Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-08-23 | CVE-2005-2651 | Unspecified vulnerability in PHPoutsourcing Zorum 3.5 gorum/prod.php in Zorum 3.5 allows remote attackers to execute arbitrary code via shell metacharacters in the argv parameter. | 7.5 |
2005-08-23 | CVE-2005-2645 | Security Bypass vulnerability in Document Centre Unknown vulnerability in Xerox MicroServer Web Server in Document Centre 220 through 265, 332 and 340, 420 through 490, and 535 through 555 allows remote attackers to bypass authentication. | 7.5 |
2005-08-23 | CVE-2005-2644 | Buffer Overflow vulnerability in Isemarket JaguarControl ActiveX Control Buffer overflow in JaguarEditControl.dll in Isemarket JaguarControl allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long Jtext field. | 7.5 |
2005-08-23 | CVE-2005-2642 | Buffer Overflow vulnerability in Mutt 1.5.10 Buffer overflow in the mutt_decode_xbit function in Handler.c for Mutt 1.5.10 allows remote attackers to execute arbitrary code, possibly due to interactions with libiconv or gettext. | 7.5 |
2005-08-23 | CVE-2005-2641 | Authentication Bypass vulnerability in PADL Software PAM_LDAP Unknown vulnerability in pam_ldap before 180 does not properly handle a new password policy control, which could allow attackers to gain privileges. | 7.5 |
2005-08-23 | CVE-2005-2639 | Buffer Overflow vulnerability in Valusoft Chris Moneymakers World Poker Championship 1.0 Buffer overflow in Chris Moneymaker's World Poker Championship 1.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long nickname. | 7.5 |
2005-08-23 | CVE-2005-2637 | SQL Injection vulnerability in PHPFreeNews SearchResults.PHP Multiple SQL injection vulnerabilities in PHPFreeNews 1.40 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) Match or (2) CatID parameter to SearchResults.php, or (3) the password to AccessControl.php. | 7.5 |
2005-08-23 | CVE-2005-2636 | SQL Injection vulnerability in phpPgAds Lib-View-Direct.INC.PHP SQL injection vulnerability in lib-view-direct.inc.php in phpAdsNew and phpPgAds before 2.0.6 allows remote attackers to execute arbitrary SQL commands via the clientid parameter. | 7.5 |
2005-08-23 | CVE-2005-2634 | Buffer Overflow vulnerability in Winftp Server Winftp Server 1.6.8 Buffer overflow in the Log-SCR function in the "Log to Screen" feature in WinFtp Server 1.6.8 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long request. | 7.5 |
2005-08-23 | CVE-2005-2633 | Remote File Include vulnerability in PHPTB Topic Board Multiple PHP file inclusion vulnerabilities in (1) admin_o.php, (2) board_o.php, (3) dev_o.php, (4) file_o.php or (5) tech_o.php in PHPTB Topic Board 2.0 and earlier allow remote attackers to execute arbitrary PHP code via the absolutepath parameter. | 7.5 |