Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-10-20 | CVE-2004-0794 | Unspecified vulnerability in Luke Mewburn Lukemftp and Tnftpd Multiple signal handler race conditions in lukemftpd (aka tnftpd before 20040810) allow remote authenticated attackers to cause a denial of service or execute arbitrary code. | 5.1 |
| 2004-10-20 | CVE-2004-0792 | Unspecified vulnerability in Andrew Tridgell Rsync Directory traversal vulnerability in the sanitize_path function in util.c for rsync 2.6.2 and earlier, when chroot is disabled, allows attackers to read or write certain files. | 6.4 |
| 2004-10-20 | CVE-2004-0787 | HTML Injection vulnerability in OpenCA Cross-site scripting (XSS) vulnerability in the web frontend in OpenCA 0.9.1-8 and earlier, and 0.9.2 RC6 and earlier, allows remote attackers to inject arbitrary web script or HTML via the form input fields. network openca | 4.3 |
| 2004-10-20 | CVE-2004-0781 | Cross-Site Scripting vulnerability in Icecast Server Status Display Cross-site scripting (XSS) vulnerability in list.cgi in the Icecast internal web server (icecast-server) 1.3.12 and earlier allows remote attackers to inject arbitrary web script via the UserAgent parameter. network icecast | 4.3 |
| 2004-10-19 | CVE-2004-1618 | Remote Denial Of Service vulnerability in Vypress Tonecast Vypress Tonecast 1.3 and earlier allows remote attackers to cause a denial of service (application crash) via a malformed mp2 stream. | 5.0 |
| 2004-10-18 | CVE-2004-1617 | Improper Input Validation vulnerability in University of Kansas Lynx Lynx, lynx-ssl, and lynx-cur before 2.8.6dev.8 allow remote attackers to cause a denial of service (infinite loop) via a web page or HTML email that contains invalid HTML including (1) a TEXTAREA tag with a large COLS value and (2) a large tag name in an element that is not terminated, as demonstrated by mangleme. | 5.0 |
| 2004-10-18 | CVE-2004-1616 | Denial Of Service vulnerability in Links Malformed Table Links allows remote attackers to cause a denial of service (memory consumption) via a web page or HTML email that contains a table with a td element and a large rowspan value,as demonstrated by mangleme. | 5.0 |
| 2004-10-18 | CVE-2004-1614 | Unspecified vulnerability in Mozilla Mozilla allows remote attackers to cause a denial of service (application crash from invalid memory access) via an "unusual combination of visual elements," including several large MARQUEE tags with large height parameters, as demonstrated by mangleme. | 5.0 |
| 2004-10-18 | CVE-2004-1613 | Memory Corruption vulnerability in Mozilla Mozilla allows remote attackers to cause a denial of service (application crash from null dereference or infinite loop) via a web page that contains a (1) TEXTAREA, (2) INPUT, (3) FRAMESET or (4) IMG tag followed by a null character and some trailing characters, as demonstrated by mangleme. | 5.0 |
| 2004-10-18 | CVE-2004-1612 | Remote vulnerability in Saleslogix Corporation Saleslogix 2000.0 Directory traversal vulnerability in SalesLogix 6.1 allows remote attackers to upload arbitrary files via a .. | 5.0 |