Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-07-19 | CVE-2005-2314 | Privilege Escalation vulnerability in PHPsFTPd Inc.Login.PHP inc.login.php in PHPsFTPd 0.2 through 0.4 allows remote attackers to obtain the administrator's username and password by setting the do_login parameter and performing an edit action using user.php, which causes the login check to be bypassed and leaks the password in the response. | 7.5 |
2005-07-19 | CVE-2005-2313 | Local Information Disclosure vulnerability in Check Point SecuRemote NG Check Point SecuRemote NG with Application Intelligence R54 allows attackers to obtain credentials and gain privileges via unknown attack vectors. | 7.2 |
2005-07-19 | CVE-2005-2312 | Unspecified vulnerability in Realnode Emilda management.php in Realnode Emilda 1.2.2 and earlier allows remote attackers to perform actions as other users by modifying the user_id parameter. | 7.5 |
2005-07-19 | CVE-2005-2308 | Denial Of Service vulnerability in Microsoft IE 6.0 The JPEG decoder in Microsoft Internet Explorer allows remote attackers to cause a denial of service (CPU consumption or crash) and possibly execute arbitrary code via certain crafted JPEG images, as demonstrated using (1) mov_fencepost.jpg, (2) cmp_fencepost.jpg, (3) oom_dos.jpg, or (4) random.jpg. | 7.5 |
2005-07-19 | CVE-2005-2305 | Remote Denial of Service vulnerability in DG Remote Control Server 1.6.2 DG Remote Control Server 1.6.2 allows remote attackers to cause a denial of service (crash or CPU consumption) and possibly execute arbitrary code via a long message to TCP port 1071 or 1073, possibly due to a buffer overflow. | 7.5 |
2005-07-18 | CVE-2005-2284 | Unspecified vulnerability in ESI products Webeoc Multiple SQL injection vulnerabilities in WebEOC before 6.0.2 allow remote attackers to modify SQL statements via unknown attack vectors. | 7.5 |
2005-07-18 | CVE-2005-2281 | Inadequate Encryption Strength vulnerability in Juvare Webeoc WebEOC before 6.0.2 uses a weak encryption scheme for passwords, which makes it easier for attackers to crack passwords. | 7.5 |
2005-07-18 | CVE-2005-2278 | Unspecified vulnerability in Mailenable Professional 1.54 Stack-based buffer overflow in the IMAP daemon (imapd) in MailEnable Professional 1.54 allows remote authenticated users to execute arbitrary code via the status command with a long mailbox name. | 7.2 |
2005-07-18 | CVE-2005-1175 | Remote Single Byte Heap Overflow vulnerability in MIT Kerberos 5 Key Distribution Center Heap-based buffer overflow in the Key Distribution Center (KDC) in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a certain valid TCP or UDP request. | 7.5 |
2005-07-13 | CVE-2005-2270 | Unspecified vulnerability in Mozilla Firefox and Mozilla Firefox before 1.0.5 and Mozilla before 1.7.9 does not properly clone base objects, which allows remote attackers to execute arbitrary code by navigating the prototype chain to reach a privileged object. | 7.5 |