Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-07-05 | CVE-2005-2082 | Remote Security vulnerability in Cgi-Club Imtrset 1.02 im_trbbs.cgi in imTRSET 1.02 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the df parameter. | 5.0 |
| 2005-07-05 | CVE-2005-2081 | Unspecified vulnerability in Digium Asterisk 1.0.7 Stack-based buffer overflow in the function that parses commands in Asterisk 1.0.7, when the 'write = command' option is enabled, allows remote attackers to execute arbitrary code via a command that has two double quotes followed by a tab character. | 5.0 |
| 2005-07-05 | CVE-2005-2068 | Unspecified vulnerability in Freebsd FreeBSD 4.x through 4.11 and 5.x through 5.4 allows remote attackers to modify certain TCP options via a TCP packet with the SYN flag set for an already established session. | 5.0 |
| 2005-07-05 | CVE-2005-2019 | Unspecified vulnerability in Freebsd 5.4 ipfw in FreeBSD 5.4, when running on Symmetric Multi-Processor (SMP) or Uni Processor (UP) systems with the PREEMPTION kernel option enabled, does not sufficiently lock certain resources while performing table lookups, which can cause the cache results to be corrupted during multiple concurrent lookups, allowing remote attackers to bypass intended access restrictions. | 5.0 |
| 2005-07-05 | CVE-2005-1931 | Denial-Of-Service vulnerability in Goodtech Systems Goodtech Smtp Server 5.14 GoodTech SMTP Server 5.14 allows remote attackers to cause a denial of service (application crash) via a RCPT TO command with an invalid argument, as demonstrated using an "A" character. | 5.0 |
| 2005-07-05 | CVE-2005-1922 | Unspecified vulnerability in Clam Anti-Virus Clamav The MS-Expand file handling in Clam AntiVirus (ClamAV) before 0.86 allows remote attackers to cause a denial of service (file descriptor and memory consumption) via a crafted file that causes repeated errors in the cli_msexpand function. | 5.0 |
| 2005-07-05 | CVE-2005-1625 | Unspecified vulnerability in Adobe Acrobat Reader 5.0.10/5.0.9 Stack-based buffer overflow in the UnixAppOpenFilePerform function in Adobe Reader 5.0.9 and 5.0.10 for Unix allows remote attackers to execute arbitrary code via a PDF document with a long /Filespec tag. | 5.0 |
| 2005-07-05 | CVE-2005-0360 | Remote Security vulnerability in Log Sink Class Activex Control The Microsoft Log Sink Class ActiveX control in pkmcore.dll is marked as "safe for scripting" for Internet Explorer, which allows remote attackers to create or append to arbitrary files. | 5.0 |
| 2005-06-30 | CVE-2005-2069 | Cleartext Transmission of Sensitive Information vulnerability in Padl NSS Ldap and PAM Ldap pam_ldap and nss_ldap, when used with OpenLDAP and connecting to a slave using TLS, does not use TLS for the subsequent connection if the client is referred to a master, which may cause a password to be sent in cleartext and allows remote attackers to sniff the password. | 5.0 |
| 2005-06-29 | CVE-2005-2077 | Cross-Site Scripting vulnerability in Hosting Controller Error.ASP Cross-site scripting (XSS) vulnerability in error.asp for Hosting Controller allows remote attackers to inject arbitrary web script or HTML via the error parameter. network hosting-controller | 4.3 |