Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-12-16 | CVE-2005-4296 | Remote Denial of Service vulnerability in AppServ Open Project AppServ Open Project 2.5.3 allows remote attackers to cause a denial of service via a large HTTP request. | 7.8 |
| 2005-12-16 | CVE-2005-4287 | Remote File Include vulnerability in MarmaraWeb E-Commerce PHP remote file include vulnerability in MarmaraWeb E-commerce allows remote attackers to execute arbitrary code via the page parameter to index.php. | 7.5 |
| 2005-12-16 | CVE-2005-4286 | SQL-Injection vulnerability in PhpLogCon Unspecified vulnerability in PhpLogCon before 1.2.2 allows remote attackers to use arbitrary profiles via unknown vectors involving "'smart' values for userid and password," probably involving an SQL injection vulnerability in the (1) pass and (2) usr parameters in submit.php. | 7.5 |
| 2005-12-16 | CVE-2005-4280 | Packages Insecure RUNPATH vulnerability in Gentoo Linux Untrusted search path vulnerability in CMake before 2.2.0-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build directory, which is part of the RUNPATH. | 7.2 |
| 2005-12-16 | CVE-2005-4279 | Packages Insecure RUNPATH vulnerability in Gentoo Qt-Unixodbc 3.3.3 Untrusted search path vulnerability in Qt-UnixODBC before 3.3.4-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build directory, which is part of the RUNPATH. | 7.2 |
| 2005-12-16 | CVE-2005-4278 | Packages Insecure RUNPATH vulnerability in Gentoo Linux Untrusted search path vulnerability in Perl before 5.8.7-r1 on Gentoo Linux allows local users in the portage group to gain privileges via a malicious shared object in the Portage temporary build directory, which is part of the RUNPATH. | 7.2 |
| 2005-12-16 | CVE-2005-4276 | Denial Of Service vulnerability in Westell Versalink 327W Westell Versalink 327W allows remote attackers to cause a denial of service (device crash) via an IP packet with the same source and destination IPs and ports, and with the SYN flag set (aka LanD). | 7.8 |
| 2005-12-16 | CVE-2005-4275 | Denial Of Service vulnerability in Scientific Atlanta DPX2100 Cable Modem LanD Packet Scientific Atlanta DPX2100 Cable Modem allows remote attackers to cause a denial of service (device crash) via an IP packet with the same source and destination IPs and ports, and with the SYN flag set (aka LanD), as demonstrated using hping2. | 7.8 |
| 2005-12-16 | CVE-2005-3253 | Wireless Access Points (AP) for (1) Avaya AP-3 through AP-6 2.5 to 2.5.4, and AP-7/AP-8 2.5 and other versions before 3.1, and (2) Proxim AP-600 and AP-2000 before 2.5.5, and Proxim AP-700 and AP-4000 after 2.4.11 and before 3.1, use a static WEP key of "12345", which allows remote attackers to bypass authentication. | 7.5 |
| 2005-12-15 | CVE-2005-4271 | Local Buffer Overflow vulnerability in IBM AIX 5.3/5.3L Buffer overflow in the malloc debug system in IBM AIX 5.3 allows local users to execute arbitrary code. | 7.2 |