Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-12-31 | CVE-2005-4595 | Unspecified vulnerability in Gentoo Nview and Xnview Untrusted search path vulnerability (RPATH) in XnView 1.70 and NView 4.51 on Gentoo Linux allows local users to execute arbitrary code via a malicious library in the current working directory. | 7.2 |
| 2005-12-31 | CVE-2005-4594 | Buffer Overflow vulnerability in Tugzip 3.4.0.0 Stack-based buffer overflow in TUGZip 3.4.0.0 allows remote attackers to execute arbitrary code via a long filename in an ARJ archive. | 7.5 |
| 2005-12-31 | CVE-2005-4593 | Remote and Local File Include vulnerability in PHPDocumentor PHP remote file inclusion vulnerability in phpDocumentor 1.3.0 rc4 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary code via a URL in the (1) FORUM[LIB] parameter in Documentation/tests/bug-559668.php and (2) the root_dir parameter in docbuilder/file_dialog.php. | 7.5 |
| 2005-12-31 | CVE-2005-4592 | Remote Buffer Overflow vulnerability in Bogofilter Heap-based buffer overflow in bogofilter and bogolexer 0.96.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via words that are longer than the input buffer used by flex. | 7.5 |
| 2005-12-31 | CVE-2005-4591 | Remote Buffer Overflow vulnerability in Bogofilter Heap-based buffer overflow in bogofilter 0.96.2, 0.95.2, 0.94.14, 0.94.12, and other versions from 0.93.5 to 0.96.2, when using Unicode databases, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via "invalid input sequences" that lead to heap corruption when bogofilter or bogolexer converts character sets. | 7.5 |
| 2005-12-31 | CVE-2005-4418 | Unspecified vulnerability in Vserver Util-Vserver 0/0.30.209 util-vserver before 0.30.208-1 with kernel-patch-vserver before 1.9.5.5 and 2.x before 2.3 for Debian GNU/Linux sets a default policy that trusts unknown capabilities, which could allow local users to conduct unauthorized activities. | 7.5 |
| 2005-12-31 | CVE-2005-4085 | Remote Host Header Buffer Overflow vulnerability in Bluecoat Proxyav and Webproxy Buffer overflow in BlueCoat (a) WinProxy before 6.1a and (b) the web console access functionality in ProxyAV before 2.4.2.3 allows remote attackers to execute arbitrary code via a long Host: header. | 7.5 |
| 2005-12-31 | CVE-2005-3713 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple Quicktime Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via a GIF image file with a crafted Netscape Navigator Application Extension Block that modifies the heap in the Picture Modifier block. | 7.5 |
| 2005-12-31 | CVE-2005-3711 | Numeric Errors vulnerability in Apple Quicktime Integer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via a TIFF image file with modified (1) "strips" (StripByteCounts) or (2) "bands" (StripOffsets) values. | 7.5 |
| 2005-12-31 | CVE-2005-3710 | Numeric Errors vulnerability in Apple Quicktime Integer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via a TIFF image file with modified image height and width (ImageWidth) tags. | 7.5 |