Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-12-31 | CVE-2004-2454 | Information Disclosure vulnerability in Amsn 0.90 aMSN 0.90 for Microsoft Windows allows local users to obtain sensitive information such as hashed passwords from (1) hotlog.htm and (2) config.xml. | 2.1 |
| 2004-12-31 | CVE-2004-2440 | Local Proxy Credential Disclosure vulnerability in Proxytunnel 1.0.6/1.1.3 Unspecified vulnerability in cmdline.c in proxytunnel 1.1.3 and earlier allows local users to obtain proxy credentials (username or password) of other users. | 2.1 |
| 2004-12-31 | CVE-2004-2436 | Unspecified vulnerability in Broadcom products Computer Associates Unicenter Common Services 3.0 and earlier stores the database "SA" password in cleartext in the TndAddNspTmp.bat file, which could allow local users to gain privileges. | 2.1 |
| 2004-12-31 | CVE-2004-2419 | Directory Traversal and Authentication Bypass vulnerability in Keene Digital Media Server Keene Digital Media Server 1.0.2 allows local users to obtain usernames and passwords by reading the dmscore.db file on the local system. | 2.1 |
| 2004-12-31 | CVE-2004-2414 | Unspecified vulnerability in Novell Netware 6.5 Novell NetWare 6.5 SP 1.1, when installing or upgrading using the Overlay CDs and performing a custom installation with OpenSSH, includes sensitive password information in the (1) NIOUTPUT.TXT and (2) NI.LOG log files, which might allow local users to obtain the passwords. | 2.1 |
| 2004-12-31 | CVE-2004-2410 | Denial-Of-Service vulnerability in Samhain Unknown vulnerability in sh_hash_compdata for Samhain 1.8.9 through 2.0.1 might allow attackers to cause a denial of service (null pointer dereference). | 2.1 |
| 2004-12-31 | CVE-2004-2408 | Unspecified vulnerability in Vserver Linux-Vserver Linux VServer 1.27 and earlier, 1.3.9 and earlier, and 1.9.1 and earlier shares /proc permissions across all virtual and host servers, which allows local users with the ability to set permissions in /proc to obtain system information or cause a denial of service on other virtual servers or the host server. | 3.6 |
| 2004-12-31 | CVE-2004-2400 | Unspecified vulnerability in Winftp Server Winftp Server 1.6 WinFTP Server 1.6 stores username and password credentials in plaintext in the data\user.wfd file, which allows local users to gain access to the credentials. | 2.1 |
| 2004-12-31 | CVE-2004-2398 | Unspecified vulnerability in Netenberg Fantastico DE Luxe 2.8 Netenberg Fantastico De Luxe 2.8 uses database file names that contain the associated usernames, which allows local users to determine valid usernames and conduct brute force attacks by reading the file names from /var/lib/mysql, which is assigned world-readable permissions by cPanel 9.3.0 R5. | 2.1 |
| 2004-12-31 | CVE-2004-2395 | Unspecified vulnerability in Mandrakesoft products Memory leak in passwd 0.68 allows local users to cause a denial of service (memory consumption) via a large number of failed read attempts from the password buffer. | 2.1 |