Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-12-31 | CVE-2005-4697 | Information Disclosure vulnerability in Microsoft Windows Wireless Zero Configuration Service The Microsoft Wireless Zero Configuration system (WZCS) allows local users to access WEP keys and pair-wise Master Keys (PMK) of the WPA pre-shared key via certain calls to the WZCQueryInterface API function in wzcsapi.dll. | 2.1 |
2005-12-31 | CVE-2005-4696 | Information Disclosure vulnerability in Microsoft Windows Wireless Zero Configuration Service The Microsoft Wireless Zero Configuration system (WZCS) stores WEP keys and pair-wise Master Keys (PMK) of the WPA pre-shared key in plaintext in memory of the explorer process, which allows attackers with access to process memory to steal the keys and access the network. | 2.1 |
2005-12-31 | CVE-2005-4695 | Denial Of Service vulnerability in Symantec Brightmail Antispam 6.0/6.0.1/6.0.2 Symantec Brightmail AntiSpam 6.0 build 1 and 2 allows remote attackers to cause a denial of service (bmserver component termination) via malformed MIME messages. | 5.0 |
2005-12-31 | CVE-2005-4694 | Unspecified vulnerability in the www_add method in Asset.pm in Plain Black WebGUI 6.3.0 and other versions before 6.7.6 allows attackers to execute arbitrary code via unknown attack vectors. | 7.5 |
2005-12-31 | CVE-2005-4693 | Denial-Of-Service vulnerability in Gaim-Encryption 2.381 Gaim-Encryption 2.38-1 on Debian Linux allows remote attackers to cause a denial of service (crash) via a crafted message from an ICQ buddy, possibly involving the GE_received_key function in keys.c. | 5.0 |
2005-12-31 | CVE-2005-4692 | Remote Security vulnerability in Mroovca Stats Unspecified vulnerability in mroovca stats (mroovcastats) before 0.4.5b has unknown attack vectors and impact, related to cookies. | 7.5 |
2005-12-31 | CVE-2005-4691 | Unspecified vulnerability in Netbsd imake in NetBSD before 2.0.3, NetBSD-current before 12 September 2005, certain versions of X.Org, and certain versions of XFree86 allows local users to overwrite arbitrary files via a symlink attack on the temporary file for the file.0 target, which is used for a pre-formatted manual page. | 2.1 |
2005-12-31 | CVE-2005-4690 | Unspecified vulnerability in SIX Apart Movable Type 3.16 Six Apart Movable Type 3.16 allows local users with blog-creation privileges to create or overwrite arbitrary files of certain types (such as HTML and image files) by selecting an arbitrary directory as a blog's top-level directory. | 2.1 |
2005-12-31 | CVE-2005-4689 | Remote Security vulnerability in Six Apart Movable Type Six Apart Movable Type 3.16 stores account names and password hashes in a cookie, which allows remote attackers to login to an account by sniffing the cookie. | 5.0 |
2005-12-31 | CVE-2005-4688 | Denial-Of-Service vulnerability in Punbb 1.2.9 PunBB 1.2.9 does not require password entry when changing the e-mail address in an account's profile, which might allow an attacker to make an address change via a hijacked login session. | 5.0 |