Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-07-19 | CVE-2005-2302 | Unspecified vulnerability in Powerdns PowerDNS before 2.9.18, when allowing recursion to a restricted range of IP addresses, does not properly handle questions from clients that are denied recursion, which could cause a "blank out" of answers to those clients that are allowed to use recursion. | 2.1 |
| 2005-07-19 | CVE-2005-2301 | Unspecified vulnerability in Powerdns PowerDNS before 2.9.18, when running with an LDAP backend, does not properly escape LDAP queries, which allows remote attackers to cause a denial of service (failure to answer ldap questions) and possibly conduct an LDAP injection attack. | 5.0 |
| 2005-07-19 | CVE-2005-2300 | Local Security vulnerability in Skype Skype 1.1.0.20 and earlier allows local users to overwrite arbitrary files via a symlink attack on the skype_profile.jpg temporary file. | 2.1 |
| 2005-07-19 | CVE-2005-2299 | Cross-Site Scripting vulnerability in Simple Message Board Forum.CFM Multiple cross-site scripting (XSS) vulnerabilities in Simple Message Board Version 2.0 Beta 1 allow remote attackers to inject arbitrary web script or HTML via the (1) FID parameter to forum.cfm, (2) UID parameter to user.cfm, (3) TID parameter to thread.cfm, or (4) PostDate parameter to search.cfm. network man-and-machine-ltd | 4.3 |
| 2005-07-19 | CVE-2005-2298 | Security Bypass vulnerability in Bitdefender Engine BitDefender Engine 1.6.1 and earlier does not properly scan all attachments, which allows remote attackers to bypass virus scanning via begin and end commands in the body of the e-mail, which BitDefender treats as a uuencoded attachment and stops scanning afterwards. | 5.0 |
| 2005-07-19 | CVE-2005-2297 | Local Security vulnerability in EAServer Stack-based buffer overflow in TreeAction.do in Sybase EAServer 4.2.5 through 5.2 allows remote authenticated users to execute arbitrary code via a large javascript parameter. | 4.6 |
| 2005-07-19 | CVE-2005-2196 | Unspecified vulnerability in Apple Airport Card The Apple AirPort card uses a default WEP key when not connected to a known or trusted network, which can cause it to automatically connect to a malicious network. | 2.1 |
| 2005-07-19 | CVE-2005-1851 | Unspecified vulnerability in EKG A certain contributed script for ekg Gadu Gadu client 1.5 and earlier allows attackers to execute shell commands via unknown attack vectors. | 10.0 |
| 2005-07-19 | CVE-2005-1850 | Unspecified vulnerability in EKG Certain contributed scripts for ekg Gadu Gadu client 1.5 and earlier create temporary files insecurely, with unknown impact and attack vectors, a different vulnerability than CVE-2005-1916. | 10.0 |
| 2005-07-19 | CVE-2005-1530 | Remote Denial Of Service vulnerability in Sophos Anti-Virus BZip2 Archive Handling Sophos Anti-Virus 5.0.1, with "Scan inside archive files" enabled, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a Bzip2 archive with a large 'Extra field length' value. | 5.0 |