Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-07-07 | CVE-2004-0459 | Remote Denial Of Service vulnerability in Multiple Vendor IEEE 802.11 Protocol The Clear Channel Assessment (CCA) algorithm in the IEEE 802.11 wireless protocol, when using DSSS transmission encoding, allows remote attackers to cause a denial of service via a certain RF signal that causes a channel to appear busy (aka "jabber"), which prevents devices from transmitting data. | 5.0 |
| 2004-07-07 | CVE-2004-0437 | Denial-Of-Service vulnerability in South River Technologies Titan FTP Server 3.01Build163 Titan FTP Server version 3.01 build 163, and possibly other versions before build 169, allows remote authenticated users to cause a denial of service (crash) by disconnecting from the system during a "LIST -L" command, which causes Titan to access an invalid socket. | 5.0 |
| 2004-07-07 | CVE-2004-0431 | Unspecified vulnerability in Apple Quicktime Integer overflow in Apple QuickTime (QuickTime.qts) before 6.5.1 allows attackers to execute arbitrary code via a large "number of entries" field in the sample-to-chunk table data for a .mov movie file, which leads to a heap-based buffer overflow. | 5.1 |
| 2004-07-07 | CVE-2004-0430 | Unspecified vulnerability in Apple mac OS X and mac OS X Server Stack-based buffer overflow in AppleFileServer for Mac OS X 10.3.3 and earlier allows remote attackers to execute arbitrary code via a LoginExt packet for a Cleartext Password User Authentication Method (UAM) request with a PathName argument that includes an AFPName type string that is longer than the associated length field. | 5.1 |
| 2004-07-07 | CVE-2004-0426 | Unspecified vulnerability in Andrew Tridgell Rsync rsync before 2.6.1 does not properly sanitize paths when running a read/write daemon without using chroot, which allows remote attackers to write files outside of the module's path. | 5.0 |
| 2004-07-07 | CVE-2004-0402 | Buffer Overflow vulnerability in XPCD XPCD-SVGA Buffer overflow in xpcd-svga in xpcd before 2.08, and possibly other versions, may allow local users to execute arbitrary code. | 4.6 |
| 2004-06-15 | CVE-2004-1754 | Unspecified vulnerability in Symantec Enterprise Firewall and Gateway Security The DNS proxy (DNSd) for multiple Symantec Gateway Security products allows remote attackers to poison the DNS cache via a malicious DNS server query response that contains authoritative or additional records. | 5.0 |
| 2004-06-14 | CVE-2004-0392 | Unspecified vulnerability in Kame Racoon racoon before 20040407b allows remote attackers to cause a denial of service (infinite loop and dropped connections) via an IKE message with a malformed Generic Payload Header containing invalid (1) "Security Association Next Payload" and (2) "RESERVED" fields. | 5.0 |
| 2004-06-14 | CVE-2004-0199 | Unspecified vulnerability in Microsoft Windows 2003 Server and Windows XP Help and Support Center in Microsoft Windows XP and Windows Server 2003 SP1 does not properly validate HCP URLs, which allows remote attackers to execute arbitrary code, as demonstrated using certain hcp:// URLs that access the DVD Upgrade capability (dvdupgrd.htm). | 5.1 |
| 2004-06-14 | CVE-2004-0154 | Denial Of Service vulnerability in NFS-Utils rpc.mountd rpc.mountd in nfs-utils after 1.0.3 and before 1.0.6 allows attackers to cause a denial of service (crash) via an NFS mount of a directory from a client whose reverse DNS lookup name is different from the forward lookup name. | 5.0 |