Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-11-18 | CVE-2005-2630 | Heap Overflow vulnerability in RealNetworks RealPlayer DUNZIP32.DLL Heap-based buffer overflow in DUNZIP32.DLL for RealPlayer 8, 10, and 10.5 and RealOne Player 1 and 2 allows remote attackers to execute arbitrary code via a crafted RealPlayer Skin (RJS) file, a different vulnerability than CVE-2004-1094. | 5.1 |
| 2005-11-18 | CVE-2005-2629 | Unspecified vulnerability in Realnetworks Helix Player, Realone Player and Realplayer Integer overflow in RealNetworks RealPlayer 8, 10, and 10.5, RealOne Player 1 and 2, and Helix Player 10.0.0 allows remote attackers to execute arbitrary code via an .rm movie file with a large value in the length field of the first data packet, which leads to a stack-based buffer overflow, a different vulnerability than CVE-2004-1481. | 5.1 |
| 2005-11-18 | CVE-2005-3355 | Path Traversal vulnerability in GNU Gnump3D Directory traversal vulnerability in GNU Gnump3d before 2.9.8 has unknown impact via "CGI parameters, and cookie values". | 6.4 |
| 2005-11-18 | CVE-2005-3349 | Link Following vulnerability in GNU Gnump3D GNU Gnump3d before 2.9.8 allows local users to modify or delete arbitrary files via a symlink attack on the index.lok temporary file. | 1.9 |
| 2005-11-18 | CVE-2005-3314 | Buffer Errors vulnerability in Novell Netmail 3.5.2 Stack-based buffer overflow in the IMAP daemon in Novell Netmail 3.5.2 allows remote attackers to execute arbitrary code via "long verb arguments." | 7.5 |
| 2005-11-18 | CVE-2005-3674 | Denial Of Service vulnerability in SUN Solaris 10.0/9.0 The Internet Key Exchange version 1 (IKEv1) implementation in the libike library in Sun Solaris 9 and 10 allows remote attackers to cause a denial of service (in.iked crash) via certain crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. | 7.8 |
| 2005-11-18 | CVE-2005-3673 | Denial of Service vulnerability in Check Point Firewall-1 and VPN-1 ISAKMP IKE The Internet Key Exchange version 1 (IKEv1) implementation in Check Point products allows remote attackers to cause a denial of service via certain crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. | 7.8 |
| 2005-11-18 | CVE-2005-3672 | Multiple Unspecified vulnerability in Stonesoft StoneGate Firewall/VPN Client IKEv1 Traffic The Internet Key Exchange version 1 (IKEv1) implementation in Stonesoft StoneGate Firewall before 2.6.1 allows remote attackers to cause a denial of service via certain crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. | 5.0 |
| 2005-11-18 | CVE-2005-3671 | Denial Of Service vulnerability in Openswan IKE Traffic The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) before 2.4.4, and freeswan in SUSE LINUX 9.1 before 2.04_1.5.4-1.23, allow remote attackers to cause a denial of service via (1) a crafted packet using 3DES with an invalid key length, or (2) unspecified inputs when Aggressive Mode is enabled and the PSK is known, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. | 7.8 |
| 2005-11-18 | CVE-2005-3670 | Denial Of Service vulnerability in HP Hp-Ux, Jetdirect 635N and Tru64 Multiple unspecified vulnerabilities in the Internet Key Exchange version 1 (IKEv1) implementation in HP HP-UX B.11.00, B.11.11, and B.11.23 running IPSec, HP Jetdirect 635n IPv6/IPsec Print Server, and HP Tru64 UNIX 5.1B-3 and 5.1B-2/PK4, allow remote attackers to cause a denial of service via certain IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. | 7.8 |