Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-05-02 | CVE-2005-0813 | Remote Buffer Overflow vulnerability in Initial Redirect Initial Redirect Squid Proxy Plug-In 0.1/0.2 Buffer overflow in Initial Redirect (ir) Squid Proxy Plug-In 0.1 and 0.2 may allow attackers to cause a denial of service and execute arbitrary code via unknown vectors. | 5.0 |
| 2005-05-02 | CVE-2005-0812 | Multiple vulnerability in Notify Technology Notifylink Enterpriseserver The web interface in NotifyLink 3.0 displays passwords in cleartext on the administrative page, which could allow remote attackers or local users to obtain sensitive information. | 5.0 |
| 2005-05-02 | CVE-2005-0811 | Multiple vulnerability in Notify Technology Notifylink Enterpriseserver The web interface in NotifyLink 3.0 does not properly restrict access to functions that have been disabled in the GUI, which allows remote authenticated users to bypass intended restrictions via a direct request to certain URLs. | 4.6 |
| 2005-05-02 | CVE-2005-0808 | Remote Malformed Request Denial Of Service vulnerability in Apache Tomcat Apache Tomcat before 5.x allows remote attackers to cause a denial of service (application crash) via a crafted AJP12 packet to TCP port 8007. | 5.0 |
| 2005-05-02 | CVE-2005-0806 | Unspecified vulnerability in Ximian Evolution 2.0.3 Evolution 2.0.3 allows remote attackers to cause a denial of service (application crash or hang) via crafted messages, possibly involving charsets in attachment filenames. | 5.0 |
| 2005-05-02 | CVE-2005-0804 | Remote Format String vulnerability in Mailenable Standard 1.8 Format string vulnerability in MailEnable 1.8 allows remote attackers to cause a denial of service (application crash) via format string specifiers in the mailto field. | 5.0 |
| 2005-05-02 | CVE-2005-0803 | Resource Management Errors vulnerability in Microsoft Windows 2000 The GetEnhMetaFilePaletteEntries API in GDI32.DLL in Windows 2000 allows remote attackers to cause a denial of service (application crash) via a crafted Enhanced Metafile (EMF) file that causes invalid (1) end, (2) emreof, or (3) palent offsets to be used, aka "Enhanced Metafile Vulnerability." | 5.0 |
| 2005-05-02 | CVE-2005-0802 | Cross-Site Scripting vulnerability in ACS Blog Search.ASP Cross-site scripting (XSS) vulnerability in search.asp in ACS Blog 0.8 through 1.1b allows remote attackers to execute arbitrary web script or HTML via the search parameter. network asp-press | 4.3 |
| 2005-05-02 | CVE-2005-0801 | Directory Traversal vulnerability in Includer.Cgi Directory traversal vulnerability in includer.cgi in The Includer allows remote attackers to read arbitrary files via (1) a .. | 5.0 |
| 2005-05-02 | CVE-2005-0796 | Directory traversal vulnerability in HolaCMS 1.4.9-1 allows remote attackers to overwrite arbitrary files via a "holaDB/votes" followed by a .. | 5.0 |