Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-03-04 | CVE-2004-1359 | Local UUCP Buffer Overrun vulnerability in Sun Solaris Multiple buffer overflows in uucp for Sun Solaris 2.6, 7, 8, and 9 allow local users to execute arbitrary code as the uucp user. | 4.6 |
| 2004-03-03 | CVE-2004-1990 | Input Validation vulnerability in Aldo Vargas Aldos web Server 1.5 Aldo's Web Server (aweb) 1.5 allows remote attackers to gain sensitive information via an arbitrary character, which reveals the full path and the user running the aweb process, possibly due to a malformed request. | 5.0 |
| 2004-03-03 | CVE-2004-0164 | Unspecified vulnerability in Kame Racoon Allversions KAME IKE daemon (racoon) does not properly handle hash values, which allows remote attackers to delete certificates via (1) a certain delete message that is not properly handled in isakmp.c or isakmp_inf.c, or (2) a certain INITIAL-CONTACT message that is not properly handled in isakmp_inf.c. | 5.0 |
| 2004-03-03 | CVE-2004-0143 | Remote Denial Of Service vulnerability in Multiple Nokia Object Exchange Protocol Message Multiple vulnerabilities in Nokia 6310(i) Mobile phones allow remote attackers to cause a denial of service (reset) via malformed Bluetooth OBject EXchange (OBEX) messages, probably triggering buffer overflows. | 5.0 |
| 2004-03-03 | CVE-2004-0131 | Remote Denial Of Service vulnerability in GNU Radius 1.1 The rad_print_request function in logger.c for GNU Radius daemon (radiusd) before 1.2 allows remote attackers to cause a denial of service (crash) via a UDP packet with an Acct-Status-Type attribute without a value and no Acct-Session-Id attribute, which causes a null dereference. | 5.0 |
| 2004-03-03 | CVE-2004-0130 | Information Disclosure vulnerability in PhpGedView login.php in phpGedView 2.65 and earlier allows remote attackers to obtain sensitive information via an HTTP request to login.php that does not contain the required username or password parameters, which causes the information to be leaked in an error message. | 5.0 |
| 2004-03-03 | CVE-2004-0129 | Unspecified vulnerability in PHPmyadmin Directory traversal vulnerability in export.php in phpMyAdmin 2.5.5 and earlier allows remote attackers to read arbitrary files via .. | 5.0 |
| 2004-03-03 | CVE-2004-0115 | Privilege Escalation vulnerability in Microsoft Virtual PC 6.0/6.1/6.2 VirtualPC_Services in Microsoft Virtual PC for Mac 6.0 through 6.1 allows local attackers to truncate and overwrite arbitrary files, and execute arbitrary code, via a symlink attack on the VPCServices_Log temporary file. | 4.6 |
| 2004-03-03 | CVE-2004-0114 | Privilege Escalation vulnerability in BSD Kernel SHMAT System Call The shmat system call in the System V Shared Memory interface for FreeBSD 5.2 and earlier, NetBSD 1.3 and earlier, and OpenBSD 2.6 and earlier, does not properly decrement a shared memory segment's reference count when the vm_map_find function fails, which could allow local users to gain read or write access to a portion of kernel memory and gain privileges. | 4.6 |
| 2004-03-03 | CVE-2004-0103 | Local Buffer Overflow vulnerability in Linley Henzell Dungeon Crawl crawl before 4.0.0 beta23 does not properly "apply a size check" when copying a certain environment variable, which may allow local users to gain privileges, possibly as a result of a buffer overflow. | 4.6 |