270421
|
- |
|
cambridge_computer_corporation
|
vxweb
|
Stack-based buffer overflow in vxWeb 1.1.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request.
|
NVD-CWE-Other
|
CVE-2005-3033
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270422
|
- |
|
compuware
|
driverstudio
|
Compuware DriverStudio Remote Control service (DSRsvc.exe) 2.7 and 3.0 beta 2 allows remote attackers to bypass authentication via a null session.
|
NVD-CWE-Other
|
CVE-2005-3034
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270423
|
- |
|
compuware
|
driverstudio
|
Compuware DriverStudio Remote Control service (DSRsvc.exe) 2.7 and 3.0 beta 2 allows remote attackers to cause a denial of service (reboot) via a UDP packet sent directly to port 9110.
|
NVD-CWE-Other
|
CVE-2005-3035
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270424
|
- |
|
ttxn
|
file_transfer_anywhere
|
File Transfer Anywhere 3.01 stores sensitive password information in plaintext in the PASS value in the "File Transfer Anywhere" registry key, which allows local users to gain privileges.
|
NVD-CWE-Other
|
CVE-2005-3036
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270425
|
- |
|
handy_address_book
|
handy_address_book_server
|
Cross-site scripting (XSS) vulnerability in Handy Address Book Server 1.1 allows remote attackers to inject arbitrary web script or HTML via the SEARCHTEXT parameter in a demos URL.
|
NVD-CWE-Other
|
CVE-2005-3037
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270426
|
- |
|
hosting_controller
|
hosting_controller
|
Unspecified vulnerability in Hosting Controller 6.1 before Hotfix 2.4 allows remote attackers to list and read contents of arbitrary drives, related to "the PHP vulnerability."
|
NVD-CWE-Other
|
CVE-2005-3038
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270427
|
- |
|
mall23
|
mall23
|
SQL injection vulnerability in infopage.asp in Mall23 eCommerce allows remote attackers to execute arbitrary SQL commands via the idPage parameter.
|
NVD-CWE-Other
|
CVE-2005-3039
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270428
|
- |
|
tac
|
vista
|
Directory traversal vulnerability in the web interface (ISALogin.dll) for TAC Vista 4.0, and possibly other versions before 4.3, allows remote attackers to read arbitrary files via ".." sequences in …
|
NVD-CWE-Other
|
CVE-2005-3040
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270429
|
- |
|
multitheftauto
|
multitheftauto
|
MultiTheftAuto 0.5 patch 1 and earlier does not properly verify client privileges when running command 40, which allows remote attackers to change or delete the message of the day (motd.txt).
|
NVD-CWE-Other
|
CVE-2005-3064
|
2008-09-6 05:53 |
2005-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
270430
|
- |
|
eric_integrated_development_environment
|
eric_integrated_development_environment
|
Unspecified vulnerability in Eric Integrated Development Environment (eric3) before 3.7.2 has unknown impact and attack vectors related to a "potential security exploit."
|
NVD-CWE-Other
|
CVE-2005-3068
|
2008-09-6 05:53 |
2005-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|