Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-06-01 | CVE-2005-1812 | Buffer Errors vulnerability in Futuresoft Tftp Server 2000 1.0.0.1 Multiple stack-based buffer overflows in FutureSoft TFTP Server Evaluation Version 1.0.0.1 allow remote attackers to execute arbitrary code via a long (1) filename or (2) transfer mode string in a Read Request (RRQ) or Write Request (WRQ) packet. | 10.0 |
| 2005-06-01 | CVE-2005-1811 | HTML Injection vulnerability in Mybulletinboard 1.0Rc4 Cross-site scripting (XSS) vulnerability in usercp.php for MyBulletinBoard (MyBB) allows remote attackers to inject arbitrary web script or HTML via the website field in a user profile. network mybulletinboard | 4.3 |
| 2005-06-01 | CVE-2005-1810 | SQL Injection vulnerability in Wordpress 1.5.1 SQL injection vulnerability in template-functions-category.php in WordPress 1.5.1 allows remote attackers to execute arbitrary SQL commands via the $cat_ID variable, as demonstrated using the cat parameter to index.php. | 7.5 |
| 2005-06-01 | CVE-2005-1809 | Unspecified vulnerability in Sony P900 Firmware Sony Ericsson P900 Beamer allows remote attackers to cause a denial of service (panic) via an obexftp session with a long filename in an OBEX File Transfer or OBEX Object Push. | 5.0 |
| 2005-06-01 | CVE-2005-1794 | Remote Desktop Protocol Server Private Key Disclosure vulnerability in Microsoft products Microsoft Terminal Server using Remote Desktop Protocol (RDP) 5.2 stores an RSA private key in mstlsapi.dll and uses it to sign a certificate, which allows remote attackers to spoof public keys of legitimate servers and conduct man-in-the-middle attacks. | 6.4 |
| 2005-06-01 | CVE-2005-1793 | Denial-Of-Service vulnerability in Windows 98SE User32.DLL in Microsoft Windows 98SE, and possibly other operating systems, allows local and remote attackers to cause a denial of service (crash) via an icon (.ico) bitmap file with large width and height values. | 2.6 |
| 2005-06-01 | CVE-2005-1792 | Denial of Service vulnerability in Microsoft Windows XP Windows Management Instrumentation Memory leak in Windows Management Instrumentation (WMI) service allows attackers to cause a denial of service (memory consumption and crash) by creating security contexts more quickly than they can be cleared from the RPC cache. | 5.0 |
| 2005-06-01 | CVE-2005-1790 | Resource Management Errors vulnerability in Microsoft Internet Explorer 6.0.2800.1106/6.0.2900.2180 Microsoft Internet Explorer 6 SP2 6.0.2900.2180 and 6.0.2800.1106, and earlier versions, allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a Javascript BODY onload event that calls the window function, aka "Mismatched Document Object Model Objects Memory Corruption Vulnerability." | 2.6 |
| 2005-06-01 | CVE-2005-1788 | Unspecified vulnerability in Hosting Controller Hosting Controller 6.1Hotfix2.0 SQL injection vulnerability in resellerresources.asp in Hosting Controller 6.1 Hotfix 2.0 allows remote attackers to execute arbitrary SQL commands via the jresourceid parameter. | 7.5 |
| 2005-05-31 | CVE-2005-1866 | Cross-Site Scripting vulnerability in Vincent HOR Calendarix Advanced 1.5 Cross-site scripting (XSS) vulnerability in calendar.php in Calendarix Advanced 1.5 allows remote attackers to inject arbitrary web script or HTML via the year parameter. network vincent-hor | 4.3 |