Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-09-08 | CVE-2005-2843 | Authentication Bypass vulnerability in Helpdesk Software Hesk 0.92 Helpdesk software Hesk 0.92 does not properly verify usernames and passwords, which allows remote attackers to bypass authentication via a direct request to admin_main.php. | 7.5 |
2005-09-08 | CVE-2005-2842 | Buffer Overflow vulnerability in DameWare Mini Remote Control Buffer overflow in dwrcs.exe in DameWare Mini Remote Control before 4.9.0 allows remote attackers to execute arbitrary code via the username. | 7.5 |
2005-09-08 | CVE-2005-2841 | Denial-Of-Service vulnerability in IOS Buffer overflow in Firewall Authentication Proxy for FTP and/or Telnet Sessions for Cisco IOS 12.2ZH and 12.2ZL, 12.3 and 12.3T, and 12.4 and 12.4T allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted user authentication credentials. | 7.5 |
2005-09-07 | CVE-2005-2838 | SQL Injection vulnerability in Mywebland Mybloggie 2.1.1/2.1.2/2.1.3Beta SQL injection vulnerability in login.php in myBloggie 2.1.3-beta and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter. | 7.5 |
2005-09-07 | CVE-2005-2819 | Permissions, Privileges, and Access Controls vulnerability in Eric Fichot Downfile 1.3 DownFile 1.3 allows remote attackers to gain administrator privileges via a direct request to (1) update.php, (2) del.php, and (3) add_form.php. | 7.5 |
2005-09-07 | CVE-2005-2812 | Scripts Command Execution vulnerability in Man2Web 0.87/0.88 man2web allows remote attackers to execute arbitrary commands via -P arguments. | 7.5 |
2005-09-07 | CVE-2005-2810 | Local Security vulnerability in Urban Multiple stack-based buffer overflows in urban before 1.5.3 allow local users to gain privileges via a long HOME environment variable to (1) config.cc, (2) game.cc, (3) highscor.cc, or (4) meny.cc. | 7.2 |
2005-09-07 | CVE-2005-2808 | Security Bypass vulnerability in Frox 0.7.16/0.7.17 frox 0.7.16 and 0.7.17 does not properly parse certain Deny ACLs, which might allow attackers to bypass intended restrictions and access blocked hosts. | 7.5 |
2005-09-07 | CVE-2005-2807 | Unspecified vulnerability in Frox 0.7.18 frox 0.7.18, when running setuid root, does not properly drop privileges when reading a configuration file, which allows local users to read portions of arbitrary files via the -f command line option. | 7.2 |
2005-09-06 | CVE-2005-2763 | Unspecified vulnerability in Openttd Multiple format string vulnerabilities in OpenTTD before 0.4.0.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors. | 7.5 |