Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-05-24 | CVE-2005-1708 | Remote Privilege Escalation vulnerability in Bluecoat Reporter 7.1.1 templates.admin.users.user_form_processing in Blue Coat Reporter before 7.1.2 allows authenticated users to gain administrator privileges via an HTTP POST that sets volatile.user.administrator to true. | 4.6 |
| 2005-05-24 | CVE-2005-1707 | Unspecified vulnerability in Gentoo Linux Webapp-Config 1.10 The fn_show_postinst function in Gentoo webapp-config before 1.10-r14 allows local users to overwrite arbitrary files via a symlink attack on the postinst.txt temporary file. | 4.6 |
| 2005-05-24 | CVE-2005-1706 | Security Bypass vulnerability in MailScanner Unknown vulnerability in MailScanner 4.41.3 and earlier, related to "incomplete reporting of viruses in zip files," allows remote attackers to bypass virus detection. | 7.5 |
| 2005-05-24 | CVE-2005-1705 | Unspecified vulnerability in GNU GDB gdb before 6.3 searches the current working directory to load the .gdbinit configuration file, which allows local users to execute arbitrary commands as the user running gdb. | 7.2 |
| 2005-05-24 | CVE-2005-1704 | Numeric Errors vulnerability in GNU GDB Integer overflow in the Binary File Descriptor (BFD) library for gdb before 6.3, binutils, elfutils, and possibly other packages, allows user-assisted attackers to execute arbitrary code via a crafted object file that specifies a large number of section headers, leading to a heap-based buffer overflow. | 4.6 |
| 2005-05-24 | CVE-2005-1703 | Remote Denial Of Service vulnerability in Black Cactus Warrior Kings Battles 1.23 Warrior Kings: Battles 1.23 and earlier allows remote attackers to cause a denial of service (server crash) via a partial join packet that triggers a NULL pointer dereference. | 5.0 |
| 2005-05-24 | CVE-2005-1702 | Remote Format String vulnerability in Black Cactus Warrior Kings and Warrior Kings Battles Format string vulnerability in Warrior Kings: Battles 1.23 and earlier and Warrior Kings 1.3 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a nickname. | 7.5 |
| 2005-05-24 | CVE-2005-1701 | SQL Injection vulnerability in Portailphp 1.3 SQL injection vulnerability in PortailPHP 1.3 allows remote attackers to execute arbitrary SQL commands via the id parameter to the (1) News, (2) File, (3) Liens, or (4) Faq modules. | 7.5 |
| 2005-05-24 | CVE-2005-1700 | Unspecified vulnerability in Postnuke Software Foundation Postnuke 0.760Rc3 SQL injection vulnerability in pnadmin.php in the Xanthia module in PostNuke 0.760-RC3 allows remote administrators to execute arbitrary SQL commands via the riga[0] parameter. | 7.5 |
| 2005-05-24 | CVE-2005-1699 | Directory Traversal vulnerability in Postnuke Software Foundation Postnuke 0.760Rc3 Directory traversal vulnerability in pnadminapi.php in the Xanthia module in PostNuke 0.760-RC3 allows remote administrators to read arbitrary files via a .. | 4.0 |