Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-11-23 | CVE-2004-0348 | Multiple vulnerability in Spidersales 2.0 SQL injection vulnerability in viewCart.asp in SpiderSales shopping cart software allows remote attackers to execute arbitrary SQL via the userId parameter. | 10.0 |
| 2004-11-23 | CVE-2004-0345 | Remote Buffer Overflow vulnerability in Volition RED Faction 1.0/1.1/1.20 Buffer overflow in Red Faction client 1.20 and earlier allows remote servers to execute arbitrary code via a long server name. | 10.0 |
| 2004-11-23 | CVE-2004-0343 | Input Validation vulnerability in Yabb 1.5.4/1.5.5/1.5.5B Multiple SQL injection vulnerabilities in YaBB SE 1.5.4 through 1.5.5b allow remote attackers to execute arbitrary SQL via (1) the msg parameter in ModifyMessage.php or (2) the postid parameter in ModifyMessage.php. | 10.0 |
| 2004-11-23 | CVE-2004-0338 | SQL Injection vulnerability in Invision Power Board Search.PHP st SQL injection vulnerability in search.php for Invision Board Forum allows remote attackers to execute arbitrary SQL queries via the st parameter. | 10.0 |
| 2004-11-23 | CVE-2004-0333 | Buffer Overrun vulnerability in UUDeview MIME Archive Buffer overflow in the UUDeview package, as used in WinZip 6.2 through WinZip 8.1 SR-1, and possibly other packages, allows remote attackers to execute arbitrary code via a MIME archive with certain long MIME parameters. | 10.0 |
| 2004-11-23 | CVE-2004-0332 | Authentication Bypass vulnerability in eXtremail Extremail 1.5.9 does not check passwords correctly when they are all digits or begin with a digit, which allows remote attackers to gain privileges. | 10.0 |
| 2004-11-23 | CVE-2004-0330 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Solarwinds Serv-U File Server Buffer overflow in Serv-U ftp before 5.0.0.4 allows remote authenticated users to execute arbitrary code via a long time zone argument to the MDTM command. | 10.0 |
| 2004-11-23 | CVE-2004-0326 | Buffer Overrun vulnerability in Proxy-Pro Professional Gatekeeper 4.7 Buffer overflow in the web proxy for GateKeeper Pro 4.7 allows remote attackers to execute arbitrary code via a long GET request. | 10.0 |
| 2004-11-23 | CVE-2004-0318 | Privilege Escalation vulnerability in Platform Load Sharing Facility EAuth Load Sharing Facility (LSF) 4.x, 5.x, and 6.x uses the LSF_EAUTH_UID environment variable, if it exists, instead of the real UID of the user, which could allow remote attackers within the local cluster to gain privileges. | 10.0 |
| 2004-11-23 | CVE-2004-0317 | Buffer Overflow vulnerability in Platform Load Sharing Facility EAuth Component Buffer overflow in eauth in Load Sharing Facility 4.x, 5.x, and 6.x allows local users or remote attackers within the LSF cluster to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a long LSF_From_PC parameter. | 10.0 |