Vulnerabilities > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-09-28 | CVE-2005-3100 | Remote Denial of Service vulnerability in Astaro Security Linux 4.027 Unspecified "PPTP Remote DoS Vulnerability" in Astaro Security Linux 4.027 allows attackers to cause a denial of service. | 5.0 |
2005-09-28 | CVE-2005-3099 | Local Security vulnerability in Solaris Unspecified vulnerability in the (1) Xsun and (2) Xprt commands in Solaris 7, 8, 9, and 10 allows local users to execute arbitrary code. | 4.6 |
2005-09-28 | CVE-2005-3098 | Local Arbitrary File Modification vulnerability in Qualcomm Qpopper 4.0.8 poppassd in Qualcomm qpopper 4.0.8 allows local users to modify arbitrary files and gain privileges via the -t (trace file) command line argument. | 4.6 |
2005-09-28 | CVE-2005-3097 | Directory Traversal vulnerability in AVI Alkalay Contribute.Cgi 16Jun2002 Directory traversal vulnerability in Avi Alkalay contribute.cgi (aka contribute.pl), dated 16 Jun 2002, allows remote attackers to overwrite arbitrary files via ".." sequences in the contribdir variable. | 5.0 |
2005-09-28 | CVE-2005-3093 | Remote OBEX Denial Of Service vulnerability in Nokia 3210 And 7610 Nokia 7610 and 3210 phones allows attackers to cause a denial of service via certain characters in the filename of a Bluetooth OBEX transfer. | 5.0 |
2005-09-28 | CVE-2005-3091 | Remote vulnerability in Mantis Cross-site scripting (XSS) vulnerability in Mantis before 1.0.0rc1 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors, as identified by bug#0005751 "thraxisp". network mantis | 4.3 |
2005-09-28 | CVE-2005-3090 | Cross-Site Scripting vulnerability in Mantis Cross-site scripting (XSS) vulnerability in bug_actiongroup_page.php in Mantis 0.19.0a1 through 1.0.0a3 allows remote attackers to inject arbitrary web script or HTML via the summary of the bug, which is not quoted when view_all_bug_page.php is used to delete the bug, as identified by bug#0006002, a different vulnerability than CVE-2005-2557. network mantis | 4.3 |
2005-09-28 | CVE-2005-2557 | Input Validation vulnerability in Mantis Cross-site scripting (XSS) vulnerability in view_all_set.php in Mantis 0.19.0a1 through 1.0.0a3 allows remote attackers to inject arbitrary web script or HTML via the dir parameter, as identified by bug#0005959, and a different vulnerability than CVE-2005-3090. | 4.3 |
2005-09-27 | CVE-2005-3087 | Remote Security vulnerability in Securew2 3.0 The SecureW2 3.0 TLS implementation uses weak random number generators (rand and srand from system time) during generation of the pre-master secret (PMS), which makes it easier for attackers to guess the secret and decrypt sensitive data. | 5.0 |
2005-09-27 | CVE-2005-3086 | Local File Include vulnerability in Contentserv 3.1 Directory traversal vulnerability in admin/about.php in contentServ 3.1 allows remote attackers to read or include arbitrary files via ".." sequences in the ctsWebsite parameter. | 6.4 |