Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-05-02 | CVE-2005-0960 | Remote Denial Of Service vulnerability in Openbsd 3.5/3.6 Multiple vulnerabilities in the SACK functionality in (1) tcp_input.c and (2) tcp_usrreq.c OpenBSD 3.5 and 3.6 allow remote attackers to cause a denial of service (memory exhaustion or system crash). | 5.0 |
| 2005-05-02 | CVE-2005-0959 | Remote CWD Argument Format String vulnerability in Yepyep Mtftpd 0.1A/0.2/0.3 Buffer overflow in the mt_do_dir function in YepYep mtftpd 0.0.3 may allow attackers to execute arbitrary code via a long path. | 7.5 |
| 2005-05-02 | CVE-2005-0956 | Unspecified vulnerability in Interakt MX Kart 1.1.2 Multiple SQL injection vulnerabilities in index.php in InterAKT MX Kart 1.1.2 allow remote attackers to execute arbitrary SQL commands via the (1) idp, (2) id_ctg, or (3) id_man parameter. | 7.5 |
| 2005-05-02 | CVE-2005-0955 | SQL Injection vulnerability in Interakt MX Shop 1.1.1 SQL injection vulnerability in InterAKT MX Shop 1.1.1 allows remote attackers to execute arbitrary SQL commands via the id_ctg parameter. | 7.5 |
| 2005-05-02 | CVE-2005-0954 | Unspecified vulnerability in Microsoft Internet Explorer, Windows Explorer and Windows XP Windows Explorer and Internet Explorer in Windows 2000 SP1 allows remote attackers to cause a denial of service (CPU consumption) via a malformed Windows Metafile (WMF) file. | 5.0 |
| 2005-05-02 | CVE-2005-0953 | Unspecified vulnerability in Bzip Bzip2 Race condition in bzip2 1.0.2 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by bzip2 after the decompression is complete. | 3.7 |
| 2005-05-02 | CVE-2005-0952 | Unspecified vulnerability in PHP Arena Pafiledb 3.1 Cross-site scripting vulnerability in pafiledb.php in PaFileDB 3.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter. | 5.0 |
| 2005-05-02 | CVE-2005-0949 | Input Validation vulnerability in Iatek PortalApp Multiple cross-site scripting (XSS) vulnerabilities in content.asp in Iatek PortalApp allow remote attackers to inject arbitrary web script or HTML via the (1) contenttype or (2) keywords parameter. network iatek | 4.3 |
| 2005-05-02 | CVE-2005-0948 | Input Validation vulnerability in Iatek PortalApp SQL injection vulnerability in ad_click.asp for PortalApp allows remote attackers to execute arbitrary SQL commands via the banner_id parameter. | 7.5 |
| 2005-05-02 | CVE-2005-0947 | Remote vulnerability in PHPcoin 1.2/1.2.1/1.2.1B Directory traversal vulnerability in auxpage.php in phpCoin 1.2.1b and earlier allows remote attackers to read and execute arbitrary files via a .. | 7.5 |