Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-03-01 | CVE-2005-0629 | Remote HTML Injection vulnerability in 427BB Multiple cross-site scripting (XSS) vulnerabilities in profile.php in 427BB 2.2 allow remote attackers to inject arbitrary web script or HTML via the (1) user or (2) Avatar parameters. network 427bb | 4.3 |
2005-03-01 | CVE-2005-0628 | Remote Input Validation vulnerability in Demof Forumwa V1 Multiple cross-site scripting (XSS) vulnerabilities in Forumwa 1.0 allow remote attackers to inject arbitrary web script or HTML via (1) the keyword parameter in search.php or the (2) body or (3) subject of a forum message. network demof | 4.3 |
2005-03-01 | CVE-2005-0623 | Remote Security vulnerability in Raidenhttpd 1.1.32 Buffer overflow in RaidenHTTPD 1.1.32, and possibly other versions before 1.1.34, allows remote attackers to execute arbitrary code via a long URL. | 7.5 |
2005-03-01 | CVE-2005-0622 | Remote Security vulnerability in Raidenhttpd 1.1.32 RaidenHTTPD 1.1.32, and possibly other versions before 1.1.34, allows remote attackers to view the PHP source code via an HTTP GET request for a filename with a trailing (1) . | 5.0 |
2005-03-01 | CVE-2004-1055 | Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 2.6.0-pl2 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the PmaAbsoluteUri parameter, (2) the zero_rows parameter in read_dump.php, (3) the confirm form, or (4) an error message generated by the internal phpMyAdmin parser. | 6.8 |
2005-03-01 | CVE-2004-1053 | Remote Buffer Overflow vulnerability in FreeBSD Fetch Integer overflow in fetch on FreeBSD 4.1 through 5.3 allows remote malicious servers to execute arbitrary code via certain HTTP headers in an HTTP response, which lead to a buffer overflow. | 10.0 |
2005-03-01 | CVE-2004-1052 | Buffer Overflow vulnerability in BNC getnickuserhost IRC Server Response Buffer overflow in the getnickuserhost function in BNC 2.8.9, and possibly other versions, allows remote IRC servers to execute arbitrary code via an IRC server response that contains many (1) ! (exclamation) or (2) @ (at sign) characters. | 10.0 |
2005-03-01 | CVE-2004-1051 | sudo before 1.6.8p2 allows local users to execute arbitrary commands by using "()" style environment variables to create functions that have the same name as any program within the bash script that is called without using the program's full pathname. | 7.2 |
2005-03-01 | CVE-2004-1038 | Local Security vulnerability in Ieee Firewire Ieee 1394 A design error in the IEEE1394 specification allows attackers with physical access to a device to read and write to sensitive memory using a modified FireWire/IEEE 1394 client, thus bypassing intended restrictions that would normally require greater degrees of physical access to exploit. | 7.2 |
2005-03-01 | CVE-2004-1037 | Remote Arbitrary Command Execution vulnerability in TWiki Search Shell Metacharacter The search function in TWiki 20030201 allows remote attackers to execute arbitrary commands via shell metacharacters in a search string. | 10.0 |