Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-04-18 | CVE-2005-0753 | Unspecified vulnerability in CVS Buffer overflow in CVS before 1.11.20 allows remote attackers to execute arbitrary code. | 7.5 |
| 2005-04-18 | CVE-2005-0752 | Remote Script Code Execution vulnerability in Mozilla Firefox PLUGINSPAGE The Plugin Finder Service (PFS) in Firefox before 1.0.3 allows remote attackers to execute arbitrary code via a javascript: URL in the PLUGINSPAGE attribute of an EMBED tag. | 7.5 |
| 2005-04-15 | CVE-2005-1308 | Unspecified vulnerability in Inter7 Sqwebmail SqWebMail allows remote attackers to inject arbitrary web script or HTML via CRLF sequences in the redirect parameter followed by the desired script or HTML. | 7.5 |
| 2005-04-15 | CVE-2005-1142 | Remote Security vulnerability in Optical Character Recognition Utility Heap-based buffer overflow in the readpgm function in pnm.c for GOCR 0.40, when it is not using netpbm, allows remote attackers to execute arbitrary code via a P3 format PNM file with more data than implied by its width and height values. | 7.5 |
| 2005-04-14 | CVE-2005-1139 | Unspecified vulnerability in Opera Browser 8.0 Opera 8 Beta 3, when using first-generation vetted digital certificates, displays the Organizational information of an SSL certificate, which is easily spoofed and can facilitate phishing attacks. | 7.5 |
| 2005-04-14 | CVE-2005-1122 | USE of Externally-Controlled Format String vulnerability in Monkey-Project Monkey Format string vulnerability in cgi.c for Monkey daemon (monkeyd) before 0.9.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an HTTP GET request containing double-encoded format string specifiers (aka "double expansion error"). | 7.5 |
| 2005-04-14 | CVE-2005-0130 | Remote vulnerability in Berlios Konversation 0.15 Certain Perl scripts in Konversation 0.15 allow remote attackers to execute arbitrary commands via shell metacharacters in (1) channel names or (2) song names that are not properly quoted when the user runs IRC scripts. | 7.5 |
| 2005-04-14 | CVE-2005-0129 | Remote vulnerability in Berlios Konversation 0.15 The Quick Buttons feature in Konversation 0.15 allows remote attackers to execute certain IRC commands via a channel name containing "%" variables, which are recursively expanded by the Server::parseWildcards function when the Part Button is selected. | 7.5 |
| 2005-04-14 | CVE-2005-0020 | Local Buffer Overflow vulnerability in PlayMidi Buffer overflow in playmidi before 2.4 allows local users to execute arbitrary code. | 7.2 |
| 2005-04-14 | CVE-2005-0016 | Unspecified vulnerability in Gatos 0.0.5 Buffer overflow in the exported_display function in xatitv in gatos before 0.0.5 allows local users to execute arbitrary code. | 7.2 |