Vulnerabilities > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-03-21 | CVE-2005-0713 | Unspecified vulnerability in Apple mac OS X and mac OS X Server The Bluetooth Setup Assistant for Mac OS X before 10.3.8 can be launched without a keyboard or Bluetooth device, which allows local users to bypass access restrictions and gain privileges. | 4.6 |
2005-03-15 | CVE-2005-0799 | Denial-Of-Service vulnerability in Oracle Mysql 4.1.9 MySQL 4.1.9, and possibly earlier versions, allows remote attackers with certain privileges to cause a denial of service (application crash) via a use command followed by an MS-DOS device name such as (1) LPT1 or (2) PRN. | 5.0 |
2005-03-15 | CVE-2005-0797 | Remote Information Disclosure vulnerability in Novell iChain Mini FTP Server Novell iChain Mini FTP Server 2.3 displays different error messages if a user exists or not, which allows remote attackers to obtain sensitive information and facilitates brute force attacks. | 5.0 |
2005-03-15 | CVE-2005-0794 | Denial-Of-Service vulnerability in ZPanel ZPanel 2.0 and 2.5 beta 10 does not remove or protect installation scripts after they have been used, which allows remote attackers to reinstall the software and possibly cause a denial of service via a direct request to install.php. | 6.4 |
2005-03-15 | CVE-2005-0767 | Unspecified vulnerability in Linux Kernel 2.6.8.1 Race condition in the Radeon DRI driver for Linux kernel 2.6.8.1 allows local users with DRI privileges to execute arbitrary code as root. local linux | 6.9 |
2005-03-15 | CVE-2005-0384 | Remote Denial Of Service vulnerability in Linux Kernel PPP Driver Unknown vulnerability in the PPP driver for the Linux kernel 2.6.8.1 allows remote attackers to cause a denial of service (kernel crash) via a pppd client. | 5.0 |
2005-03-14 | CVE-2005-0795 | Unspecified vulnerability in Hola Holacms HolaCMS 1.4.9 does not restrict file access to the holaDB/votes directory, which allows remote attackers to overwrite arbitrary files via a modified vote_filename parameter. | 5.0 |
2005-03-14 | CVE-2005-0791 | Cross-Site Scripting vulnerability in PHPAdsNew AdFrame.PHP Cross-site scripting (XSS) vulnerability in adframe.php in phpAdsNew 2.0.4-pr1, when register_globals is enabled, allows remote attackers to inject arbitrary web script or HTML via the refresh parameter. network phpadsnew | 4.3 |
2005-03-14 | CVE-2005-0790 | Information Disclosure vulnerability in PHPadsnew 2.0.4Pr1 phpAdsNew 2.0.4 allows remote attackers to obtain sensitive information via a direct request to (1) lib-xmlrpcs.inc.php, (2) maintenance-activation.php, (3) maintenance-cleantables.php, (4) maintenance-autotargeting.php, (5) maintenance-reports.php, (6) phpads.php, (7) remotehtmlview.php, (8) click.php, (9) adcontent.php, which reveal the path in a PHP error message. | 5.0 |
2005-03-14 | CVE-2005-0789 | Unspecified vulnerability in Limewire 3.9.6/4.6.0 Directory traversal vulnerability in LimeWire 3.9.6 through 4.6.0 allows remote attackers to read arbitrary files via a .. | 5.0 |