Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-12-31 | CVE-2004-2479 | Information Disclosure vulnerability in Squid Proxy Failed DNS Lookup Random Error Messages Squid Web Proxy Cache 2.5 might allow remote attackers to obtain sensitive information via URLs containing invalid hostnames that cause DNS operations to fail, which results in references to previously used error messages. | 5.0 |
| 2004-12-31 | CVE-2004-2475 | HTML Injection vulnerability in Google Toolbar About.HTML Cross-site scripting (XSS) vulnerability in Google Toolbar 2.0.114.1 allows remote attackers to inject arbitrary web script via about.html in the About section. network google | 4.3 |
| 2004-12-31 | CVE-2004-2472 | Remote Denial of Service vulnerability in Agnitum Outpost Firewall 2.1 Agnitum Outpost Pro Firewall 2.1 allows remote attackers to cause a denial of service (CPU consumption) via a flood of small, invalid packets, which can not be processed quickly enough by Outpost Pro. | 5.0 |
| 2004-12-31 | CVE-2004-2469 | Reservation Modification vulnerability in PHPScheduleIt Reservation.Class.PHP Unspecified vulnerability in Reservation.class.php for phpScheduleIt 1.01 and earlier allows attackers to modify or delete reservations. | 5.0 |
| 2004-12-31 | CVE-2004-2468 | Cross-Site Scripting vulnerability in Scripts for Educators Sillysearch 2.3 Cross-site scripting (XSS) vulnerability in SillySearch 2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter. network scripts-for-educators | 4.3 |
| 2004-12-31 | CVE-2004-2467 | Denial-Of-Service vulnerability in EFS Software Easy Chat Server 1.2 chat.ghp in Easy Chat Server 1.2 allows remote attackers to add a large number of fake users, then eventually cause a denial of service (server crash). | 5.0 |
| 2004-12-31 | CVE-2004-2466 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in EFS Software Easy Chat Server 1.2/2.2 chat.ghp in Easy Chat Server 1.2 allows remote attackers to cause a denial of service (server crash) via a long username parameter, possibly due to a buffer overflow. | 5.0 |
| 2004-12-31 | CVE-2004-2465 | Cross-Site Scripting vulnerability in EFS Software Easy Chat Server 1.2 Cross-site scripting (XSS) vulnerability in chat.ghp in Easy Chat Server 1.2 allows remote attackers to inject arbitrary web script or HTML via the username parameter. network efs-software | 4.3 |
| 2004-12-31 | CVE-2004-2462 | Symbolic Link vulnerability in Cplay 1.49 cplay 1.49 on Linux allows local users to overwrite arbitrary files via a symlink attack on the cplay_control temporary file. | 4.6 |
| 2004-12-31 | CVE-2004-2460 | Remote POP3 Protocol vulnerability in gnubiff Unknown vulnerability in POP3 in gnubiff before 2.0.0 allows remote attackers to cause a denial of service (application crash) via an "infinite" Unique IDentification Listing (UIDL) list. | 5.0 |