Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-05-02 | CVE-2005-0368 | SQL Injection vulnerability in CMScore Multiple SQL injection vulnerabilities in CMScore allow remote attackers to execute arbitrary SQL commands via the (1) EntryID or (2) searchterm parameter to index.php, or (3) username parameter to authenticate.php. | 7.5 |
2005-05-02 | CVE-2005-0366 | Inadequate Encryption Strength vulnerability in Gnupg The integrity check feature in OpenPGP, when handling a message that was encrypted using cipher feedback (CFB) mode, allows remote attackers to recover part of the plaintext via a chosen-ciphertext attack when the first 2 bytes of a message block are known, and an oracle or other mechanism is available to determine whether an integrity check failed. | 5.0 |
2005-05-02 | CVE-2005-0365 | Unspecified vulnerability in KDE 3.2.X/3.3.X The dcopidlng script in KDE 3.2.x and 3.3.x creates temporary files with predictable filenames, which allows local users to overwrite arbitrary files via a symlink attack. | 2.1 |
2005-05-02 | CVE-2005-0363 | Unspecified vulnerability in Awstats 4.0/6.2 awstats.pl in AWStats 4.0 and 6.2 allows remote attackers to execute arbitrary commands via shell metacharacters in the config parameter. | 7.5 |
2005-05-02 | CVE-2005-0353 | Remote Buffer Overflow vulnerability in Safenet Sentinel License Manager 7.2.0.2 Buffer overflow in the Sentinel LM (Lservnt) service in the Sentinel License Manager 7.2.0.2 allows remote attackers to execute arbitrary code by sending a large amount of data to UDP port 5093. | 10.0 |
2005-05-02 | CVE-2005-0350 | Remote Security vulnerability in F-Secure Anti-Virus Heap-based buffer overflow in multiple F-Secure Anti-Virus and Internet Security products allows remote attackers to execute arbitrary code via a crafted ARJ archive. | 7.5 |
2005-05-02 | CVE-2005-0349 | Unspecified vulnerability in Broadcom Brightstor Arcserve Backup 11.1 The production release of the UniversalAgent for UNIX in BrightStor ARCserve Backup 11.1 contains hard-coded credentials, which allows remote attackers to access the file system and possibly execute arbitrary commands. | 7.5 |
2005-05-02 | CVE-2005-0348 | Remote vulnerability in RealNetworks RealArcade Directory traversal vulnerability in RealArcade 1.2.0.994 allows remote attackers to delete arbitrary files via an RGP file with a .. | 2.6 |
2005-05-02 | CVE-2005-0347 | Remote Security vulnerability in RealArcade Integer overflow in RealArcade 1.2.0.994 and earlier allows remote attackers to execute arbitrary code via an RGS file with an invalid size string for the GUID and game name, which leads to a buffer overflow. | 5.1 |
2005-05-02 | CVE-2005-0346 | Information Disclosure vulnerability in Softremote Vpn Client SafeNet SoftRemote VPN Client stores the VPN password (pre-shared key) in cleartext in memory of the IreIKE.exe process, which allows local users to gain sensitive information if they have access to that process. | 2.1 |