Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-12-31 | CVE-2004-2381 | Denial Of Service vulnerability in Jetty HttpRequest.java in Jetty HTTP Server before 4.2.19 allows remote attackers to cause denial of service (memory usage and application crash) via HTTP requests with a large Content-Length. | 5.0 |
| 2004-12-31 | CVE-2004-2380 | Directory Traversal vulnerability in Twilight Utilities Twilight Utilities web Server 2.0.0.0 Directory traversal vulnerability in postfile.exe for Twilight Utilities Web Server 2.0.0.0 allows remote attackers to write arbitrary files via a .. | 5.0 |
| 2004-12-31 | CVE-2004-2377 | Denial Of Service vulnerability in Alcatel Omniswitch and Omniswitch 7800 Alcatel OmniSwitch 7000 and 7800 allows remote attackers to cause a denial of service (reboot) via certain network scans, as demonstrated using a Nessus port scan of ports 1 through 1024 with safe-checks disabled. | 5.0 |
| 2004-12-31 | CVE-2004-2376 | Denial-Of-Service vulnerability in Twilight Utilities Twilight Utilities web Server 2.0.0.0 Buffer overflow in postfile.exe for Twilight Utilities Web Server 2.0.0.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a URL request with a long attfile attribute. | 7.5 |
| 2004-12-31 | CVE-2004-2375 | Remote Buffer Overflow vulnerability in 1ST Class Internet Solutions 1ST Class Mail Server 4.0 Buffer overflow in the POP3 server in 1st Class Mail Server 4.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an APOP USER command with a long second parameter (digest). | 7.5 |
| 2004-12-31 | CVE-2004-2374 | Path Disclosure vulnerability in Working Resources Inc. Badblue 2.40 BadBlue 2.4 allows remote attackers to obtain the location of the server installation path via a request for phptest.php, which includes the pathname in the source of the resulting HTML. | 5.0 |
| 2004-12-31 | CVE-2004-2373 | Unspecified vulnerability in AOL Instant Messenger The Buddy icon file for AOL Instant Messenger (AIM) 4.3 through 5.5 is created in a predictable location, which may allow remote attackers to use a shell: URI to exploit other vulnerabilities that involve predictable locations. | 7.5 |
| 2004-12-31 | CVE-2004-2372 | Local Security vulnerability in Bochs Buffer overflow in Bochs before 2.1.1, if installed setuid, allows local users to execute arbitrary code via a long HOME environment variable, which is used if the .bochsrc, bochsrc, and bochsrc.txt cannot be found in a known path. | 7.2 |
| 2004-12-31 | CVE-2004-2371 | Remote Denial Of Service vulnerability in Redstorm Desert Siege, Ghost Recon and the SUM of ALL Fears Multiple Red Storm web-based games, including Ghost Recon 1.4 and earlier, Desert Siege, and The Sum of all Fears 1.1.1.0 and earlier, do not properly check return values from certain functions, which allows remote attackers to cause a denial of service (hang) via packets that contain text strings with incorrect size values. | 5.0 |
| 2004-12-31 | CVE-2004-2370 | Remote Security vulnerability in Cerulean Studios Trillian and Trillian PRO Stack-based buffer overflow in Trillian 0.71 through 0.74f and Trillian Pro 1.0 through 2.01 allows remote attackers to execute arbitrary code via a Yahoo Messenger packet with a long key name. | 7.5 |