Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-10-20 | CVE-2004-0784 | Unspecified vulnerability in ROB Flynn Gaim The smiley theme functionality in Gaim before 0.82 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of the tar file that is dragged to the smiley selector. | 7.5 |
2004-10-20 | CVE-2004-0777 | USE of Externally-Controlled Format String vulnerability in Inter7 Courier-Imap Format string vulnerability in the auth_debug function in Courier-IMAP 1.6.0 through 2.2.1 and 3.x through 3.0.3, when login debugging (DEBUG_LOGIN) is enabled, allows remote attackers to execute arbitrary code. | 7.5 |
2004-10-20 | CVE-2004-0775 | Unspecified vulnerability in Widcomm Bluetooth Communication Software and Btstackserver Buffer overflow in WIDCOMM Bluetooth Connectivity Software, as used in products such as BTStackServer 1.3.2.7 and 1.4.2.10, Windows XP and Windows 98 with MSI Bluetooth Dongles, and HP IPAQ 5450 running WinCE 3.0, allows remote attackers to execute arbitrary code via certain service requests. | 7.5 |
2004-10-20 | CVE-2004-0768 | Unspecified vulnerability in Greg Roelofs Libpng3 libpng 1.2.5 and earlier does not properly calculate certain buffer offsets, which could allow remote attackers to execute arbitrary code via a buffer overflow attack. | 7.5 |
2004-10-20 | CVE-2004-0754 | Multiple vulnerability in Gaim Integer overflow in Gaim before 0.82 allows remote attackers to cause a denial of service and possibly execute arbitrary code via the size variable in Groupware server messages. | 7.5 |
2004-10-20 | CVE-2004-0750 | Unspecified vulnerability in Redhat Enterprise Linux and Enterprise Linux Desktop Unknown vulnerability in redhat-config-nfs before 1.0.13, when shares are exported to multiple hosts, can produce incorrect permissions and prevent the all_squash option from being applied. | 7.5 |
2004-10-20 | CVE-2004-0747 | Incorrect Calculation of Buffer Size vulnerability in Apache Http Server Buffer overflow in Apache 2.0.50 and earlier allows local users to gain apache privileges via a .htaccess file that causes the overflow during expansion of environment variables. | 7.8 |
2004-10-20 | CVE-2004-0746 | Konqueror in KDE 3.2.3 and earlier allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk and .firm.in, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session. | 7.5 |
2004-10-20 | CVE-2004-0688 | Remote Buffer Overflow vulnerability in libXpm Image Decoding Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a malformed XPM image file. | 7.5 |
2004-10-20 | CVE-2004-0162 | Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME encapsulation that uses RFC822 comment fields, which may be interpreted as other fields by mail clients. | 7.5 |