Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-05-02 | CVE-2005-0768 | Unspecified vulnerability in Goodtech Systems Goodtech Telnet Server 4.0/5.0 Buffer overflow in the administration web server for GoodTech Telnet Server 4.0 and 5.0, and possibly all versions before 5.0.7, allows remote attackers to execute arbitrary code via a long string to port 2380. | 10.0 |
| 2005-05-02 | CVE-2005-0764 | Unspecified vulnerability in Marc Lehmann Rxvt-Unicode Buffer overflow in command.C for rxvt-unicode before 5.3 allows remote attackers to execute arbitrary code via a crafted file containing long escape sequences. | 7.5 |
| 2005-05-02 | CVE-2005-0763 | Unspecified vulnerability in Midnight Commander Midnight Commander Buffer overflow in Midnight Commander (mc) 4.5.55 and earlier may allow attackers to execute arbitrary code. | 4.6 |
| 2005-05-02 | CVE-2005-0762 | Unspecified vulnerability in Imagemagick Heap-based buffer overflow in the SGI parser in ImageMagick before 6.0 allows remote attackers to execute arbitrary code via a crafted SGI image file. | 7.5 |
| 2005-05-02 | CVE-2005-0760 | Unspecified vulnerability in Imagemagick The TIFF decoder in ImageMagick before 6.0 allows remote attackers to cause a denial of service (crash) via a crafted TIFF file. | 5.0 |
| 2005-05-02 | CVE-2005-0746 | Remote Path Disclosure vulnerability in Novell Ichain 2.2/2.2.113/2.3 The Mini FTP server in Novell iChain 2.2 and 2.3 SP2 and earlier allows remote unauthenticated attackers to obtain the full path of the server via the PWD command. | 5.0 |
| 2005-05-02 | CVE-2005-0744 | Remote Security vulnerability in iChain Server The web GUI for Novell iChain 2.2 and 2.3 SP2 and SP3 allows attackers to hijack sessions and gain administrator privileges by (1) sniffing the connection on TCP port 51100 and replaying the authentication information or (2) obtaining and replaying the PCZQX02 authentication cookie from the browser. | 10.0 |
| 2005-05-02 | CVE-2005-0743 | Remote Arbitrary PHP File Upload vulnerability in Xoops Custom Avatar The custom avatar uploading feature (uploader.php) for XOOPS 2.0.9.2 and earlier allows remote attackers to upload arbitrary PHP scripts, whose file extensions are not filtered. | 7.5 |
| 2005-05-02 | CVE-2005-0742 | Cross-Site Scripting vulnerability in SUN Java System Application Server 7.0 Cross-site scripting (XSS) vulnerability in Sun Java System Application Server 7 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. network sun | 4.3 |
| 2005-05-02 | CVE-2005-0738 | Resource Exhaustion vulnerability in Microsoft Exchange Server 2003 Stack consumption vulnerability in Microsoft Exchange Server 2003 SP1 allows users to cause a denial of service (hang) by deleting or moving a folder with deeply nested subfolders, which causes Microsoft Exchange Information Store service (Store.exe) to hang as a result of a large number of recursive calls. | 5.0 |