Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-05-16 | CVE-2006-2407 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products Stack-based buffer overflow in (1) WeOnlyDo wodSSHServer ActiveX Component 1.2.7 and 1.3.3 DEMO, as used in other products including (2) FreeSSHd 1.0.9 and (3) freeFTPd 1.0.10, allows remote attackers to execute arbitrary code via a long key exchange algorithm string. | 7.5 |
| 2006-05-16 | CVE-2006-2403 | Remote Buffer Overflow vulnerability in FileZilla Client Buffer overflow in FileZilla before 2.2.23 allows remote attackers to execute arbitrary commands via unknown attack vectors. | 7.5 |
| 2006-05-16 | CVE-2006-2401 | Remote Buffer Overflow and Denial of Service vulnerability in Outgun 1.0/1.0.3 The leetnet functions (leetnet/rudp.cpp) in Outgun 1.0.3 bot 2 and earlier allow remote attackers to cause a denial of service (application crash) via packets with incorrect message sizes, which triggers a buffer over-read. | 7.8 |
| 2006-05-16 | CVE-2006-2400 | Remote Buffer Overflow and Denial of Service vulnerability in Outgun 1.0/1.0.3 The leetnet functions (leetnet/rudp.cpp) in Outgun 1.0.3 bot 2 and earlier allow remote attackers to cause a denial of service (game interruption) via large packets, which cause an exception to be thrown. | 7.8 |
| 2006-05-16 | CVE-2006-2399 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Outgun 1.0/1.0.3 Stack-based buffer overflow in the ServerNetworking::incoming_client_data function in servnet.cpp in Outgun 1.0.3 bot 2 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a data_file_request command with a long (1) type or (2) name string. | 7.5 |
| 2006-05-16 | CVE-2006-2391 | Remote Buffer Overflow vulnerability in EMC Dantz Retrospect Backup Client Buffer overflow in EMC Retrospect Client 5.1 through 7.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted packet to port 497. | 7.5 |
| 2006-05-15 | CVE-2006-2369 | Improper Authentication vulnerability in VNC Realvnc 4.1.1 RealVNC 4.1.1, and other products that use RealVNC such as AdderLink IP and Cisco CallManager, allows remote attackers to bypass authentication via a request in which the client specifies an insecure security type such as "Type 1 - None", which is accepted even if it is not offered by the server, as originally demonstrated using a long password. | 7.5 |
| 2006-05-15 | CVE-2006-2361 | Remote File Include vulnerability in PAFileDB Pafiledb_Constants.PHP PHP remote file inclusion vulnerability in pafiledb_constants.php in Download Manager (mxBB pafiledb) integration, as used with phpBB, allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter. | 7.5 |
| 2006-05-15 | CVE-2006-2360 | Input Validation vulnerability in Chart Mod SQL injection vulnerability in charts.php in the Chart mod for phpBB allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
| 2006-05-12 | CVE-2006-2238 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple Quicktime Heap-based buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitrary code via a crafted BMP file that triggers the overflow in the ReadBMP function. | 7.5 |