Vulnerabilities > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-12-31 | CVE-2004-2385 | Multiple vulnerability in Emumail EMU Webmail 5.2.7 EMU Webmail 5.2.7 allows remote attackers to obtain sensitive path information (home directory) via an HTTP request for init.emu. | 5.0 |
2004-12-31 | CVE-2004-2384 | Denial of Service vulnerability in Nullsoft Winamp 5.02 NullSoft Winamp 5.02 allows remote attackers to cause a denial of service (crash) by creating a file with a long filename, which causes the victim's player to crash when the file is opened from the command line. | 5.0 |
2004-12-31 | CVE-2004-2383 | Unspecified vulnerability in Microsoft IE and Internet Explorer Microsoft Internet Explorer 5.0 through 6.0 allows remote attackers to bypass cross-frame scripting restrictions and capture keyboard events from other domains via an HTML document with Javascript that is outside a frameset that includes the target domain, then forcing the frameset to maintain focus. | 5.1 |
2004-12-31 | CVE-2004-2382 | Denial Of Service vulnerability in PerfectNav Malformed URI The PerfectNav plugin for Microsoft Internet Explorer allows remote attackers to cause a denial of service (browser crash) via a malformed URL such as "?". | 5.0 |
2004-12-31 | CVE-2004-2381 | Denial Of Service vulnerability in Jetty HttpRequest.java in Jetty HTTP Server before 4.2.19 allows remote attackers to cause denial of service (memory usage and application crash) via HTTP requests with a large Content-Length. | 5.0 |
2004-12-31 | CVE-2004-2380 | Directory Traversal vulnerability in Twilight Utilities Twilight Utilities web Server 2.0.0.0 Directory traversal vulnerability in postfile.exe for Twilight Utilities Web Server 2.0.0.0 allows remote attackers to write arbitrary files via a .. | 5.0 |
2004-12-31 | CVE-2004-2377 | Denial Of Service vulnerability in Alcatel Omniswitch and Omniswitch 7800 Alcatel OmniSwitch 7000 and 7800 allows remote attackers to cause a denial of service (reboot) via certain network scans, as demonstrated using a Nessus port scan of ports 1 through 1024 with safe-checks disabled. | 5.0 |
2004-12-31 | CVE-2004-2374 | Path Disclosure vulnerability in Working Resources Inc. Badblue 2.40 BadBlue 2.4 allows remote attackers to obtain the location of the server installation path via a request for phptest.php, which includes the pathname in the source of the resulting HTML. | 5.0 |
2004-12-31 | CVE-2004-2371 | Remote Denial Of Service vulnerability in Redstorm Desert Siege, Ghost Recon and the SUM of ALL Fears Multiple Red Storm web-based games, including Ghost Recon 1.4 and earlier, Desert Siege, and The Sum of all Fears 1.1.1.0 and earlier, do not properly check return values from certain functions, which allows remote attackers to cause a denial of service (hang) via packets that contain text strings with incorrect size values. | 5.0 |
2004-12-31 | CVE-2004-2369 | Directory Traversal vulnerability in IBM Lotus Domino 6.5.1 Directory traversal vulnerability in webadmin.nsf for Lotus Domino R6 6.5.1 allows attackers to create and detect directories via a .. | 6.4 |