Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-05-11 | CVE-2005-1518 | Unspecified vulnerability in SUN Solaris and Sunos Unknown vulnerability in Solaris 7 through 9, when using Federated Naming Services (FNS), autofs, and FNS X.500 configuration, allows local users to cause a denial of service (automountd crash) when "accessing" /xfn/_x500. | 2.1 |
2005-05-11 | CVE-2005-1517 | Remote Security vulnerability in FWSM for Cisco Catalyst 6500/7600 Series Unknown vulnerability in Cisco Firewall Services Module (FWSM) 2.3.1 and earlier, when using URL, FTP, or HTTPS filtering exceptions, allows certain TCP packets to bypass access control lists (ACLs). | 7.5 |
2005-05-11 | CVE-2005-1516 | Remote Authentication Bypass vulnerability in Netwin Dmail 3.1A DList (dlist.exe) in DMail 3.1a allows remote attackers to bypass authentication, read log files, and shutdown the system via a sendlog command with an incorrect password hash, which is not properly handled by the _cmd_sendlog function. | 7.5 |
2005-05-11 | CVE-2005-1515 | Denial-Of-Service vulnerability in Qmail Integer signedness error in the qmail_put and substdio_put functions in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large number of SMTP RCPT TO commands. | 5.0 |
2005-05-11 | CVE-2005-1514 | Denial-Of-Service vulnerability in Qmail commands.c in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long SMTP command without a space character, which causes an array to be referenced with a negative index. | 5.0 |
2005-05-11 | CVE-2005-1513 | Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in the stralloc_readyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large SMTP request. | 9.8 |
2005-05-11 | CVE-2005-1512 | Remote Security vulnerability in Pwsphp 1.2.2 The Admin panel in PwsPHP 1.2.2 does not properly verify uploaded picture files, which allows remote attackers to upload and possibly execute arbitrary files. | 7.5 |
2005-05-11 | CVE-2005-1511 | Security Bypass vulnerability in Pwsphp 1.2.2 PwsPHP 1.2.2 allows remote attackers to bypass authentication and post arbitrary comments via the Pseudo cookie. | 7.5 |
2005-05-11 | CVE-2005-1510 | Information Disclosure vulnerability in Pwsphp 1.2.2 PwsPHP 1.2.2 allows remote attackers to obtain sensitive information via a direct request to the admin directory, which reveals the path in an error message. | 7.5 |
2005-05-11 | CVE-2005-1509 | SQL Injection vulnerability in Pwsphp 1.2.2 SQL injection vulnerability in profil.php in PwsPHP 1.2.2 allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |