Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-07-05 | CVE-2005-2085 | Denial-Of-Service vulnerability in Infradig Systems Inframail Advantage Server6.0/Server6.7 Buffer overflow in Inframail Advantage Server Edition 6.0 through 6.7 allows remote attackers to cause a denial of service (process crash) via a long (1) SMTP FROM field or possibly (2) FTP NLST command. | 5.0 |
2005-07-05 | CVE-2005-2084 | Cross-Site Scripting vulnerability in Community Server Forums Cross-site scripting (XSS) vulnerability in SearchResults.aspx in Community Forum allows remote attackers to inject arbitrary web script or HTML via the q parameter. network telligent-systems | 4.3 |
2005-07-05 | CVE-2005-2083 | Denial-Of-Service vulnerability in Ia Emailserver Format string vulnerability in IMAP4 in IA eMailServer Corporate Edition 5.2.2 build 1051 allows remote attackers to cause a denial of service (application crash) via a LIST command with format string specifiers as the second argument. | 5.0 |
2005-07-05 | CVE-2005-2082 | Remote Security vulnerability in Cgi-Club Imtrset 1.02 im_trbbs.cgi in imTRSET 1.02 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the df parameter. | 5.0 |
2005-07-05 | CVE-2005-2081 | Unspecified vulnerability in Digium Asterisk 1.0.7 Stack-based buffer overflow in the function that parses commands in Asterisk 1.0.7, when the 'write = command' option is enabled, allows remote attackers to execute arbitrary code via a command that has two double quotes followed by a tab character. | 5.0 |
2005-07-05 | CVE-2005-2068 | Unspecified vulnerability in Freebsd FreeBSD 4.x through 4.11 and 5.x through 5.4 allows remote attackers to modify certain TCP options via a TCP packet with the SYN flag set for an already established session. | 5.0 |
2005-07-05 | CVE-2005-2019 | Unspecified vulnerability in Freebsd 5.4 ipfw in FreeBSD 5.4, when running on Symmetric Multi-Processor (SMP) or Uni Processor (UP) systems with the PREEMPTION kernel option enabled, does not sufficiently lock certain resources while performing table lookups, which can cause the cache results to be corrupted during multiple concurrent lookups, allowing remote attackers to bypass intended access restrictions. | 5.0 |
2005-07-05 | CVE-2005-1932 | Input Validation vulnerability in LPanel Lpanel 1.59 and earlier, and other versions before 1.597, allows remote authenticated users to modify certain critical variables and (1) modify DNS settings for arbitrary domains via the domain parameter to diagnose.php, (2) close, open, or respond to arbitrary support tickets via the close, open, or pid parameter to view_ticket.php, (3) obtain sensitive information on arbitrary invoices via the inv parameter to viewreceipt.php, or (4) modify domain information for arbitrary domains via the editdomain parameter to domains.php. | 2.1 |
2005-07-05 | CVE-2005-1931 | Denial-Of-Service vulnerability in Goodtech Systems Goodtech Smtp Server 5.14 GoodTech SMTP Server 5.14 allows remote attackers to cause a denial of service (application crash) via a RCPT TO command with an invalid argument, as demonstrated using an "A" character. | 5.0 |
2005-07-05 | CVE-2005-1923 | Unspecified vulnerability in Clam Anti-Virus Clamav The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, and other versions vefore 0.86, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a cabinet (CAB) file with the cffile_FolderOffset field set to 0xff, which causes a zero-length read. | 2.6 |