Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-12-31 | CVE-2004-1490 | Unspecified vulnerability in Opera Browser Opera 7.54 and earlier allows remote attackers to spoof file types in the download dialog via dots and non-breaking spaces (ASCII character code 160) in the (1) Content-Disposition or (2) Content-Type headers. | 2.6 |
| 2004-12-31 | CVE-2004-1489 | Exposure of Resource to Wrong Sphere vulnerability in Opera Browser Opera 7.54 and earlier does not properly limit an applet's access to internal Java packages from Sun, which allows remote attackers to gain sensitive information, such as user names and the installation directory. | 2.6 |
| 2004-12-31 | CVE-2004-1465 | Buffer Overflow vulnerability in WinZip Multiple buffer overflows in WinZip 9.0 and earlier may allow attackers to execute arbitrary code via multiple vectors, including the command line. | 3.7 |
| 2004-12-31 | CVE-2004-1453 | Local Information Disclosure vulnerability in GNU GLibC LD_DEBUG GNU glibc 2.3.4 before 2.3.4.20040619, 2.3.3 before 2.3.3.20040420, and 2.3.2 before 2.3.2-r10 does not restrict the use of LD_DEBUG for a setuid program, which allows local users to gain sensitive information, such as the list of symbols used by the program. | 2.1 |
| 2004-12-31 | CVE-2004-1451 | Remote Security vulnerability in Browser Mozilla before 1.6 does not display the entire URL in the status bar when a link contains %00, which could allow remote attackers to trick users into clicking on unknown or untrusted sites and facilitate phishing attacks. | 2.6 |
| 2004-12-31 | CVE-2004-1449 | File-Upload vulnerability in Browser Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7 allows remote attackers to determine the location of files on a user's hard drive by obscuring a file upload control and tricking the user into dragging text into that control. | 2.6 |
| 2004-12-31 | CVE-2004-1445 | Unspecified vulnerability in Nessus A race condition in nessus-adduser in Nessus 2.0.11 and possibly earlier versions, if the TMPDIR environment variable is not set, allows local users to gain privileges. | 3.7 |
| 2004-12-31 | CVE-2004-1438 | Unspecified vulnerability in Subversion The mod_authz_svn Apache module for Subversion 1.0.4-r1 and earlier allows remote authenticated users, with write access to the repository, to read unauthorized parts of the repository via the svn copy command. | 2.1 |
| 2004-12-31 | CVE-2004-1411 | Remote Input Validation And Denial Of Service vulnerability in Gadu-Gadu Gadu-Gadu build 155 and earlier allows remote attackers to cause a denial of service (infinite loop) via a message that contains an image whose filename does not start with restricted characters. | 2.6 |
| 2004-12-31 | CVE-2004-1396 | Remote Denial Of Service vulnerability in Nullsoft Winamp 5.07 Winamp 5.07 and possibly other versions, allows remote attackers to cause a denial of service (application crash or CPU consumption) via (1) an mp4 or m4a playlist file that contains invalid tag data or (2) an invalid .nsv or .nsa file. | 2.6 |