Vulnerabilities > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-03-14 | CVE-2005-0790 | Information Disclosure vulnerability in PHPadsnew 2.0.4Pr1 phpAdsNew 2.0.4 allows remote attackers to obtain sensitive information via a direct request to (1) lib-xmlrpcs.inc.php, (2) maintenance-activation.php, (3) maintenance-cleantables.php, (4) maintenance-autotargeting.php, (5) maintenance-reports.php, (6) phpads.php, (7) remotehtmlview.php, (8) click.php, (9) adcontent.php, which reveal the path in a PHP error message. | 5.0 |
2005-03-14 | CVE-2005-0789 | Unspecified vulnerability in Limewire 3.9.6/4.6.0 Directory traversal vulnerability in LimeWire 3.9.6 through 4.6.0 allows remote attackers to read arbitrary files via a .. | 5.0 |
2005-03-14 | CVE-2005-0788 | Unspecified vulnerability in Limewire 4.1.2/4.5.6 LimeWire 4.1.2 through 4.5.6 allows remote attackers to read arbitrary files by specifying the full pathname in a Gnutella GET request. | 5.0 |
2005-03-14 | CVE-2005-0509 | Cross-Site Scripting vulnerability in .NET Framework Multiple cross-site scripting (XSS) vulnerabilities in the Mono 1.0.5 implementation of ASP.NET (.Net) allow remote attackers to inject arbitrary HTML or web script via Unicode representations for ASCII fullwidth characters that are converted to normal ASCII characters, including ">" and "<". | 4.3 |
2005-03-14 | CVE-2005-0508 | Unknown vulnerability in Squiggle for Batik before 1.5.1 allows attackers to bypass certain access controls via certain features of the Rhino scripting engine due to a "script security issue." | 4.6 |
2005-03-14 | CVE-2005-0507 | Directory Traversal vulnerability in GD Software SD Server 4.0.70 Directory traversal vulnerability in SD Server 4.0.70 and earlier allows remote attackers to read arbitrary files via .. | 5.0 |
2005-03-14 | CVE-2005-0506 | Remote Security vulnerability in Avaya IP Office Phone Manager and IP Soft Phone The Avaya IP Office Phone Manager, and other products such as the IP Softphone, stores sensitive data in cleartext in a registry key, which allows local and possibly remote users to steal usernames and passwords and impersonate other users via keys such as Avaya\IP400\Generic. | 5.0 |
2005-03-14 | CVE-2005-0504 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Linux Kernel Buffer overflow in the MoxaDriverIoctl function for the moxa serial driver (moxa.c) in Linux 2.2.x, 2.4.x, and 2.6.x before 2.6.22 allows local users to execute arbitrary code via a certain modified length value. | 4.6 |
2005-03-14 | CVE-2005-0473 | Remote Denial of Service vulnerability in Gaim The HTML parsing functions in Gaim before 1.1.3 allow remote attackers to cause a denial of service (application crash) via malformed HTML that causes "an invalid memory access," a different vulnerability than CVE-2005-0208. | 5.0 |
2005-03-14 | CVE-2005-0472 | Remote Denial of Service vulnerability in Gaim Gaim before 1.1.3 allows remote attackers to cause a denial of service (infinite loop) via malformed SNAC packets from (1) AIM or (2) ICQ. | 5.0 |