Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-11-02 | CVE-2005-3426 | Denial of Service vulnerability in Cisco 11500 Content Services Switch Malformed SSL Client Certificate Cisco CSS 11500 Content Services Switch (CSS) with SSL termination services allows remote attackers to cause a denial of service (memory corruption and device reload) via a malformed client certificate during SSL session negotiation. | 5.0 |
| 2005-11-02 | CVE-2005-3409 | Remote Denial Of Service vulnerability in Openvpn and Openvpn Access Server OpenVPN 2.x before 2.0.4, when running in TCP mode, allows remote attackers to cause a denial of service (segmentation fault) by forcing the accept function call to return an error status, which leads to a null dereference in an exception handler. | 5.0 |
| 2005-11-01 | CVE-2005-3425 | Cross-Site Scripting vulnerability in GNU gnump3d Cross-site scripting (XSS) vulnerability in GNUMP3D before 2.9.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2005-3424. network gnu | 4.3 |
| 2005-11-01 | CVE-2005-3424 | Cross-Site Scripting vulnerability in GNU gnump3d Error Page Cross-site scripting (XSS) vulnerability in GNUMP3D before 2.9.5 allows remote attackers to inject arbitrary web script or HTML via 404 error pages, a different vulnerability than CVE-2005-3425. network gnu | 4.3 |
| 2005-11-01 | CVE-2005-3422 | Cross-Site Scripting vulnerability in ASP Fast Forum Error.ASP Cross-site scripting (XSS) vulnerability in error.asp in ASP Fast Forum allows remote attackers to inject arbitrary web script or HTML via the error parameter. network 10-4-aps | 4.3 |
| 2005-11-01 | CVE-2005-3421 | Remote Information Disclosure vulnerability in Hyper Estraier 1.0/1.0.1 estcmd in Hyper Estraier 1.0.1 on Windows systems allows remote attackers to read unauthorized files via a crafted search request for a filename that contains Unicode characters. | 5.0 |
| 2005-11-01 | CVE-2005-3418 | Unspecified vulnerability in PHPbb Group PHPbb Multiple cross-site scripting (XSS) vulnerabilities in phpBB 2.0.17 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) error_msg parameter to usercp_register.php, (2) forward_page parameter to login.php, and (3) list_cat parameter to search.php, which are not initialized as variables. network phpbb-group | 4.3 |
| 2005-11-01 | CVE-2005-3413 | HTML Injection vulnerability in Eyeos Project Eyeos 0.8.4 Cross-site scripting (XSS) vulnerability in desktop.php in eyeOS 0.8.4 allows remote attackers to inject arbitrary web script or HTML via the motd parameter. network eyeos-project | 4.3 |
| 2005-11-01 | CVE-2005-3412 | HTML Injection vulnerability in Elite Forum Elite Forum 1.0.0.0 Cross-site scripting (XSS) vulnerability in Elite Forum 1.0.0.0 allows remote attackers to inject arbitrary web script or HTML via a Post Reply to a topic, in which the reply contains a javascript: URL in an <img> tag. network elite-forum | 4.3 |
| 2005-11-01 | CVE-2005-3411 | Cross-Site Scripting vulnerability in Snitz Communications Snitz Forums 2000 3.4.05 Cross-site scripting (XSS) vulnerability in post.asp in Snitz Forums 2000 3.4.05 allows remote attackers to inject arbitrary web script or HTML via the type parameter in a Topic method. network snitz-communications | 4.3 |