Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-05-24 | CVE-2005-1710 | Unspecified vulnerability in Bluecoat Reporter 7.1.1 Multiple cross-site scripting (XSS) vulnerabilities in Blue Coat Reporter before 7.1.2 allow remote attackers to inject arbitrary web script or HTML via (1) the username in an Add User window or (2) the license key (volatile.license_to_add parameter) in the Licensing page. network bluecoat | 4.3 |
2005-05-24 | CVE-2005-1709 | HTML Injection vulnerability in Bluecoat Reporter 7.1.1 Unknown vulnerability in Blue Coat Reporter before 7.1.2 allows remote unauthenticated attackers to add a license. | 7.5 |
2005-05-24 | CVE-2005-1708 | Remote Privilege Escalation vulnerability in Bluecoat Reporter 7.1.1 templates.admin.users.user_form_processing in Blue Coat Reporter before 7.1.2 allows authenticated users to gain administrator privileges via an HTTP POST that sets volatile.user.administrator to true. | 4.6 |
2005-05-24 | CVE-2005-1707 | Unspecified vulnerability in Gentoo Linux Webapp-Config 1.10 The fn_show_postinst function in Gentoo webapp-config before 1.10-r14 allows local users to overwrite arbitrary files via a symlink attack on the postinst.txt temporary file. | 4.6 |
2005-05-24 | CVE-2005-1706 | Security Bypass vulnerability in MailScanner Unknown vulnerability in MailScanner 4.41.3 and earlier, related to "incomplete reporting of viruses in zip files," allows remote attackers to bypass virus detection. | 7.5 |
2005-05-24 | CVE-2005-1705 | Unspecified vulnerability in GNU GDB gdb before 6.3 searches the current working directory to load the .gdbinit configuration file, which allows local users to execute arbitrary commands as the user running gdb. | 7.2 |
2005-05-24 | CVE-2005-1704 | Numeric Errors vulnerability in GNU GDB Integer overflow in the Binary File Descriptor (BFD) library for gdb before 6.3, binutils, elfutils, and possibly other packages, allows user-assisted attackers to execute arbitrary code via a crafted object file that specifies a large number of section headers, leading to a heap-based buffer overflow. | 4.6 |
2005-05-24 | CVE-2005-1703 | Remote Denial Of Service vulnerability in Black Cactus Warrior Kings Battles 1.23 Warrior Kings: Battles 1.23 and earlier allows remote attackers to cause a denial of service (server crash) via a partial join packet that triggers a NULL pointer dereference. | 5.0 |
2005-05-24 | CVE-2005-1702 | Remote Format String vulnerability in Black Cactus Warrior Kings and Warrior Kings Battles Format string vulnerability in Warrior Kings: Battles 1.23 and earlier and Warrior Kings 1.3 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a nickname. | 7.5 |
2005-05-24 | CVE-2005-1701 | SQL Injection vulnerability in Portailphp 1.3 SQL injection vulnerability in PortailPHP 1.3 allows remote attackers to execute arbitrary SQL commands via the id parameter to the (1) News, (2) File, (3) Liens, or (4) Faq modules. | 7.5 |