Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2005-09-30 CVE-2005-3060 Local Buffer Overflow vulnerability in IBM AIX Getconf
Buffer overflow in getconf in IBM AIX 5.2 to 5.3 allows local users to execute arbitrary code via unknown vectors.
local
low complexity
ibm
7.2
7.2
2005-09-30 CVE-2005-3114 Buffer Overflow vulnerability in NateOn Messenger Arbitrary File Download And
Buffer overflow in the ActiveX control for NateOn Messenger (NateonDownloadManager.ocx) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long third argument to the GotNate.Excute method.
network
low complexity
nateon
7.5
7.5
2005-09-30 CVE-2005-3113 Buffer Overflow vulnerability in NateOn Messenger Arbitrary File Download And
The ActiveX control for NateOn Messenger (NateonDownloadManager.ocx) allows remote attackers to download and execute arbitrary programs by setting the arguments to the GotNate.Excute method.
network
low complexity
nateon
7.5
7.5
2005-09-28 CVE-2005-3096 Scripts Arbitrary Remote Command Execution vulnerability in Alkalay.Net
Avi Alkalay nslookup.cgi program, dated 16 June 2002, allows remote attackers to execute arbitrary commands via shell metacharacters in the query parameter.
network
low complexity
avi-alkalay
7.5
7.5
2005-09-28 CVE-2005-3095 Scripts Arbitrary Remote Command Execution vulnerability in Alkalay.Net
Avi Alkalay notify program, dated 19 Aug 2001, allows remote attackers to execute arbitrary commands via shell metacharacters in the from parameter.
network
low complexity
avi-alkalay
7.5
7.5
2005-09-28 CVE-2005-3094 Scripts Arbitrary Remote Command Execution vulnerability in Alkalay.Net
Avi Alkalay man-cgi script allows remote attackers to execute arbitrary code via shell metacharacters in the topic parameter.
network
low complexity
avi-alkalay
7.5
7.5
2005-09-28 CVE-2005-3092 Heap Overflow vulnerability in Image-Line Software FL Studio 5.0.1
Heap-based buffer overflow in Image-Line Software FL Studio 5.0.1 allows remote attackers to execute arbitrary code via a .flp file that contains a long path to a (1) .mid or (2) .wav file.
network
low complexity
image-line-software
7.5
7.5
2005-09-28 CVE-2005-2964 Buffer Overflow vulnerability in AbiWord RTF File Processing
Stack-based buffer overflow in AbiWord before 2.2.10 allows attackers to execute arbitrary code via the RTF import mechanism.
network
low complexity
abisource
7.5
7.5
2005-09-27 CVE-2005-3082 SQL Injection vulnerability in SEO-Board
SQL injection vulnerability in admin.php in SEO-Board 1.0.2 allows remote attackers to execute arbitrary SQL commands via the user_pass_sha1 value in a cookie.
network
low complexity
seo-board
7.5
7.5
2005-09-27 CVE-2005-3076 SQL Injection vulnerability in Simplog 0.9.1
Simplog 0.9.1 might allow remote attackers to execute arbitrary SQL commands or trigger SQL error messages via invalid (1) pid, (2) blogid, (3) cid, or (4) m parameters to archive.php, or the (5) blogid parameter to blogadmin.php.
network
low complexity
simplog
7.5
7.5