Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-12-31 | CVE-2004-2507 | Unspecified vulnerability in Linksys Wvc11B 2.10 Absolute path traversal vulnerability in main.cgi in Linksys WVC11B Wireless-B Internet Video Camera allows remote attackers to read arbitrary files via an absolute pathname in the next_file parameter. | 5.0 |
2004-12-31 | CVE-2004-2506 | Information Disclosure vulnerability in Wikindx Unparsed web content delivery vulnerability in WIKINDX before 0.9.9g allows remote attackers to obtain sensitive information via a direct HTTP request to the config.inc file. | 5.0 |
2004-12-31 | CVE-2004-2505 | Denial Of Service vulnerability in Macromedia ColdFusion MX Oversized Error Message Macromedia ColdFusion MX before 6.1 does not restrict the size of error messages, which allows remote attackers to cause a denial of service (memory consumption and crash) by sending repeated GET or POST requests that trigger error messages that use long strings of data. | 5.0 |
2004-12-31 | CVE-2004-2504 | Local Privilege Escalation vulnerability in Alt-N MDaemon The GUI in Alt-N Technologies MDaemon 7.2 and earlier, including 6.8, executes child processes such as NOTEPAD.EXE with SYSTEM privileges when users create new files, which allows local users with physical access to gain privileges. | 7.2 |
2004-12-31 | CVE-2004-2503 | Remote Denial Of Service vulnerability in Inweb Mail Server 2.40 INweb Mail Server 2.40 allows remote attackers to cause a denial of service (crash) via a large number of connect/disconnect actions to the (1) POP3 and (2) SMTP services. | 5.0 |
2004-12-31 | CVE-2004-2502 | Symbolic Link vulnerability in IM-Switch Insecure Temporary File Handling im-switch before 11.4-46.1 in Fedora Core 2 allows local users to overwrite arbitrary files via a symlink attack on the imswitcher[PID] temporary file. | 2.1 |
2004-12-31 | CVE-2004-2501 | Remote Pre-Authentication Buffer Overflow vulnerability in MailEnable IMAP Service Buffer overflow in the IMAP service of MailEnable Professional Edition 1.52 and Enterprise Edition 1.01 allows remote attackers to execute arbitrary code via (1) a long command string or (2) a long string to the MEIMAP service and then terminating the connection. | 7.5 |
2004-12-31 | CVE-2004-2500 | Unspecified vulnerability in IlohaMail Unknown vulnerability in IlohaMail before 0.8.14-rc1 has unknown impact and attack vectors. | 10.0 |
2004-12-31 | CVE-2004-2499 | Denial Of Service vulnerability in Hitachi Web Page Generator Unspecified vulnerability in Hitachi Web Page Generator and Web Page Generator Enterprise 4.01 and earlier allows remote attackers to cause a denial of service via unknown attack vectors when a web site is "improperly accessed." | 7.8 |
2004-12-31 | CVE-2004-2498 | Cross-Site Scripting and Information Disclosure vulnerability in Hitachi Web Page Generator Unspecified vulnerability in the error handler in Hitachi Web Page Generator and Web Page Generator Enterprise 4.01 and earlier, when using the default error template and debug mode is set to ON, allows remote attackers to determine internal directory structures via unknown attack vectors. | 5.0 |