Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-12-31 | CVE-2004-2646 | Denial Of Service vulnerability in Multiple Free Web Chat The addUser function in UserManager.java in Free Web Chat 2.0 allows remote attackers to cause a denial of service (uncaught NullPointerException) via unknown attack vectors that cause the usrName variable to be null. | 5.0 |
| 2004-12-31 | CVE-2004-2642 | Unspecified vulnerability in Nathaniel Bray Yeemp Yeemp 0.9.9 and earlier does not properly encrypt inbound files, which allows remote attackers to spoof the identity of the sender. | 6.4 |
| 2004-12-31 | CVE-2004-2641 | Remote TOS IP Packet Denial Of Service vulnerability in Sun Fire/Netra Unspecified vulnerability in Sun Fire 3800/4800/4810/6800, Sun Fire V1280, and Netra 1280 allows remote attackers to cause a denial of service (system controller hang) via IP Packets With Type of Service (TOS) Bits set. | 5.0 |
| 2004-12-31 | CVE-2004-2640 | Remote Directory Traversal vulnerability in LinuxStat Directory traversal vulnerability in lstat.cgi in LinuxStat before 2.3.1 allows remote attackers to read arbitrary files via (1) .. | 5.0 |
| 2004-12-31 | CVE-2004-2637 | Unspecified vulnerability in Zonet Zsr1104We Wireless Router Runtime Code 2.41 The NAT implementation in Zonet ZSR1104WE Wireless Router Runtime Code Version 2.41 converts IP addresses of inbound connections to the IP address of the router, which allows remote attackers to bypass intended security restrictions. | 6.4 |
| 2004-12-31 | CVE-2004-2636 | TinyWeb 1.9 allows remote attackers to read source code of scripts via "/./" in the URL. | 5.0 |
| 2004-12-31 | CVE-2004-2634 | Console Commands Symbolic Link vulnerability in Multiple IBM AIX The (1) bos.rte.serv_aid or (2) bos.rte.console filesets in IBM AIX 5.1 and 5.2 allow local users to overwrite arbitrary files via a symlink attack on temporary files via unknown attack vectors. | 6.2 |
| 2004-12-31 | CVE-2004-2633 | Unspecified vulnerability in Arjohn Kampman Sesame RDF Container Unspecified vulnerability in Sesamie 1.0 allows remote anonymous attackers to gain access to repositories of other users via unknown vectors. | 5.1 |
| 2004-12-31 | CVE-2004-2628 | Directory Traversal vulnerability in Acme Labs Thttpd 2.0.7Beta0.4 Multiple directory traversal vulnerabilities in thttpd 2.07 beta 0.4, when running on Windows, allow remote attackers to read arbitrary files via a URL that contains (1) a hex-encoded backslash dot-dot sequence ("%5C..") or (2) a drive letter (such as "C:"). | 5.0 |
| 2004-12-31 | CVE-2004-2625 | HTML Injection vulnerability in Outblaze Webmail Cross-site scripting (XSS) vulnerability in Outblaze Email allows remote attackers to inject arbitrary web script or HTML via Javascript in an attribute of an IMG tag. | 5.1 |