Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-01-11 | CVE-2006-0178 | Local Command Line Argument Buffer Overflow vulnerability in Cray Unicos 9.0.2.2 Format string vulnerability in /bin/ftp in UNICOS 9.0.2.2 allows local users to have an unknown impact via format string specifiers in the quote command. | 7.2 |
| 2006-01-11 | CVE-2006-0177 | Local Command Line Argument Buffer Overflow vulnerability in Cray Unicos 9.0.2.2 Multiple buffer overflows in Cray UNICOS 9.0.2.2 might allow local users to gain privileges by (1) invoking /usr/bin/script with a long command line argument or (2) setting the -c option of /etc/nu to the name of a file containing a long line. | 7.2 |
| 2006-01-11 | CVE-2006-0176 | Local Command Line Argument Buffer Overflow vulnerability in Xmame 0.102 Buffer overflow in certain functions in src/fileio.c and src/unix/fileio.c in xmame before 11 January 2006 may allow local users to gain privileges via a long (1) -lang, (2) -ctrlr, (3) -pb, or (4) -rec argument on many operating systems, and via a long (5) -jdev argument on Ubuntu Linux. | 7.2 |
| 2006-01-11 | CVE-2006-0175 | Cross-Site Scripting vulnerability in Webwiz web WIZ Forums 6.34 Cross-site scripting (XSS) vulnerability in search_form.asp in Web Wiz Forums 6.34 allows remote attackers to inject arbitrary web script or HTML via the search parameter. | 4.3 |
| 2006-01-11 | CVE-2006-0174 | Multiple vulnerability in Hummingbird Collaboration and Enterprise Collaboration Hummingbird Collaboration (aka Hummingbird Enterprise Collaboration) 5.21 and earlier allows remote attackers to obtain sensitive information (intranet IP addresses and enumerations of valid parameter values) via a direct request to hc, which reveals the information in an error message or a cookie. | 4.0 |
| 2006-01-11 | CVE-2006-0173 | Multiple vulnerability in Hummingbird Enterprise Collaboration 5.2/5.21 Hummingbird Collaboration (aka Hummingbird Enterprise Collaboration) 5.21 and earlier allows remote attackers to misrepresent the type and name of a file via modified doc_ext and id parameters, which might trick a user into downloading dangerous or unexpected content. | 4.0 |
| 2006-01-11 | CVE-2006-0172 | Multiple vulnerability in Hummingbird Enterprise Collaboration 5.2/5.21 Cross-site scripting (XSS) vulnerability in the file manager utility in Hummingbird Collaboration (aka Hummingbird Enterprise Collaboration) 5.21 and earlier allows remote attackers to inject arbitrary web script or HTML in an uploaded page, which is published without a check for hostile scripting. network hummingbird | 3.5 |
| 2006-01-11 | CVE-2006-0171 | Remote File Include vulnerability in Orjinweb PHP remote file include vulnerability in index.php in OrjinWeb E-commerce allows remote attackers to execute arbitrary code via a URL in the page parameter. | 7.5 |
| 2006-01-11 | CVE-2006-0169 | Unspecified vulnerability in Myphpim 01.05 addresses.php3 in MyPhPim 01.05 does not restrict uploaded files, which allows remote attackers to execute arbitrary PHP code via the pdbfile variable, then directly accessing those files from the uploads directory. | 7.5 |
| 2006-01-11 | CVE-2006-0168 | Input Validation vulnerability in Myphpim 01.05 Cross-site scripting (XSS) vulnerability in MyPhPim 01.05 allows remote attackers to inject arbitrary web script or HTML via the description field on the "Create New todo" page. network myphpim | 4.3 |