Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-05-06 | CVE-2004-2003 | Remote Stack Based Buffer Overflow vulnerability in DeleGate SSLway Filter Buffer overflow in the ssl_prcert function in the SSLway filter (sslway.c) for DeleGate 8.9.2 and earlier allows remote attackers to execute arbitrary code via a certificate with a long (1) subject or (2) issuer name field. | 7.5 |
2004-05-05 | CVE-2004-2000 | SQL Injection vulnerability in PHP-Nuke Modules.php SQL injection vulnerability in the Downloads module in Php-Nuke 6.x through 7.2 allows remote attackers to execute arbitrary SQL via the (1) orderby or (2) sid parameters to modules.php. | 7.5 |
2004-05-04 | CVE-2004-0383 | Unspecified vulnerability in Apple mac OS X 10.2.8/10.3.3 Unknown vulnerability in Mail for Mac OS X 10.3.3 and 10.2.8, with unknown impact, related to "the handling of HTML-formatted email." | 7.2 |
2004-05-04 | CVE-2004-0382 | Unspecified vulnerability in Apple mac OS X 10.2.8/10.3.3 Unknown vulnerability in the CUPS printing system in Mac OS X 10.3.3 and Mac OS X 10.2.8 with unknown impact, possibly related to a configuration file setting. | 7.2 |
2004-05-04 | CVE-2004-0365 | NULL Pointer Dereference vulnerability in Ethereal The dissect_attribute_value_pairs function in packet-radius.c for Ethereal 0.8.13 to 0.10.2 allows remote attackers to cause a denial of service (crash) via a malformed RADIUS packet that triggers a null dereference. | 7.5 |
2004-05-04 | CVE-2004-0174 | Improper Locking vulnerability in Apache Http Server Apache 1.4.x before 1.3.30, and 2.0.x before 2.0.49, when using multiple listening sockets on certain platforms, allows remote attackers to cause a denial of service (blocked new connections) via a "short-lived connection on a rarely-accessed listening socket." | 7.5 |
2004-04-30 | CVE-2004-1989 | Input Validation vulnerability in Coppermine Photo Gallery PHP remote file inclusion vulnerability in theme.php in Coppermine Photo Gallery 1.2.2b allows remote attackers to execute arbitrary PHP code by modifying the THEME_DIR parameter to reference a URL on a remote web server that contains user_list_info_box.inc. | 7.5 |
2004-04-30 | CVE-2004-1988 | Input Validation vulnerability in Coppermine Photo Gallery PHP remote file inclusion vulnerability in init.inc.php in Coppermine Photo Gallery 1.2.0 RC4 allows remote attackers to execute arbitrary PHP code by modifying the CPG_M_DIR to reference a URL on a remote web server that contains functions.inc.php. | 7.5 |
2004-04-30 | CVE-2004-1987 | Input Validation vulnerability in Coppermine Photo Gallery picmgmtbatch.inc.php in Coppermine Photo Gallery 1.2.2b and 1.2.0 RC4 allows remote attackers with administrative privileges to execute arbitrary commands via shell metacharacters in the (1) $CONFIG['impath'] or (2) $CONFIG['jpeg_qual'] parameters. | 7.5 |
2004-04-28 | CVE-2004-1976 | Unspecified vulnerability in SMC Networks Smc7004Vbr 1.032/1.231 SMC Barricade broadband router 7008ABR and 7004VBR enable remote administration by default, which allows remote attackers to gain access by connecting to port 1900. | 7.5 |