Vulnerabilities > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-05-02 | CVE-2005-1167 | Information Disclosure vulnerability in Jukebox Musicmatch 10.00.2047 and earlier store log files in the Program Files directory instead of the user profile, which may allow local users to obtain sensitive information. | 2.1 |
2005-05-02 | CVE-2005-1166 | Unspecified vulnerability in Dameware Development Dameware NT Utilities and Miniremote Control The DNTUS26 process in Dameware NT Utilities and the DWRCS process in MiniRemote Control 4.9 and earlier stores the username and password in cleartext in memory, which could allow attackers to obtain sensitive information. | 2.1 |
2005-05-02 | CVE-2005-1129 | Information Disclosure vulnerability in EGroupWare EMail Attachment eGroupWare 1.0.6 and earlier, when an e-mail is composed with an attachment but not sent, will send that attachment in the next e-mail, which may cause sensitive information to be sent to the wrong recipient. | 2.1 |
2005-05-02 | CVE-2005-1119 | Unspecified vulnerability in Todd Miller Sudo Sudo VISudo 1.6.8 and earlier allows local users to corrupt arbitrary files via a symlink attack on temporary files. | 2.1 |
2005-05-02 | CVE-2005-1098 | Information Disclosure vulnerability in Runtime Software Getdataback for Ntfs 2.31 GetDataBack for NTFS 2.31 stores the username and license key in plaintext in the Name value in the License registry key, which may allow local users to obtain sensitive information. | 2.1 |
2005-05-02 | CVE-2005-1066 | Unspecified vulnerability in University of Washington Pine 4.62 Race condition in rpdump in Pine 4.62 and earlier allows local users to overwrite arbitrary files via a symlink attack. | 1.2 |
2005-05-02 | CVE-2005-1065 | Unspecified vulnerability in Novell Linux Desktop 9 tetex in Novell Linux Desktop 9 allows local users to determine the existence of arbitrary files via a symlink attack in the /var/cache/fonts directory. | 2.1 |
2005-05-02 | CVE-2005-1059 | Remote Authentication Bypass vulnerability in Linksys WET11 Password Update Linksys WET11 1.5.4 allows remote attackers to change the password without providing the original password via the data parameter to changepw.html. | 2.1 |
2005-05-02 | CVE-2005-1049 | Remote Cross-Site Scripting vulnerability in Postnuke Software Foundation Postnuke 0.760Rc3 Multiple cross-site scripting vulnerabilities in PostNuke 0.760-RC3 allow remote attackers to inject arbitrary web script or HTML via the (1) module parameter to admin.php or (2) op parameter to user.php. | 2.6 |
2005-05-02 | CVE-2005-1041 | Local Denial of Service vulnerability in Linux Kernel 2.6.20.1 The fib_seq_start function in fib_hash.c in Linux kernel allows local users to cause a denial of service (system crash) via /proc/net/route. | 2.1 |