Weekly Vulnerabilities Reports > May 10 to 16, 2004
2 new vulnerabilities reported during this period, including 0 critical vulnerabilities and 0 high severity vulnerabilities. This weekly summary report vulnerabilities in 3 products from 2 vendors including SUN, and Icecast. Vulnerabilities are notably categorized as and "Path Traversal".
- 2 reported vulnerabilities are remotely exploitables.
- 1 reported vulnerabilities are related to weaknesses in OWASP Top Ten.
- 2 reported vulnerabilities are exploitable by an anonymous user.
- SUN has the most reported vulnerabilities, with 1 reported vulnerabilities.
The following table list reported vulnerabilities for the period covered by this report:
0 Critical Vulnerabilities
0 High Vulnerabilities
2 Medium Vulnerabilities
|2004-05-14||CVE-2004-1354||SUN|| Path Traversal vulnerability in SUN Solaris and Sunos |
The Solaris Management Console (SMC) in Sun Solaris 8 and 9 generates different 404 error messages when a file does not exist versus when a file exists but is otherwise inaccessible, which could allow remote attackers to obtain sensitive information in conjunction with a directory traversal (..) attack.
|2004-05-10||CVE-2004-2027||Icecast|| Remote Buffer Overflow vulnerability in Icecast Server Base64 Authorization Request |
Buffer overflow in Icecast 2.0.0 and earlier allows remote attackers to cause a denial of service (crash) via a long Basic Authorization header that triggers an out-of-bounds read.
0 Low Vulnerabilities