNS Server 1.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via the DHCP options field. | 7.5 |
| 2006-01-19 | CVE-2006-0303 | Remote Security vulnerability in Joomla Multiple unspecified vulnerabilities in the (1) publishing component, (2) Contact Component, (3) TinyMCE Compressor, and (4) other components in Joomla! 1.0.5 and earlier have unknown impact and attack vectors. | 10.0 |
| 2006-01-19 | CVE-2006-0302 | Information Disclosure vulnerability in Zyxel P2000W Version 2 Voip Wifi Phone Wv.00.02 ZyXel P2000W VoIP 802.11b Wireless Phone running firmware WV.00.02 allows remote attackers to obtain sensitive information, such as MAC address and software version, by directly accessing UDP port 9090. | 5.0 |
| 2006-01-18 | CVE-2006-0291 | Multiple vulnerability in Oracle January Security Update Multiple unspecified vulnerabilities in Oracle Database Server 10.2.0.1, Application Server 9.0.4.2 and 10.1.2.1, Collaboration Suite Release 2, version 9.0.4.2 (Oracle9i), and E-Business Suite and Applications 11.5.10 have unspecified impact and attack vectors, as identified by Oracle Vuln# (1) WF02 and (2) WF03 in the Oracle Workflow Cartridge component. | 10.0 |