Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-05-02 | CVE-2005-0595 | Remote Buffer Overflow vulnerability in Working Resources Inc. Badblue 2.55 Buffer overflow in ext.dll in BadBlue 2.55 allows remote attackers to execute arbitrary code via a long mfcisapicommand parameter. | 7.5 |
2005-05-02 | CVE-2005-0591 | Unspecified vulnerability in Mozilla Firefox Firefox before 1.0.1 allows remote attackers to spoof the (1) security and (2) download modal dialog boxes, which could be used to trick users into executing script or downloading and executing a file, aka "Firespoofing." | 2.6 |
2005-05-02 | CVE-2005-0590 | Remote vulnerability in Mozilla Firefox, Mozilla and Thunderbird The installation confirmation dialog in Firefox before 1.0.1, Thunderbird before 1.0.1, and Mozilla before 1.7.6 allows remote attackers to use InstallTrigger to spoof the hostname of the host performing the installation via a long "user:pass" sequence in the URL, which appears before the real hostname. | 5.0 |
2005-05-02 | CVE-2005-0589 | Remote vulnerability in Mozilla Suite The Form Fill feature in Firefox before 1.0.1 allows remote attackers to steal potentially sensitive information via an input control that monitors the values that are generated by the autocomplete capability. | 5.0 |
2005-05-02 | CVE-2005-0588 | Remote vulnerability in Mozilla Suite Firefox before 1.0.1 and Mozilla before 1.7.6 does not restrict xsl:include and xsl:import tags in XSLT stylesheets to the current domain, which allows remote attackers to determine the existence of files on the local system. | 5.0 |
2005-05-02 | CVE-2005-0586 | Remote vulnerability in Mozilla Suite Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote malicious web sites to spoof the extensions of files to download via the Content-Disposition header, which could be used to trick users into downloading dangerous content. | 2.6 |
2005-05-02 | CVE-2005-0584 | Unspecified vulnerability in Mozilla Firefox and Mozilla Firefox before 1.0.1 and Mozilla before 1.7.6, when displaying the HTTP Authentication dialog, do not change the focus to the tab that generated the prompt, which could facilitate spoofing and phishing attacks. | 2.6 |
2005-05-02 | CVE-2005-0583 | Unspecified vulnerability in Broadcom License Software 0.1.0.15 Directory traversal vulnerability in Computer Associates (CA) License Client 0.1.0.15 allows remote attackers to create arbitrary files via .. | 5.0 |
2005-05-02 | CVE-2005-0582 | Unspecified vulnerability in Broadcom License Software 0.1.0.15 Buffer overflow in Computer Associates (CA) License Client 0.1.0.15 allows remote attackers to execute arbitrary code via a long filename in a PUTOLF request. | 10.0 |
2005-05-02 | CVE-2005-0581 | Unspecified vulnerability in Broadcom License Software 0.1.0.15 Multiple buffer overflows in Computer Associates (CA) License Client and Server 0.1.0.15 allow remote attackers to execute arbitrary code via (1) certain long fields in the Checksum item in a GCR request, (2) a long IP address, hostname, or netmask values in a GCR request, (3) a long last parameter in a GETCONFIG packet, or (4) long values in a request with an invalid format. | 4.6 |