Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-05-29 | CVE-2005-1803 | Unspecified vulnerability in NET Portal Dynamic System NET Portal Dynamic System 5.0 Multiple cross-site scripting (XSS) vulnerabilities in Net Portal Dynamic System (NPDS) 5.0 allow remote attackers to inject arbitrary web script or HTML via the language parameter to (1) admin.php, or (2) powerpack_f.php, (3) the sitename parameter to sdv_infos.php, (4) the categories parameter to faq.php, (5) the lettre parameter to the glossaire module, (6) the title parameter to reviews.php, or (7) the image_subject parameter to reply.php. network net-portal-dynamic-system | 4.3 |
| 2005-05-29 | CVE-2005-1798 | Directory Traversal vulnerability in Monitoring Software 5.10.0/5.9.0 Directory traversal vulnerability in ServersCheck Monitoring Software 5.9.0 to 5.10.0 allows remote attackers to read arbitrary files via .. | 5.0 |
| 2005-05-29 | CVE-2005-1789 | Unspecified vulnerability in India Software Solution Shopping Cart SQL injection vulnerability in SignIn.asp in India Software Solution shopping cart allows remote attackers to execute arbitrary SQL commands via the password. | 7.5 |
| 2005-05-28 | CVE-2005-1829 | Unspecified vulnerability in Microsoft Internet Explorer Microsoft Internet Explorer 6 SP2 allows remote attackers to cause a denial of service (infinite loop and application crash) via two embedded files that call each other. | 5.0 |
| 2005-05-28 | CVE-2005-1807 | Remote Denial of Service vulnerability in PHPMailer Data() Function The Data function in class.smtp.php in PHPMailer 1.7.2 and earlier allows remote attackers to cause a denial of service (infinite loop leading to memory and CPU consumption) via a long header field. | 5.0 |
| 2005-05-28 | CVE-2005-1806 | Unspecified vulnerability in Peercast Format string vulnerability in PeerCast 0.1211 and earlier allows remote attackers to execute arbitrary code via format strings in the URL. | 7.5 |
| 2005-05-28 | CVE-2005-1800 | Cross-Site Scripting vulnerability in JAWS Glossary Cross-site scripting (XSS) vulnerability in Jaws Glossary gadget 0.4 to 0.5.1 allows remote attackers to inject arbitrary web script or HTML via the term parameter in a view or ViewTerm action to index.php. network clam-anti-virus | 4.3 |
| 2005-05-28 | CVE-2005-1791 | Denial of Service vulnerability in Microsoft IE 6.0 Microsoft Internet Explorer 6 SP2 (6.0.2900.2180) crashes when the user attempts to add a URI to the restricted zone, in which the full domain name of the URI begins with numeric sequences similar to an IP address. | 2.6 |
| 2005-05-27 | CVE-2005-1802 | Products Remote Denial of Service vulnerability in Nortel Networks Nortel VPN Router (aka Contivity) allows remote attackers to cause a denial of service (crash) via an IPsec IKE packet with a malformed ISAKMP header. | 5.0 |
| 2005-05-27 | CVE-2005-1795 | Improper Input Validation vulnerability in Clam Anti-Virus Clamav The filecopy function in misc.c in Clam AntiVirus (ClamAV) before 0.85, on Mac OS, allows remote attackers to execute arbitrary code via a virus in a filename that contains shell metacharacters, which are not properly handled when HFS permissions prevent the file from being deleted and ditto is invoked. | 7.5 |