Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-06-09 | CVE-2005-1945 | Cross-Site Scripting vulnerability in Invision Community Blog 1.0/1.1 Cross-site scripting (XSS) vulnerability in the convert_highlite_words function in Invision Blog before 1.1.2 Final allows remote attackers to inject arbitrary web script or HTML via double hex encoded highlight data. network invision-power-services | 4.3 |
| 2005-06-09 | CVE-2005-1944 | Local Security vulnerability in Xmysqladmin 1.0 xmysqladmin 1.0 and earlier allows local users to delete arbitrary files via a symlink attack on a database backup file in /tmp. | 2.1 |
| 2005-06-09 | CVE-2005-1911 | Unspecified vulnerability in Leafnode The fetchnews NNTP client in leafnode 1.11.2 and earlier can hang while waiting for input that never arrives, which allows remote NNTP servers to cause a denial of service (news loss). | 5.0 |
| 2005-06-09 | CVE-2005-1909 | Unspecified vulnerability in Software602 602Lan Suite 2004 The web server control panel in 602LAN SUITE 2004 allows remote attackers to make it more difficult for the administrator to read portions of log files via a "</pre><!-" sequence in an HTTP GET request in the logon, possibly due to a cross-site scripting (XSS) vulnerability. network software602 | 4.3 |
| 2005-06-09 | CVE-2005-1908 | Security Bypass vulnerability in Perception Liteweb 2.5 Perception LiteWeb allows remote attackers to bypass access controls for files via an extra leading / (slash) or leading \ (backslash) in the URL. | 7.5 |
| 2005-06-09 | CVE-2005-1905 | Privilege Escalation vulnerability in Kaspersky LAB products The klif.sys driver in Kaspersky Labs Anti-Virus 5.0.227, 5.0.228, and 5.0.335 on Windows 2000 allows local users to gain privileges by modifying certain critical code addresses that are later accessed by privileged programs. | 7.2 |
| 2005-06-09 | CVE-2005-1902 | Directory Traversal vulnerability in E-Post Corporation Spa-Pro Mail Atsolomon 4.00 Directory traversal vulnerability in the IMAP service for SPA-PRO Mail @Solomon 4.00 allows remote authenticated users to read other users' mail and perform operations on arbitrary directories via .. | 3.6 |
| 2005-06-09 | CVE-2005-1901 | Cross-Site Scripting vulnerability in Sawmill Multiple cross-site scripting (XSS) vulnerabilities in Sawmill before 7.1.6 allow remote attackers to inject arbitrary web script or HTML via (1) the username in the Add User window or (2) the license key in the Licensing page. network sawmill | 4.3 |
| 2005-06-09 | CVE-2005-1900 | Security Bypass vulnerability in Sawmill Sawmill before 7.1.6 allows remote attackers to bypass authentication and (1) gain administrative privileges or (2) add a license. | 7.5 |
| 2005-06-09 | CVE-2005-1899 | Remote Denial of Service vulnerability in Rakkarsoft RakNet Rakkarsoft RakNet network library 2.33 and earlier, when released before 30 May 2005, and as used in multiple products including nFusion Elite Warriors: Vietnam, allows remote attackers to cause a denial of service (infinite loop) via a zero-byte UDP packet. | 5.0 |