Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-12-31 | CVE-2004-2048 | Multiple vulnerability in eSeSIX Thintune Thin Client Devices radmin in eSeSIX Thintune thin clients running firmware 2.4.38 and earlier starts a process port 25072 that can be accessed with a default "jstwo" password, which allows remote attackers to gain access. | 10.0 |
| 2004-12-31 | CVE-2004-1903 | Buffer Overflow vulnerability in Blaxxun Contact 3D 7.0 Buffer overflow in blaxxun 3D 7.0 allows remote attackers to execute arbitrary code via a long URL property inside an object tag. | 10.0 |
| 2004-12-31 | CVE-2004-1898 | Remote vulnerability in Multiple Monit Administration Interface Stack-based buffer overflow in the administration interface in Monit 1.4 through 4.2 allows remote attackers to execute arbitrary code via a long username. | 10.0 |
| 2004-12-31 | CVE-2004-1812 | Unspecified vulnerability in Broadcom Unicenter TNG 2.4/2.4.2 Multiple stack-based buffer overflows in Agent Common Services (1) cam.exe and (2) awservices.exe in Unicenter TNG 2.4 allow remote attackers to execute arbitrary code. | 10.0 |
| 2004-12-31 | CVE-2004-1763 | Buffer Overrun vulnerability in HAHTsite Scenario Server Project File Name Buffer overflow in hsrun.exe for HAHTsite Scenario Server 5.1 Patch 06 (build 91) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long project name. | 10.0 |
| 2004-12-31 | CVE-2004-1486 | Remote vulnerability in HP ServiceGuard Undisclosed Unknown vulnerability in Serviceguard A.11.13 through A.11.16.00 and Cluster Object Manager A.01.03 and B.01.04 through B.03.00.01 on HP-UX, Serviceguard A.11.14.04 and A.11.15.04 and Cluster Object Manager B.02.01.02 and B.02.02.02 on HP Linux, allow remote attackers to gain privileges via unknown attack vectors. | 10.0 |
| 2004-12-31 | CVE-2004-1483 | Multiple vulnerability in Symantec Clientless VPN Gateway 4400 5.0 Multiple unknown vulnerabilities in the ActiveX and HTML file browsers in Symantec Clientless VPN Gateway 4400 Series 5.0 have unknown attack vectors and unknown impact. | 10.0 |
| 2004-12-31 | CVE-2004-1463 | Privilege Escalation vulnerability in MoinMoin PageEditor Unknown vulnerability in the PageEditor in MoinMoin 1.2.2 and earlier, related to Access Control Lists (ACL), has unknown impact. | 10.0 |
| 2004-12-31 | CVE-2004-1441 | Cross-Site Scripting vulnerability in Board Power Board Power 2.04Pf Cross-site scripting (XSS) vulnerability in icq.cgi in Board Power 2.04PF allows remote attackers to inject arbitrary web script or HTML via the action parameter. | 9.3 |
| 2004-12-31 | CVE-2004-1402 | SQL Injection vulnerability in IWebNegar SQL injection vulnerability in iWebNegar allows remote attackers to execute arbitrary SQL commands via (1) the string parameter for index.php, (2) comments.php, or (3) the administrator login page. | 10.0 |