Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-12-31 | CVE-2005-4784 | Buffer Overflow vulnerability in Multiple Vendor ReadDir_R Multiple buffer overflows in the POSIX readdir_r function, as used in multiple packages, allow local users to cause a denial of service and possibly execute arbitrary code via (1) a symlink attack that exploits a race condition between opendir and pathcon calls and changes the filesystem to one with a larger maximum directory-entry name length, or (2) possibly via programmer-introduced errors on operating systems with a small struct dirent, such as Solaris or BeOS, as demonstrated in packages including (a) gcj, (b) KDE, (c) libwww, (d) the Rudiments library, (e) teTeX, (f) xmail, (g) bfbtester, (h) ncftp, (i) netwib, (j) OpenOffice.org, (k) Pike, (l) reprepro, (m) Tcl, and (n) xgsmlib. | 5.6 |
| 2005-12-31 | CVE-2005-4783 | Local Security vulnerability in NetBSD kernfs_xread in kernfs_vnops.c in NetBSD before 20050831 does not check for a negative offset when reading the message buffer, which allows local users to read arbitrary kernel memory. | 2.1 |
| 2005-12-31 | CVE-2005-4782 | Local Denial of Service vulnerability in NetBSD SO_LINGER DIAGNOSTIC Checking NetBSD 2.0 before 2.0.4, 2.1 before 2.1.1, and 3, when the kernel is compiled with "options DIAGNOSTIC," allows local users to cause a denial of service (kernel assertion panic) via a negative linger time in the SO_LINGER socket option. | 4.9 |
| 2005-12-31 | CVE-2005-4781 | SQL Injection vulnerability in Sergids TOP Music Module 3.0Pr3 Multiple SQL injection vulnerabilities in SergiDs Top Music module 3.0 PR3 and earlier for PHP-Nuke allow remote attackers to execute arbitrary SQL commands via the (1) idartist, (2) idsong, and (3) idalbum parameters to modules.php. | 5.0 |
| 2005-12-31 | CVE-2005-4779 | Local Security vulnerability in Netbsd 2.0/2.0.1/2.0.2 verifiedexecioctl in verified_exec.c in NetBSD 2.0.2 calls NDINIT with UIO_USERSPACE rather than UID_SYSSPACE, which removes the functionality of the verified exec kernel subsystem and might allow local users to execute Trojan horse programs. | 3.6 |
| 2005-12-31 | CVE-2005-4778 | Local Denial Of Service vulnerability in SUSE Linux PowerSave Daemon The powersave daemon in SUSE Linux 10.0 before 20051007 has an unspecified "configuration problem," which allows local users to suspend the computer and possibly perform certain other unauthorized actions. | 2.1 |
| 2005-12-31 | CVE-2005-4777 | Local Security vulnerability in Tashcom Aspedit 2.9 Tashcom ASPEdit 2.9 stores the administration password (aka the FTP password) in cleartext in the registry, which might allow local users to view the password. | 4.9 |
| 2005-12-31 | CVE-2005-4776 | Denial-Of-Service vulnerability in NetBSD Integer overflow in the FreeBSD compatibility code (freebsd_misc.c) in NetBSD-current, NetBSD-3, NetBSD-2.0, and NetBSD-2 before 20050913; and NetBSD-1.6 before 20050914; allows local users to cause a denial of service (heap corruption or system crash) and possibly gain root privileges. | 7.2 |
| 2005-12-31 | CVE-2005-4775 | Remote Security vulnerability in Michael Scholz Contineo 2.0 Michael Scholz and Sebastian Stein Contineo 2.0, when the admin account lacks an e-mail address attribute, displays the password hash in a warning upon page reload, which might allow remote attackers to view the hash. | 5.0 |
| 2005-12-31 | CVE-2005-4774 | Input Validation vulnerability in Xerver 4.17 Cross-site scripting (XSS) vulnerability in Xerver 4.17 allows remote attackers to inject arbitrary web script or HTML after a /%00/ sequence at the end of the URI. network xerver | 4.3 |