Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-05-02 | CVE-2005-0975 | Local Integer Overflow vulnerability in Darwin Kernel Mach File Parsing Integer signedness error in the parse_machfile function in the mach-o loader (mach_loader.c) for the Darwin Kernel as used in Mac OS X 10.3.7, and other versions before 10.3.9, allows local users to cause a denial of service (CPU consumption) via a crafted mach-o header. | 2.1 |
| 2005-05-02 | CVE-2005-0970 | Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X Mac OS X 10.3.9 and earlier allows users to install, create, and execute setuid/setgid scripts, contrary to the intended design, which may allow attackers to conduct unauthorized activities with escalated privileges via vulnerable scripts. | 7.6 |
| 2005-05-02 | CVE-2005-0968 | Unspecified vulnerability in Broadcom Etrust Intrusion Detection 3.0 Computer Associates (CA) eTrust Intrusion Detection 3.0 allows remote attackers to cause a denial of service via large size values that are not properly validated before calling the CPImportKey function in the Crypto API. | 5.0 |
| 2005-05-02 | CVE-2005-0967 | Remote Denial Of Service vulnerability in ROB Flynn Gaim 1.2.0 Gaim 1.2.0 allows remote attackers to cause a denial of service (application crash) via a malformed file transfer request to a Jabber user, which leads to an out-of-bounds read. | 5.0 |
| 2005-05-02 | CVE-2005-0966 | Unspecified vulnerability in ROB Flynn Gaim 1.2.0 The IRC protocol plugin in Gaim 1.2.0, and possibly earlier versions, allows (1) remote attackers to inject arbitrary Gaim markup via irc_msg_kick, irc_msg_mode, irc_msg_part, irc_msg_quit, (2) remote attackers to inject arbitrary Pango markup and pop up empty dialog boxes via irc_msg_invite, or (3) malicious IRC servers to cause a denial of service (application crash) by injecting certain Pango markup into irc_msg_badmode, irc_msg_banned, irc_msg_unknown, irc_msg_nochan functions. | 6.4 |
| 2005-05-02 | CVE-2005-0965 | Remote Denial Of Service vulnerability in ROB Flynn Gaim 1.2.0 The gaim_markup_strip_html function in Gaim 1.2.0, and possibly earlier versions, allows remote attackers to cause a denial of service (application crash) via a string that contains malformed HTML, which causes an out-of-bounds read. | 5.0 |
| 2005-05-02 | CVE-2005-0964 | Local Network Access Restriction Bypass vulnerability in Kerio Personal Firewall Unknown vulnerability in Kerio Personal Firewall 4.1.2 and earlier allows local users to bypass firewall rules via a malicious process that impersonates a legitimate process that has fewer restrictions. | 4.6 |
| 2005-05-02 | CVE-2005-0963 | Denial-Of-Service vulnerability in Toshiba Acpi Flash Bios 1.6 An error in the Toshiba ACPI BIOS 1.6 causes the BIOS to only examine the first slot in the Master Boot Record (MBR) table for an active partition, which prevents the system from booting even though the MBR is not malformed. | 2.1 |
| 2005-05-02 | CVE-2005-0962 | SQL Injection vulnerability in Lighthouse Development Squirrelcart 1.5.5 SQL injection vulnerability in index.php for Lighthouse Squirrelcart allows remote attackers to execute arbitrary SQL commands via the (1) crn parameter in a show action or (2) rn parameter in a show_detail action. | 7.5 |
| 2005-05-02 | CVE-2005-0961 | Unspecified vulnerability in Horde Application Framework 3.0.4Rc1 Cross-site scripting (XSS) vulnerability in Horde 3.0.4 before 3.0.4-RC2 allows remote attackers to inject arbitrary web script or HTML via the parent frame title. network horde | 4.3 |