Vulnerabilities > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-12-31 | CVE-2004-0931 | Denial of Service vulnerability in MySQL MaxDB WebDBM Server Name MySQL MaxDB before 7.5.00.18 allows remote attackers to cause a denial of service (crash) via an HTTP request to webdbm with high ASCII values in the Server field, which triggers an assert error in the IsAscii7 function. | 5.0 |
2004-12-31 | CVE-2004-0919 | Unspecified vulnerability in Freebsd The syscons CONS_SCRSHOT ioctl in FreeBSD 5.x allows local users to read arbitrary kernel memory via (1) negative coordinates or (2) large coordinates. | 4.6 |
2004-12-31 | CVE-2004-0913 | Remote Undisclosed Privilege Escalation vulnerability in Ecartis Unknown vulnerability in ecartis 0.x before 0.129a+1.0.0-snap20020514-1.3 and 1.x before 1.0.0+cvs.20030911-8 allows attackers in the same domain to gain administrator privileges and modify configuration. | 4.6 |
2004-12-31 | CVE-2004-0909 | Unspecified vulnerability in Mozilla and Thunderbird Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 may allow remote attackers to trick users into performing unexpected actions, including installing software, via signed scripts that request enhanced abilities using the enablePrivilege parameter, then modify the meaning of certain security-relevant dialog messages. | 5.1 |
2004-12-31 | CVE-2004-0908 | Unspecified vulnerability in Mozilla and Thunderbird Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows untrusted Javascript code to read and write to the clipboard, and possibly obtain sensitive information, via script-generated events such as Ctrl-Ins. | 4.0 |
2004-12-31 | CVE-2004-0907 | Unspecified vulnerability in Mozilla and Thunderbird The Linux install .tar.gz archives for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8, create certain files with insecure permissions, which could allow local users to overwrite those files and execute arbitrary code. | 4.6 |
2004-12-31 | CVE-2004-0906 | Unspecified vulnerability in Mozilla and Thunderbird The XPInstall installer in Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 sets insecure permissions for certain installed files within xpi packages, which could allow local users to overwrite arbitrary files or execute arbitrary code. | 4.6 |
2004-12-31 | CVE-2004-0829 | Unspecified vulnerability in Samba smbd in Samba before 2.2.11 allows remote attackers to cause a denial of service (daemon crash) by sending a FindNextPrintChangeNotify request without a previous FindFirstPrintChangeNotify, as demonstrated by the SMB client in Windows XP SP2. | 5.0 |
2004-12-31 | CVE-2004-0825 | Denial of Service vulnerability in Apple mac OS X Server 10.2.8/10.3.4/10.3.5 QuickTime Streaming Server in Mac OS X Server 10.2.8, 10.3.4, and 10.3.5 allows remote attackers to cause a denial of service (application deadlock) via a certain sequence of operations. | 5.0 |
2004-12-31 | CVE-2004-0808 | Unspecified vulnerability in Samba The process_logon_packet function in the nmbd server for Samba 3.0.6 and earlier, when domain logons are enabled, allows remote attackers to cause a denial of service via a SAM_UAS_CHANGE request with a length value that is larger than the number of structures that are provided. | 5.0 |