Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-12-31 | CVE-2004-1908 | Information Disclosure vulnerability in Mcafee FreeScan CoMcFreeScan Browser McFreeScan.CoMcFreeScan.1 ActiveX object in Mcafee FreeScan allows remote attackers to obtain sensitive information via the GetSpecialFolderLocation function with certain parameters. | 5.0 |
| 2004-12-31 | CVE-2004-1906 | Buffer Overflow vulnerability in Mcafee FreeScan CoMcFreeScan Browser Object Mcafee FreeScan allows remote attackers to cause a denial of service and possibly arbitrary code via a long string in the ScanParam property of a COM object, which may trigger a buffer overflow. | 5.0 |
| 2004-12-31 | CVE-2004-1905 | Denial of Service vulnerability in Panda Activescan 5.0 ascontrol.dll in Panda ActiveScan 5.0 allows remote attackers to cause a denial of service (crash) by calling the SetSitesFile function. | 5.0 |
| 2004-12-31 | CVE-2004-1901 | Link Following vulnerability in Gentoo Linux and Portage Portage before 2.0.50-r3 allows local users to overwrite arbitrary files via a hard link attack on the lockfiles. | 5.5 |
| 2004-12-31 | CVE-2004-1899 | Remote vulnerability in Multiple Monit Administration Interface The administration interface in Monit 1.4 through 4.2 allows remote attackers to cause an off-by-one overflow via a POST that contains 1024 bytes. | 5.0 |
| 2004-12-31 | CVE-2004-1897 | Remote vulnerability in Multiple Monit Administration Interface Administration interface in Monit 1.4 through 4.2 allows remote attackers to cause a denial of service (segmentation fault) by sending a Basic Authentication request without a password, which causes Monit to decrement a null pointer and perform an out-of-bounds read. | 5.0 |
| 2004-12-31 | CVE-2004-1893 | Remote User Database Access vulnerability in Macromedia Dreamweaver Dreamweaver MX, when "Using Driver On Testing Server" or "Using DSN on Testing Server" is selected, uploads the mmhttpdb.asp script to the web site but does not require authentication, which allows remote attackers to obtain sensitive information and possibly execute arbitrary SQL commands via a direct request to mmhttpdb.asp. | 5.0 |
| 2004-12-31 | CVE-2004-1891 | Remote Security vulnerability in SGI Irix 6.5.20 The ftp_syslog function in ftpd in SGI IRIX 6.5.20 "doesn't work with anonymous FTP," which has an unknown impact, possibly preventing the actions of anonymous users from being logged. | 5.0 |
| 2004-12-31 | CVE-2004-1889 | Denial Of Service vulnerability in SGI IRIX ftpd Unknown vulnerability in ftpd in SGI IRIX 6.5.20 through 6.5.23 allows remote attackers to cause a denial of service (hang) via a link failure with Microsoft Windows. | 5.0 |
| 2004-12-31 | CVE-2004-1887 | Remote Directory Listing vulnerability in ADA Imgsvr 0.4 Ada Image Server (ImgSvr) 0.4 allows remote attackers to view directories or download files via an HTTP request with a trailing %00 (null). | 5.0 |