Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-06-01 | CVE-2005-1815 | Stack Overflow vulnerability in Hummingbird Connectivity 10.0/7.1/9.0 Multiple buffer overflows in Hummingbird Connectivity inetD 10.0.0.1 and 9.0.0.4 allows attackers to cause a denial of service and possibly execute arbitrary code via (1) an FTP command with a long argument to FTPD (ftpdw.exe) or (2) a large amount of data to LPD (Lpdw.exe). | 5.0 |
| 2005-06-01 | CVE-2005-1814 | Remote Buffer Overflow vulnerability in Newmad Technologies Picowebserver 1.0 Stack-based buffer overflow in PicoWebServer 1.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long URL. | 7.5 |
| 2005-06-01 | CVE-2005-1813 | Path Traversal vulnerability in Futuresoft Tftp Server 2000 1.0.0.1 Directory traversal vulnerability in FutureSoft TFTP Server Evaluation Version 1.0.0.1 allows remote attackers to read arbitrary files via a TFTP GET request containing (1) "../" (dot dot slash) or (2) "..\" (dot dot backslash) sequences. | 7.8 |
| 2005-06-01 | CVE-2005-1812 | Buffer Errors vulnerability in Futuresoft Tftp Server 2000 1.0.0.1 Multiple stack-based buffer overflows in FutureSoft TFTP Server Evaluation Version 1.0.0.1 allow remote attackers to execute arbitrary code via a long (1) filename or (2) transfer mode string in a Read Request (RRQ) or Write Request (WRQ) packet. | 10.0 |
| 2005-06-01 | CVE-2005-1811 | HTML Injection vulnerability in Mybulletinboard 1.0Rc4 Cross-site scripting (XSS) vulnerability in usercp.php for MyBulletinBoard (MyBB) allows remote attackers to inject arbitrary web script or HTML via the website field in a user profile. network mybulletinboard | 4.3 |
| 2005-06-01 | CVE-2005-1810 | SQL Injection vulnerability in Wordpress 1.5.1 SQL injection vulnerability in template-functions-category.php in WordPress 1.5.1 allows remote attackers to execute arbitrary SQL commands via the $cat_ID variable, as demonstrated using the cat parameter to index.php. | 7.5 |
| 2005-06-01 | CVE-2005-1809 | Unspecified vulnerability in Sony P900 Firmware Sony Ericsson P900 Beamer allows remote attackers to cause a denial of service (panic) via an obexftp session with a long filename in an OBEX File Transfer or OBEX Object Push. | 5.0 |
| 2005-06-01 | CVE-2005-1794 | Remote Desktop Protocol Server Private Key Disclosure vulnerability in Microsoft products Microsoft Terminal Server using Remote Desktop Protocol (RDP) 5.2 stores an RSA private key in mstlsapi.dll and uses it to sign a certificate, which allows remote attackers to spoof public keys of legitimate servers and conduct man-in-the-middle attacks. | 6.4 |
| 2005-06-01 | CVE-2005-1793 | Denial-Of-Service vulnerability in Windows 98SE User32.DLL in Microsoft Windows 98SE, and possibly other operating systems, allows local and remote attackers to cause a denial of service (crash) via an icon (.ico) bitmap file with large width and height values. | 2.6 |
| 2005-06-01 | CVE-2005-1792 | Denial of Service vulnerability in Microsoft Windows XP Windows Management Instrumentation Memory leak in Windows Management Instrumentation (WMI) service allows attackers to cause a denial of service (memory consumption and crash) by creating security contexts more quickly than they can be cleared from the RPC cache. | 5.0 |