Vulnerabilities > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-02-11 | CVE-2004-2083 | Unspecified vulnerability in Opera Browser Opera Web Browser 7.0 through 7.23 allows remote attackers to trick users into executing a malicious file by embedding a CLSID in the file name, which causes the malicious file to appear as a trusted file type, aka "File Download Extension Spoofing." | 2.6 |
2004-02-03 | CVE-2003-0175 | Local Denial Of Service vulnerability in SGI IRIX PIOCSWATCH SGI IRIX before 6.5.21 allows local users to cause a denial of service (kernel panic) via a certain call to the PIOCSWATCH ioctl. | 2.1 |
2004-02-03 | CVE-2002-0712 | Authorization Circumvention vulnerability in Entrust Authority Security Manager 5.0/6.0 Entrust Authority Security Manager (EASM) 6.0 does not properly require multiple master users to change the password of a master user, which could allow a master user to perform operations that require multiple authorizations. | 2.1 |
2004-01-10 | CVE-2004-1000 | Unspecified vulnerability in Debian Lintian 1.20.17.1 lintian 1.23 and earlier removes the working directory even if it was not created by lintian, which may allow local users to delete arbitrary files or directories via a symlink attack. | 2.1 |
2003-12-31 | CVE-2003-1476 | Unspecified vulnerability in Cerberus FTP Server 2.1 Cerberus FTP Server 2.1 stores usernames and passwords in plaintext, which could allow local users to gain access. | 2.1 |
2003-12-31 | CVE-2003-1463 | Improper Input Validation vulnerability in Alt-N Webadmin 2.0.0/2.0.1/2.0.2 Absolute path traversal vulnerability in Alt-N Technologies WebAdmin 2.0.0 through 2.0.2 allows remote attackers with administrator privileges to (1) determine the installation path by reading the contents of the Name parameter in a link, and (2) read arbitrary files via an absolute path in the Name parameter. | 3.5 |
2003-12-31 | CVE-2003-1460 | Permissions, Privileges, and Access Controls vulnerability in Ralf Hoffmann Worker Filemanager Worker Filemanager 1.0 through 2.7 sets the permissions on the destination directory to world-readable and executable while copying data, which could allow local users to obtain sensitive information. | 3.6 |
2003-12-31 | CVE-2003-1452 | Configuration vulnerability in Qualcomm Qpopper Untrusted search path vulnerability in Qualcomm qpopper 4.0 through 4.05 allows local users to execute arbitrary code by modifying the PATH environment variable to reference a malicious smbpasswd program. | 3.6 |
2003-12-31 | CVE-2003-1447 | Cryptographic Issues vulnerability in IBM Websphere Application Server 4.0.4 IBM WebSphere Advanced Server Edition 4.0.4 uses a weak encryption algorithm (XOR and base64 encoding), which allows local users to decrypt passwords when the configuration file is exported to XML. | 1.9 |
2003-12-31 | CVE-2003-1437 | Unspecified vulnerability in BEA Weblogic Server 7.0/7.0.0.1 BEA WebLogic Express and WebLogic Server 7.0 and 7.0.0.1, stores passwords in plaintext when a keystore is used to store a private key or trust certificate authorities, which allows local users to gain access. | 2.1 |