Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-05-02 | CVE-2005-1061 | The secure script in LogWatch before 2.6-2 allows attackers to prevent LogWatch from detecting malicious activity via certain strings in the secure file that are later used as part of a regular expression, which causes the parser to crash, aka "logwatch log processing regular expression DoS." | 5.0 |
| 2005-05-02 | CVE-2005-1060 | Remote Denial Of Service vulnerability in Novell Netware 6.0/6.5 Unknown vulnerability in the TCP/IP functionality (TCPIP.NLM) in Novell Netware 6.x allows remote attackers to cause a denial of service (ABEND by Page Fault Processor Exception) via certain packets. | 5.0 |
| 2005-05-02 | CVE-2005-1059 | Remote Authentication Bypass vulnerability in Linksys WET11 Password Update Linksys WET11 1.5.4 allows remote attackers to change the password without providing the original password via the data parameter to changepw.html. | 2.1 |
| 2005-05-02 | CVE-2005-1058 | Unspecified vulnerability in Cisco IOS 12.2T/12.3/12.3T Cisco IOS 12.2T, 12.3 and 12.3T, when processing an ISAKMP profile that specifies XAUTH authentication after Phase 1 negotiation, may not process certain attributes in the ISAKMP profile that specifies XAUTH, which allows remote attackers to bypass XAUTH and move to Phase 2 negotiations. | 7.5 |
| 2005-05-02 | CVE-2005-1057 | Unspecified vulnerability in Cisco IOS 12.2T/12.3/12.3T Cisco IOS 12.2T, 12.3 and 12.3T, when using Easy VPN Server XAUTH version 6 authentication, allows remote attackers to bypass authentication via a "malformed packet." | 7.5 |
| 2005-05-02 | CVE-2005-1056 | Remote Denial of Service vulnerability in HP OpenView Network Node Manager Unknown vulnerability in HP OpenView Network Node Manager (NMM) 6.2 through 6.4, and 7.01 through 7.50, allows remote attackers to cause a denial of service. | 5.0 |
| 2005-05-02 | CVE-2005-1054 | Unspecified vulnerability in Moderngigabyte Modernbill PHP remote file inclusion vulnerability in news.php in ModernBill 4.3.0 and earlier allows remote attackers to execute arbitrary PHP code by modifying the DIR parameter to reference a URL on a remote web server that contains the code. | 7.5 |
| 2005-05-02 | CVE-2005-1053 | Unspecified vulnerability in Moderngigabyte Modernbill Multiple cross-site scripting (XSS) vulnerabilities in orderwiz.php in ModernBill 4.3.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) c_code or (2) aid parameters. network moderngigabyte | 4.3 |
| 2005-05-02 | CVE-2005-1052 | Unspecified vulnerability in Microsoft Outlook and Outlook web Access Microsoft Outlook 2003 and Outlook Web Access (OWA) 2003 do not properly display comma separated addresses in the From field in an e-mail message, which could allow remote attackers to spoof e-mail addresses. | 5.0 |
| 2005-05-02 | CVE-2005-1051 | SQL Injection vulnerability in PunBB Profile.PHP SQL injection vulnerability in profile.php in PunBB 1.2.4 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a change_email action. | 6.5 |