Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-01-24 | CVE-2005-0103 | Code Injection vulnerability in Squirrelmail PHP remote file inclusion vulnerability in webmail.php in SquirrelMail before 1.4.4 allows remote attackers to execute arbitrary PHP code by modifying a URL parameter to reference a URL on a remote web server that contains the code. | 7.5 |
| 2005-01-24 | CVE-2005-0102 | Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in camel-lock-helper in Evolution 2.0.2 and earlier allows local users or remote malicious POP3 servers to execute arbitrary code via a length value of -1, which leads to a zero byte memory allocation and a buffer overflow. | 9.8 |
| 2005-01-24 | CVE-2005-0072 | Unspecified vulnerability in Ejoy and HU Yong Zhcon 0.2 zhcon before 0.2 does not drop privileges before reading a user configuration file, which allows local users to read arbitrary files. | 2.1 |
| 2005-01-22 | CVE-2005-0566 | Remote Buffer Overflow vulnerability in Golden FTP Server Buffer overflow in Golden FTP Server Pro (goldenftpd) 2.x allows remote attackers to execute arbitrary code via a long RNTO command. | 7.5 |
| 2005-01-22 | CVE-2005-0193 | Local Command Line Argument Buffer Overflow vulnerability in Isync Mrouter 1.5 Buffer overflow in the (1) -v and (2) -a switches in mRouter in iSync 1.5 in Mac OS X 10.3.7 and earlier allows local users to execute arbitrary code. | 7.2 |
| 2005-01-21 | CVE-2004-1185 | Multiple vulnerability in GNU Enscript Enscript 1.6.3 does not sanitize filenames, which allows remote attackers or local users to execute arbitrary commands via crafted filenames. | 7.5 |
| 2005-01-21 | CVE-2004-1184 | Multiple vulnerability in GNU Enscript The EPSF pipe support in enscript 1.6.3 allows remote attackers or local users to execute arbitrary commands via shell metacharacters. | 4.6 |
| 2005-01-21 | CVE-2004-1057 | Unspecified vulnerability in Linux Kernel Device Driver Virtual Memory Flags Multiple drivers in Linux kernel 2.4.19 and earlier do not properly mark memory with the VM_IO flag, which causes incorrect reference counts and may lead to a denial of service (kernel panic) when accessing freed kernel pages. | 7.2 |
| 2005-01-20 | CVE-2005-1847 | Remote Security vulnerability in YAMT Multiple buffer overflows in YaMT before 0.5_2 allow attackers to execute arbitrary code via the (1) rename or (2) sort options. | 7.5 |
| 2005-01-20 | CVE-2005-1846 | Directory Traversal vulnerability in Yamt 0.5.2 Multiple directory traversal vulnerabilities in YaMT before 0.5_2 allow attackers to overwrite arbitrary files via the (1) rename or (2) sort options. | 5.0 |