Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-05-25 | CVE-2005-1751 | Unspecified vulnerability in Shtool Race condition in shtool 2.0.1 and earlier allows local users to create or modify arbitrary files via a symlink attack on the .shtool.$$ temporary file, a different vulnerability than CVE-2005-1759. | 3.7 |
2005-05-25 | CVE-2005-1543 | Remote Pre-Authentication Buffer Overflow vulnerability in Novell ZENworks Multiple stack-based and heap-based buffer overflows in Remote Management authentication (zenrem32.exe) on Novell ZENworks 6.5 Desktop and Server Management, ZENworks for Desktops 4.x, ZENworks for Servers 3.x, and Remote Management allows remote attackers to execute arbitrary code via (1) unspecified vectors, (2) type 1 authentication requests, and (3) type 2 authentication requests. | 7.5 |
2005-05-25 | CVE-2005-1256 | Multiple vulnerability in Ipswitch Imail, Imail Server and Ipswitch Collaboration Suite Stack-based buffer overflow in the IMAP daemon (IMAPD32.EXE) in IMail 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allows remote authenticated users to execute arbitrary code via a STATUS command with a long mailbox name. | 10.0 |
2005-05-25 | CVE-2005-1255 | Multiple vulnerability in Ipswitch Imail, Imail Server and Ipswitch Collaboration Suite Multiple stack-based buffer overflows in the IMAP server in IMail 8.12 and 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allow remote attackers to execute arbitrary code via a LOGIN command with (1) a long username argument or (2) a long username argument that begins with a special character. | 10.0 |
2005-05-25 | CVE-2005-1254 | Multiple vulnerability in Ipswitch IMail Server Stack-based buffer overflow in the IMAP server for Ipswitch IMail 8.12 and 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote authenticated users to cause a denial of service (crash) via a SELECT command with a large argument. | 5.0 |
2005-05-25 | CVE-2005-1252 | Multiple vulnerability in Ipswitch IMail Server Directory traversal vulnerability in the Web Calendaring server in Ipswitch Imail 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote attackers to read arbitrary files via "..\" (dot dot backslash) sequences in the query string argument in a GET request to a non-existent .jsp file. | 5.0 |
2005-05-25 | CVE-2005-1249 | Multiple vulnerability in Ipswitch IMail Server The IMAP daemon (IMAPD32.EXE) in Ipswitch Collaboration Suite (ICS) allows remote attackers to cause a denial of service (CPU consumption) via an LSUB command with a large number of null characters, which causes an infinite loop. | 5.0 |
2005-05-25 | CVE-2005-1152 | Unspecified vulnerability in Debian Qpopper 4.0.4/4.0.5 popauth.c in qpopper 4.0.5 and earlier does not properly set the umask, which may cause qpopper to create files with group or world-writable permissions. | 2.1 |
2005-05-25 | CVE-2005-1151 | Unspecified vulnerability in Debian Qpopper 4.0.4/4.0.5 qpopper 4.0.5 and earlier does not properly drop privileges before processing certain user-supplied files, which allows local users to overwrite or create arbitrary files as root. | 7.2 |
2005-05-24 | CVE-2005-1749 | Remote vulnerability in BEA WebLogic Server and WebLogic Express Buffer overflow in BEA WebLogic Server and WebLogic Express 6.1 Service Pack 4 allows remote attackers to cause a denial of service (CPU consumption from thread looping). | 5.0 |