Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-12-31 | CVE-2004-1800 | Authentication Bypass vulnerability in Sysbotz SimpleData Unknown vulnerability in Sysbotz SimpleData 4.0.1 and possibly earlier versions allows remote attackers to gain access via a crafted URL and a certain cookie. | 7.5 |
| 2004-12-31 | CVE-2004-1799 | Unspecified vulnerability in Openbsd PF in certain OpenBSD versions, when stateful filtering is enabled, does not limit packets for a session to the original interface, which allows remote attackers to bypass intended packet filters via spoofed packets to other interfaces. | 7.5 |
| 2004-12-31 | CVE-2004-1796 | PHP File Include vulnerability in HotNews PHP remote file inclusion vulnerability in HotNews 0.7.2 and earlier allows remote attackers to execute arbitrary PHP code via the (1) config[header] parameter to hotnews-engine.inc.php3 or (2) config[incdir] parameter to hnmain.inc.php3. | 7.5 |
| 2004-12-31 | CVE-2004-1793 | Remote Buffer Overflow vulnerability in YaSoft Switch Off Stack-based buffer overflow in swnet.dll in YaSoft Switch Off 2.3 and earlier allows remote authenticated users to execute arbitrary code via a long message parameter in a SendMsg action to action.htm. | 7.5 |
| 2004-12-31 | CVE-2004-1791 | Remote Security vulnerability in Edimax Full Rate Adsl Router Ar6004 The web management interface in Edimax AR-6004 ADSL Routers uses a default administrator name and password, which also appear as the default login text for the management interface, which allows remote attackers to gain access. | 7.5 |
| 2004-12-31 | CVE-2004-1787 | SQL Injection vulnerability in Postnuke Software Foundation Postcalendar 4.0.0 SQL injection vulnerability in PostCalendar 4.0.0 allows remote attackers to execute arbitrary SQL commands via search queries. | 7.5 |
| 2004-12-31 | CVE-2004-1783 | Remote Directory Traversal vulnerability in Net2Soft Flash FTP Server Directory traversal vulnerability in Net2Soft Flash FTP Server 1.0 allows remote attackers to read and create arbitrary files via a /.. | 7.5 |
| 2004-12-31 | CVE-2004-1782 | Remote Command Execution vulnerability in Athena Web Registration athenareg.php in Athena Web Registration allows remote attackers to execute arbitrary commands via shell metacharacters in the pass parameter. | 7.5 |
| 2004-12-31 | CVE-2004-1773 | Buffer Overflow vulnerability in GNU Sharutils 4.2/4.2.1 Multiple buffer overflows in sharutils 4.2.1 and earlier may allow attackers to execute arbitrary code via (1) long output from wc to shar, or (2) unknown vectors in unshar. | 7.5 |
| 2004-12-31 | CVE-2004-1767 | Permissions, Privileges, and Access Controls vulnerability in SUN Solaris and Sunos The kernel in Solaris 2.6, 7, 8, and 9 allows local users to gain privileges by loading arbitrary loadable kernel modules (LKM), possibly involving the modload function. | 7.2 |