Vulnerabilities > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-02-28 | CVE-2005-0613 | Unspecified vulnerability in Fckeditor 2.0Rc2 Unknown vulnerability in FCKeditor 2.0 RC2, when used with PHP-Nuke, allows remote attackers to upload arbitrary files. | 5.0 |
2005-02-28 | CVE-2004-0945 | Denial-Of-Service vulnerability in Mitel 3300 Integrated Communication Platform The web management interface for Mitel 3300 Integrated Communications Platform (ICP) before 4.2.2.11 allows remote authenticated users to cause a denial of service (resource exhaustion) via a large number of active sessions, which exceeds ICP's maximum. | 5.0 |
2005-02-25 | CVE-2005-0579 | Local Security vulnerability in FreeNX nxagent in FreeNX before 0.2.8 does not properly handle when the XAUTHORITY environment variable is not set, which allows local users to access the X server without X authentication. | 4.6 |
2005-02-24 | CVE-2005-0600 | Remote vulnerability in Cisco Application and Content Networking System Cisco devices running Application and Content Networking System (ACNS) 5.0, 5.1 before 5.1.13.7, or 5.2 before 5.2.3.9 allow remote attackers to cause a denial of service (bandwidth consumption) via "crafted IP packets" that are continuously forwarded. | 5.0 |
2005-02-24 | CVE-2005-0598 | Remote vulnerability in Cisco Application and Content Networking System The RealServer RealSubscriber on Cisco devices running Application and Content Networking System (ACNS) 5.1 allow remote attackers to cause a denial of service (CPU consumption) via malformed packets. | 5.0 |
2005-02-24 | CVE-2005-0547 | Restricted File Access vulnerability in HP-UX FTP Server Unknown vulnerability in ftpd on HP-UX B.11.00, B.11.04, B.11.11, B.11.22, and B.11.23 allows remote authenticated users to gain "unauthorized access to files." | 4.6 |
2005-02-24 | CVE-2005-0543 | Cross-Site Scripting vulnerability in PHPmyadmin Cross-site scripting (XSS) vulnerability in phpMyAdmin 2.6.1 allows remote attackers to inject arbitrary HTML and web script via (1) the strServer, cfg[BgcolorOne], or strServerChoice parameters in select_server.lib.php, (2) the bg_color or row_no parameters in display_tbl_links.lib.php, the left_font_family parameter in theme_left.css.php, or the right_font_family parameter in theme_right.css.php. | 4.3 |
2005-02-22 | CVE-2005-0514 | Unspecified vulnerability in Verity Ultraseek 5.3.3 Cross-site scripting (XSS) vulnerability in Verity Ultraseek before 5.3.3 allows remote attackers to inject arbitrary HTML and web script via search parameters. network verity | 4.3 |
2005-02-22 | CVE-2005-0160 | Remote Buffer Overflow vulnerability in E-Merge Unace 1.2B Multiple buffer overflows in unace 1.2b allow attackers to execute arbitrary code via (1) 2 overflows in ACE archives, (2) a long command line argument, or (3) certain "Ready for next volume" messages. | 5.1 |
2005-02-21 | CVE-2005-0503 | uim before 0.4.5.1 trusts certain environment variables when libUIM is used in setuid or setgid applications, which allows local users to gain privileges. | 4.6 |