Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-12-31 | CVE-2004-2539 | Remote Undisclosed Denial Of Service vulnerability in Network Appliance Data Ontap and Netcache Unknown vulnerability in Network Appliance NetCache 5.2 and Data ONTAP 6.0 allows remote attackers to cause a denial of service (panic and reboot) and possibly other impacts via unknown attack vectors, possibly related to unspecified worms, as identified by bug ID | 7.8 |
| 2004-12-31 | CVE-2004-2536 | Local IO Access Inheritance vulnerability in Linux Kernel The exit_thread function (process.c) in Linux kernel 2.6 through 2.6.5 does not invalidate the per-TSS io_bitmap pointers if a process obtains IO access permissions from the ioperm function but does not drop those permissions when it exits, which allows other processes to access the per-TSS pointers, access restricted memory locations, and possibly gain privileges. | 7.5 |
| 2004-12-31 | CVE-2004-2534 | Denial Of Service vulnerability in Fastream NetFile FTP/Web Server HEAD Request Fastream NETFile Server 7.1.2 does not properly handle keep-alive connection timeouts and does not close the connection after a HEAD request, which allows remote attackers to perform a denial of service (connection consumption) by sending a large number HTTP HEAD requests. | 7.8 |
| 2004-12-31 | CVE-2004-2531 | Denial Of Service vulnerability in GNU Gnutls 1.0.16 X.509 Certificate Signature Verification in Gnu transport layer security library (GnuTLS) 1.0.16 allows remote attackers to cause a denial of service (CPU consumption) via certificates containing long chains and signed with large RSA keys. | 7.8 |
| 2004-12-31 | CVE-2004-2515 | Local Format String vulnerability in VMWare Workstation 4.5.2Build8848 Format string vulnerability in VMware Workstation 4.5.2 build-8848, if running with elevated privileges, might allow local users to execute arbitrary code via format string specifiers in command line arguments. | 7.2 |
| 2004-12-31 | CVE-2004-2504 | Local Privilege Escalation vulnerability in Alt-N MDaemon The GUI in Alt-N Technologies MDaemon 7.2 and earlier, including 6.8, executes child processes such as NOTEPAD.EXE with SYSTEM privileges when users create new files, which allows local users with physical access to gain privileges. | 7.2 |
| 2004-12-31 | CVE-2004-2501 | Remote Pre-Authentication Buffer Overflow vulnerability in MailEnable IMAP Service Buffer overflow in the IMAP service of MailEnable Professional Edition 1.52 and Enterprise Edition 1.01 allows remote attackers to execute arbitrary code via (1) a long command string or (2) a long string to the MEIMAP service and then terminating the connection. | 7.5 |
| 2004-12-31 | CVE-2004-2499 | Denial Of Service vulnerability in Hitachi Web Page Generator Unspecified vulnerability in Hitachi Web Page Generator and Web Page Generator Enterprise 4.01 and earlier allows remote attackers to cause a denial of service via unknown attack vectors when a web site is "improperly accessed." | 7.8 |
| 2004-12-31 | CVE-2004-2496 | Remote Denial Of Service vulnerability in OpenText FirstClass HTTP Daemon Search Function The HTTP daemon in OpenText FirstClass 7.1 and 8.0 allows remote attackers to cause a denial of service (service availability loss) via a large number of POST requests to /Search. | 7.8 |
| 2004-12-31 | CVE-2004-2495 | Multiple vulnerability in Code-Crafters Ability Mail Server 1.18 The (1) Webmail, (2) admin, and (3) SMTP services in Ability Mail Server 1.18 allow remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous connections to the service. | 7.8 |