Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-05-14 | CVE-2005-1575 | Remote Security vulnerability in Mozilla Firefox 0.10.1/1.0 The file download dialog in Mozilla Firefox 0.10.1 and 1.0 for Windows allows remote attackers to hide the real file types of downloaded files via the Content-Type HTTP header and a filename containing whitespace, dots, or ASCII byte 160. | 5.0 |
| 2005-05-14 | CVE-2005-1571 | Directory Traversal vulnerability in Wenig and Spitzer-Williams Showoff Digital Media Software 1.5.4 Multiple directory traversal vulnerabilities in ShowOff! 1.5.4 allow remote attackers to read arbitrary files via ".." sequences in arguments to the (1) ShowAlbum, (2) ShowVideo, or (3) ShowGraphic scripts. | 5.0 |
| 2005-05-14 | CVE-2005-1570 | SQL-Injection vulnerability in Battleaxe Software Bttlxeforum 2.0 forum.asp in bttlxeForum 2.0 allows remote attackers to obtain full path information via a certain hex-encoded argument to the page parameter, possibly due to a SQL injection vulnerability. | 5.0 |
| 2005-05-14 | CVE-2005-1569 | Cross-Site Scripting vulnerability in Directtopics 2.1/2.2 Cross-site scripting (XSS) vulnerability in DirectTopics 2.1 and 2.2 allows remote attackers to inject arbitrary web script via a javascript: URL in (1) a thread or (2) an IMG tag. network directtopics | 4.3 |
| 2005-05-14 | CVE-2005-1563 | Information Disclosure vulnerability in Bugzilla Hidden Product Bugzilla 2.10 through 2.18, 2.19.1, and 2.19.2 displays a different error message depending on whether a product exists or not, which allows remote attackers to determine hidden products. | 5.0 |
| 2005-05-14 | CVE-2005-1556 | Denial-Of-Service vulnerability in Gamespy Sdk Cd-Key Validation Toolkit Gamespy cd-key validation system allows remote attackers to cause a denial of service (cd-key already in use) by capturing and replaying a cd-key authorization session. | 5.0 |
| 2005-05-14 | CVE-2005-1552 | Unspecified vulnerability in Geovision Digital Surveillance System 6.0.4/6.1/7.0 GeoVision Digital Video Surveillance System 6.04, 6.1 and 7.0, when set to create JPEG images, does not properly protect an image even when a password and username is assigned, which may allow remote attackers to gain sensitive information via a direct request to the image. | 5.0 |
| 2005-05-14 | CVE-2005-1551 | Denial-Of-Service vulnerability in Sophos Anti-Virus 3.93 Sophos Anti-Virus 3.93 does not check downloaded files for viruses when they have only been written, which creates a race condition and may allow remote attackers to bypass virus protection if the file is executed before the antivirus starts on system reboot. | 5.1 |
| 2005-05-14 | CVE-2005-1549 | Directory Traversal vulnerability in Easy Message Board Directory traversal vulnerability in easymsgb.pl in Easy Message Board allows remote attackers to read arbitrary files via a .. | 5.0 |
| 2005-05-14 | CVE-2005-1546 | Unspecified vulnerability in HT Editor HT Editor Buffer overflow in the PE parser in HT Editor before 0.8.0 allows remote attackers to execute arbitrary code via a crafted PE file. | 5.1 |