Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-10-05 | CVE-2005-3145 | Denial-Of-Service vulnerability in Standards Based Linux Instrumentation Sblim-Sfcb 0.9.1 httpAdapter.c in sblim-sfcb before 0.9.2 allows remote attackers to cause a denial of service (resource consumption) by connecting to sblim-sfcb but not sending any data. | 5.0 |
| 2005-10-05 | CVE-2005-3144 | Denial Of Service vulnerability in Standards Based Linux Instrumentation Sblim-Sfcb 0.9.1 httpAdapter.c in sblim-sfcb before 0.9.2 allows remote attackers to cause a denial of service via long HTTP headers. | 5.0 |
| 2005-10-05 | CVE-2005-3143 | Remote IMAP Denial of Service vulnerability in 4D WebStar Unspecified vulnerability in the Mailbox Server for 4D WebStar before 5.3.5 allows attackers to cause a denial of service (crash) via IMAP clients on Mac OS X 10.4 Mail 2. | 5.0 |
| 2005-10-05 | CVE-2005-3141 | Denial-Of-Service vulnerability in Cerulean Studios Trillian 3.0 Cerulean Studios Trillian 3.0 allows remote attackers to cause a denial of service (crash) via a reverse direct connection from a different client, as demonstrated using LICQ. | 5.0 |
| 2005-10-05 | CVE-2005-3139 | Information Disclosure vulnerability in Bugzilla User-Matching Bugzilla 2.19.1 through 2.20rc2 and 2.21, with user matching turned on in substring mode, allows attackers to list all users whose names match an arbitrary substring, even when the usevisibilitygroups parameter is set. | 5.0 |
| 2005-10-05 | CVE-2005-3138 | Information Disclosure vulnerability in Bugzilla config.cgi Bugzilla 2.18rc1 through 2.18.3, 2.19 through 2.20rc2, and 2.21 allows remote attackers to obtain sensitive information such as the list of installed products via the config.cgi file, which is accessible even when the requirelogin parameter is set. | 5.0 |
| 2005-10-05 | CVE-2005-2966 | Remote Arbitrary Code Execution vulnerability in DIA 0.91/0.92.2/0.93 The Python SVG import plugin (diasvg_import.py) for DIA 0.94 and earlier allows user-assisted attackers to execute arbitrary commands via a crafted SVG file. | 5.1 |
| 2005-10-04 | CVE-2005-3136 | Directory Traversal vulnerability in Virtools Web Player Directory traversal vulnerability in Virtools Web Player 3.0.0.100 and earlier allows remote attackers to overwrite arbitrary files via a .. | 5.0 |
| 2005-10-04 | CVE-2005-3133 | Directory Traversal vulnerability in IceWarp Web Mail Multiple directory traversal vulnerabilities in MERAK Mail Server 8.2.4r with Icewarp Web Mail 5.5.1, and possibly earlier versions, allows remote attackers to (1) delete arbitrary files or directories via a relative path to the id parameter to logout.html or (2) include arbitrary PHP files or other files via the helpid parameter to help.html. | 5.0 |
| 2005-10-04 | CVE-2005-3132 | Information Disclosure vulnerability in Web Mail MERAK Mail Server 8.2.4r with Icewarp Web Mail 5.5.1, and possibly earlier versions, allows remote attackers to obtain sensitive information via a direct request to bwlist_inc.html, which reveals the path in an error message. | 5.0 |