Weekly Vulnerabilities Reports > January 12 to 18, 2004
3 new vulnerabilities reported during this period, including 0 critical vulnerabilities and 1 high severity vulnerabilities. This weekly summary report vulnerabilities in 4 products from 3 vendors including HP, Novell, and SCO. Vulnerabilities are notably categorized as .
- 1 reported vulnerabilities are remotely exploitables.
- 3 reported vulnerabilities are exploitable by an anonymous user.
- HP has the most reported vulnerabilities, with 1 reported vulnerabilities.
The following table list reported vulnerabilities for the period covered by this report:
0 Critical Vulnerabilities
1 High Vulnerabilities
|2004-01-14||CVE-2004-1764||HP|| Local Security vulnerability in HP-UX |
Buffer overflow in CDE libDtSvc on HP-UX B.11.00, B.11.04, B.11.11, and B.11.22 allows local users to gain root privileges via unknown vectors.
2 Medium Vulnerabilities
|2004-01-15||CVE-2005-1247||Novell|| Denial-Of-Service vulnerability in Novell Nsure Audit 1.0.1 |
webadmin.exe in Novell Nsure Audit 1.0.1 allows remote attackers to cause a denial of service via malformed ASN.1 packets in corrupt client certificates to an SSL server, as demonstrated using an exploit for the OpenSSL ASN.1 parsing vulnerability.
|2004-01-14||CVE-2004-1124||SCO|| CHRoot Breakout vulnerability in SCO UnixWare/OpenServer |
Unknown vulnerability in chroot on SCO UnixWare 7.1.1 through 7.1.4 allows local users to escape the chroot jail and conduct unauthorized activities.
0 Low Vulnerabilities