Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-12-31 | CVE-2004-2631 | Input Validation vulnerability in phpMyAdmin Eval injection vulnerability in left.php in phpMyAdmin 2.5.1 up to 2.5.7, when LeftFrameLight is FALSE, allows remote attackers to execute arbitrary PHP code via a crafted table name. | 7.5 |
| 2004-12-31 | CVE-2004-2630 | Remote Command Execution vulnerability in phpMyAdmin The MIME transformation system (transformations/text_plain__external.inc.php) in phpMyAdmin 2.5.0 up to 2.6.0-pl1 allows remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors. | 7.5 |
| 2004-12-31 | CVE-2004-2629 | Denial-Of-Service vulnerability in Conference Server Multiple vulnerabilities in the H.323 protocol implementation for First Virtual Communications Click to Meet Express (when used with H.323 conferencing endpoints), Click to Meet Premier, Conference Server, and V-Gate allow remote attackers to cause a denial of service, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol. | 7.8 |
| 2004-12-31 | CVE-2004-2619 | Unspecified vulnerability in Paul L Daniels Ripmime ripMIME 1.3.2.3 and earlier allows remote attackers to bypass e-mail protection via a base64 MIME encoded attachment containing invalid characters that are not properly extracted. | 7.5 |
| 2004-12-31 | CVE-2004-2614 | Buffer Overflow vulnerability in Xuebrothers Myweb 3.3 Buffer overflow in MyWeb 3.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request. | 7.5 |
| 2004-12-31 | CVE-2004-2612 | Authentication Bypass vulnerability in BNC 2.9.0 BNC 2.9.0 only grants access when an incorrect password is provided, which allows remote attackers to use the functionality intended for authorized users. | 7.5 |
| 2004-12-31 | CVE-2004-2606 | Remote Administration Service Weakness in Linksys WRT54G Router World Accessible The Web interface in Linksys WRT54G 2.02.7 and BEFSR41 version 3, with the firewall disabled, allows remote attackers to attempt to login to an administration web page, even when the configuration specifies that remote administration is disabled. | 7.5 |
| 2004-12-31 | CVE-2004-2593 | Remote vulnerability in ID Software Quake II Server 3.20/3.21 Buffer overflow in command-packet processing of Quake II server before R1Q2, as used in multiple products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a packet with a long cmd_args buffer. | 7.5 |
| 2004-12-31 | CVE-2004-2583 | Denial-Of-Service vulnerability in Smartertools Smartermail 1.6.1511/1.6.1529 SMTP service in SmarterTools SmarterMail 1.6.1511 and 1.6.1529 allows remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous open connections to TCP port 25. | 7.8 |
| 2004-12-31 | CVE-2004-2579 | Remote vulnerability in Novell Ichain 2.3 ACLCHECK module in Novell iChain 2.3 allows attackers to bypass access control rules of an unspecified component via an unspecified attack vector involving a string that contains escape sequences represented with "overlong UTF-8 encoding." | 7.5 |