Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-10-25 | CVE-2005-2744 | Multiple vulnerability in Apple Mac OS X Security Update 2005-008 Buffer overflow in QuickDraw Manager for Apple OS X 10.3.9 and 10.4.2, as used by applications such as Safari, Mail, and Finder, allows remote attackers to execute arbitrary code via a crafted PICT file. | 5.1 |
2005-10-25 | CVE-2005-2708 | Resource Management Errors vulnerability in Linux Kernel The search_binary_handler function in exec.c in Linux 2.4 kernel on 64-bit x86 architectures does not check a return code for a particular function call when virtual memory is low, which allows local users to cause a denial of service (panic), as demonstrated by running a process using the bash ulimit -v command. | 2.1 |
2005-10-25 | CVE-2005-2100 | Denial-Of-Service vulnerability in Enterprise Linux ES The rw_vm function in usercopy.c in the 4GB split patch for the Linux kernel in Red Hat Enterprise Linux 4 does not perform proper bounds checking, which allows local users to cause a denial of service (crash). | 2.1 |
2005-10-25 | CVE-2005-2959 | Permissions, Privileges, and Access Controls vulnerability in Todd Miller Sudo Incomplete blacklist vulnerability in sudo 1.6.8 and earlier allows local users to gain privileges via the (1) SHELLOPTS and (2) PS4 environment variables before executing a bash script on behalf of another user, which are not cleared even though other variables are. | 4.6 |
2005-10-25 | CVE-2005-2958 | Format String vulnerability in LibGDA Multiple format string vulnerabilities in the GNOME Data Access library for GNOME2 (libgda2) 1.2.1 and earlier allow attackers to execute arbitrary code. | 7.5 |
2005-10-25 | CVE-2005-2927 | Local Buffer Overflow vulnerability in SCO Unixware 7.1.3/7.1.4 Stack-based buffer overflow in ppp in SCO Unixware 7.1.3 and 7.1.4, and possibly earlier versions, allows local users to execute arbitrary code via a long argument to the (1) prompt or (2) defprompt command. | 7.2 |
2005-10-25 | CVE-2005-2926 | Local Buffer Overflow vulnerability in SCO OpenServer Backupsh Stack-based buffer overflow in (1) backupsh and (2) authsh in SCO Openserver 5.0.7 allows local users to execute arbitrary code via a long HOME environment variable. | 4.6 |
2005-10-24 | CVE-2005-3301 | Cross-Site Scripting vulnerability in PHPMyAdmin Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.6.4-pl3 allow remote attackers to inject arbitrary web script or HTML via certain arguments to (1) left.php, (2) queryframe.php, or (3) server_databases.php. network phpmyadmin | 4.3 |
2005-10-23 | CVE-2005-3300 | Local File Inclusion vulnerability in PHPmyadmin 2.6.4Pl3 The register_globals emulation layer in grab_globals.php for phpMyAdmin before 2.6.4-pl3 does not perform safety checks on values in the _FILES array for uploaded files, which allows remote attackers to include arbitrary files by using direct requests to library scripts that do not use grab_globals.php, then modifying certain configuration values for the theme. | 5.0 |
2005-10-23 | CVE-2005-3299 | Local File Include vulnerability in PHPmyadmin 2.6.4/2.6.4Pl1 PHP file inclusion vulnerability in grab_globals.lib.php in phpMyAdmin 2.6.4 and 2.6.4-pl1 allows remote attackers to include local files via the $__redirect parameter, possibly involving the subform array. | 5.0 |