Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-05-11 | CVE-2005-1561 | Remote vulnerability in MaxWebPortal Multiple cross-site scripting (XSS) vulnerabilities in post.asp in MaxWebPortal 1.3.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) mod, (2) M, or (3) type parameter. network maxwebportal | 4.3 |
2005-05-11 | CVE-2005-1560 | Remote Security vulnerability in Neteyes Nexusway 805 The SSH module in Neteyes Nexusway allows remote attackers to execute arbitrary commands via shell metacharacters in arguments to certain commands, as demonstrated using ping and traceroute. | 10.0 |
2005-05-11 | CVE-2005-1559 | Remote Security vulnerability in Neteyes Nexusway The web module in Neteyes Nexusway allows remote attackers to execute arbitrary commands via hex-encoded shell metacharacters in the ip parameter for (1) nslookup.cgi or (2) ping.cgi. | 10.0 |
2005-05-11 | CVE-2005-1558 | Security Bypass vulnerability in Neteyes Nexusway 805 The web module in Neteyes Nexusway allows remote attackers to bypass authentication and gain administrator privileges by setting the cyclone500_auth cookie. | 7.5 |
2005-05-11 | CVE-2005-1557 | HTML Injection vulnerability in Pixysoft Guestbook PRO 3.2.1 Multiple cross-site scripting (XSS) vulnerabilities in WebApp Guestbook PRO 3.2.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) title or (2) content of a message. network pixysoft | 4.3 |
2005-05-11 | CVE-2005-1519 | DNS Spoofing vulnerability in Squid Proxy Squid 2.5 STABLE9 and earlier, when the DNS client port is unfiltered and the environment does not prevent IP spoofing, allows remote attackers to spoof DNS lookups. | 6.4 |
2005-05-11 | CVE-2005-1518 | Unspecified vulnerability in SUN Solaris and Sunos Unknown vulnerability in Solaris 7 through 9, when using Federated Naming Services (FNS), autofs, and FNS X.500 configuration, allows local users to cause a denial of service (automountd crash) when "accessing" /xfn/_x500. | 2.1 |
2005-05-11 | CVE-2005-1517 | Remote Security vulnerability in FWSM for Cisco Catalyst 6500/7600 Series Unknown vulnerability in Cisco Firewall Services Module (FWSM) 2.3.1 and earlier, when using URL, FTP, or HTTPS filtering exceptions, allows certain TCP packets to bypass access control lists (ACLs). | 7.5 |
2005-05-11 | CVE-2005-1516 | Remote Authentication Bypass vulnerability in Netwin Dmail 3.1A DList (dlist.exe) in DMail 3.1a allows remote attackers to bypass authentication, read log files, and shutdown the system via a sendlog command with an incorrect password hash, which is not properly handled by the _cmd_sendlog function. | 7.5 |
2005-05-11 | CVE-2005-1515 | Denial-Of-Service vulnerability in Qmail Integer signedness error in the qmail_put and substdio_put functions in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large number of SMTP RCPT TO commands. | 5.0 |