Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-12-31 | CVE-2004-1394 | Unspecified vulnerability in SUN Solaris and Sunos The pfexec function for Sun Solaris 8 and 9 does not properly handle when a custom profile contains an invalid entry in the exec_attr database, which may allow local users with custom rights profiles to execute profile commands with additional privileges. | 4.6 |
| 2004-12-31 | CVE-2004-1393 | Denial Of Service vulnerability in Sun Solaris TCSetAttr System Hang Unknown vulnerability in the tcsetattr function for Sun Solaris for SPARC 2.6, 7, and 8 allows local users to cause a denial of service (system hang). | 5.0 |
| 2004-12-31 | CVE-2004-1392 | Unspecified vulnerability in PHP PHP 4.0 with cURL functions allows remote attackers to bypass the open_basedir setting and read arbitrary files via a file: URL argument to the curl_init function. | 5.0 |
| 2004-12-31 | CVE-2004-1391 | Local Command Execution vulnerability in QNX Rtos and RTP Untrusted execution path vulnerability in the PPPoE daemon (PPPoEd) in QNX RTP 6.1 allows local users to execute arbitrary programs by modifying the PATH environment variable to point to a malicious mount program. | 4.6 |
| 2004-12-31 | CVE-2004-1389 | Privilege Escalation vulnerability in Veritas NetBackup Unknown vulnerability in the Veritas NetBackup Administrative Assistant interface for NetBackup BusinesServer 3.4, 3.4.1, and 4.5, DataCenter 3.4, 3.4.1, and 4.5, Enterprise Server 5.1, and NetBackup Server 5.0 and 5.1, allows attackers to execute arbitrary commands via the bpjava-susvc process, possibly related to the call-back feature. | 6.0 |
| 2004-12-31 | CVE-2004-1385 | Information Disclosure vulnerability in Phpgroupware phpGroupWare 0.9.16.003 and earlier allows remote attackers to gain sensitive information via (1) unexpected characters in the session ID such as shell metacharacters, (2) an invalid appname parameter to preferences.php or (3) an invalid menuaction parameter to index.php, which reveals the web server path in an error message. | 5.0 |
| 2004-12-31 | CVE-2004-1384 | Cross-Site Scripting and SQL Injection vulnerability in PHPGroupWare Multiple cross-site scripting (XSS) vulnerabilities in phpGroupWare 0.9.16.003 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) kp3, (2) type, (3) msg, (4) forum_id, (5) pos, (6) cats_app, (7) cat_id, (8) msgball[msgnum], (9) fldball[acctnum] parameters to index.php or (10) ticket_id to viewticket_details.php. network phpgroupware | 4.3 |
| 2004-12-31 | CVE-2004-1343 | Unspecified vulnerability in CVS CVS 1.12 and earlier on Debian GNU/Linux does not properly handle when a mapping for the current repository does not exist in the cvs-repouids file, which allows remote attackers to cause a denial of service (server crash). | 5.0 |
| 2004-12-31 | CVE-2004-1306 | Heap Overflow vulnerability in Microsoft Windows winhlp32 Phrase Heap-based buffer overflow in winhlp32.exe in Windows NT, Windows 2000 through SP4, Windows XP through SP2, and Windows 2003 allows remote attackers to execute arbitrary code via a crafted .hlp file. | 5.1 |
| 2004-12-31 | CVE-2004-1200 | Denial Of Service vulnerability in Mozilla Firefox Infinite Array Sort Firefox and Mozilla allow remote attackers to cause a denial of service (application crash from memory consumption), as demonstrated using Javascript code that continuously creates nested arrays and then sorts the newly created arrays. | 5.0 |