Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-07-13 | CVE-2005-2252 | Security Bypass vulnerability in Gianluca Baldo PHPauction 2.5 PhpAuction 2.5 allows remote attackers to bypass authentication and gain privileges as another user by setting the PHPAUCTION_RM_ID cookie to the user ID. | 7.5 |
| 2005-07-13 | CVE-2005-2251 | Unspecified vulnerability in Secure Reality PHPsecurepages PHP remote file inclusion vulnerability in secure.php in PHPSecurePages (phpSP) 0.28beta and earlier allows remote attackers to execute arbitrary code via the cfgProgDir parameter, a variant of CVE-2001-1468. | 7.5 |
| 2005-07-13 | CVE-2005-2250 | Remote Buffer Overflow vulnerability in Nokia Affix BTFTP Client Filename Buffer overflow in Bluetooth FTP client (BTFTP) in Nokia Affix 2.1.2 and 3.2.0 allows remote attackers to execute arbitrary code via a long filename in an OBEX file share. | 7.5 |
| 2005-07-13 | CVE-2005-2249 | Remote Security vulnerability in Jinzora 2.0.1 Multiple unknown vulnerabilities in Jinzora 2.0.1 have unknown impact and attack vectors, possibly involving a PHP file inclusion vulnerability. | 10.0 |
| 2005-07-13 | CVE-2005-2248 | Directory Traversal vulnerability in Sven-Ove Bjerkan Downloadprotect 1.0/1.0.1/1.0.2B Directory traversal vulnerability in DownloadProtect before 1.0.3 allows remote attackers to read files above the download folder. | 5.0 |
| 2005-07-13 | CVE-2005-2095 | Unspecified vulnerability in Squirrelmail options_identities.php in SquirrelMail 1.4.4 and earlier uses the extract function to process the $_POST variable, which allows remote attackers to modify or read the preferences of other users, conduct cross-site scripting XSS) attacks, and write arbitrary files. network squirrelmail | 4.3 |
| 2005-07-12 | CVE-2005-2247 | Unspecified vulnerability in Moodle Multiple unknown vulnerabilities in Moodle before 1.5.1 have unknown impact and attack vectors. | 10.0 |
| 2005-07-12 | CVE-2005-2246 | File Include vulnerability in iPhotoAlbum Multiple PHP remote file inclusion vulnerabilities in iPhotoAlbum 1.1 allow remote attackers to execute arbitrary code via the (1) doc_path parameter to getpage.php or (2) set_menu parameter to lib/static/header.php. | 7.5 |
| 2005-07-12 | CVE-2005-2245 | SSL Authentication Bypass vulnerability in F5 BIG-IP Unknown vulnerability in F5 BIG-IP 9.0.2 through 9.1 allows attackers to "subvert the authentication of SSL transactions," via unknown attack vectors, possibly involving NATIVE ciphers. | 7.5 |
| 2005-07-12 | CVE-2005-2244 | Remote Heap Buffer Overflow vulnerability in Cisco CallManager AUPair Service The aupair service (aupair.exe) in Cisco CallManager (CCM) 3.2 and earlier, 3.3 before 3.3(5), 4.0 before 4.0(2a)SR2b, and 4.1 4.1 before 4.1(3)SR1 allows remote attackers to execute arbitrary code or corrupt memory via crafted packets that trigger a memory allocation failure and lead to a buffer overflow. | 5.0 |