Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-05-02 | CVE-2005-0126 | Remote Buffer Overflow vulnerability in Apple ColorSync ICC Header ColorSync on Mac OS X 10.3.7 and 10.3.8 allows attackers to execute arbitrary code via malformed ICC color profiles that modify the heap. | 7.5 |
2005-05-02 | CVE-2005-0121 | Local Security vulnerability in Alexander Siegel Golddig 2.0 Multiple buffer overflows in golddig 2.0 and earlier allow local users to execute arbitrary code via (1) a long map name command line argument or (2) a long username as recorded in the USER environment variable. | 4.6 |
2005-05-02 | CVE-2005-0120 | Local Security vulnerability in helvis helvis 1.8h2_1 and earlier allows local users to delete arbitrary files via the elvprsv setuid program. | 2.1 |
2005-05-02 | CVE-2005-0119 | Local Security vulnerability in Helvis helvis 1.8h2_1 and earlier allows local users to recover and read the files of other users via the elvrec setuid program. | 2.1 |
2005-05-02 | CVE-2005-0118 | Local Security vulnerability in Helvis helvis 1.8h2_1 and earlier stores recovery files in world readable directories with world readable permissions, which allows local users to read the recovered files of other users. | 2.1 |
2005-05-02 | CVE-2005-0091 | Multiple vulnerability in Red Hat Enterprise Linux Kernel Unknown vulnerability in the Red Hat Enterprise Linux 4 kernel 4GB/4GB split patch, when using the hugemem kernel, allows local users to read and write to arbitrary kernel memory and gain privileges via certain syscalls. | 7.2 |
2005-05-02 | CVE-2005-0090 | Multiple vulnerability in Red Hat Enterprise Linux Kernel A regression error in the Red Hat Enterprise Linux 4 kernel 4GB/4GB split patch omits an "access check," which allows local users to cause a denial of service (crash). | 2.1 |
2005-05-02 | CVE-2005-0088 | Information Disclosure vulnerability in Apache mod_python Module Publisher Handler The publisher handler for mod_python 2.7.8 and earlier allows remote attackers to obtain access to restricted objects via a crafted URL. | 7.5 |
2005-05-02 | CVE-2005-0086 | Unspecified vulnerability in Redhat Enterprise Linux and Enterprise Linux Desktop Heap-based buffer overflow in less in Red Hat Enterprise Linux 3 allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted file, as demonstrated using the UTF-8 locale. | 7.5 |
2005-05-02 | CVE-2005-0083 | Unspecified vulnerability in Mysql Maxdb 7.5.00 MySQL MaxDB 7.5.00 for Windows, and possibly earlier versions and other platforms, allows remote attackers to cause a denial of service (application crash) via invalid parameters to the (1) DBMCli_String::ReallocString, (2) DBMCli_String::operator, (3) DBMCli_Buffer::ForceResize, (4) DBMCli_Wizard::InstallDatabase, (5) DBMCli_Devspaces::Complete, (6) DBMWeb_TemplateWizard::askForWriteCountStep5, or (7) DBMWeb_DBMWeb::wizardDB functions, which triggers a null dereference. | 5.0 |