|
268191
|
- |
|
content2web
|
content2web
|
PHP file inclusion vulnerability in index.php in Content2Web 1.0.1 allows remote attackers to include arbitrary files via the show parameter, which can lead to resultant errors such as path disclosur…
|
NVD-CWE-Other
|
CVE-2005-3017
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268192
|
- |
|
cambridge_computer_corporation
|
vxftpsrv
|
Buffer overflow in vxFtpSrv 0.9.7 allows remote attackers to execute arbitrary code via a long USER name.
|
NVD-CWE-Other
|
CVE-2005-3031
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268193
|
- |
|
cambridge_computer_corporation
|
vxtftpsrv
|
Buffer overflow in vxTftpSrv 1.7.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a TFTP request with a long filename argument.
|
NVD-CWE-Other
|
CVE-2005-3032
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268194
|
- |
|
cambridge_computer_corporation
|
vxweb
|
Stack-based buffer overflow in vxWeb 1.1.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request.
|
NVD-CWE-Other
|
CVE-2005-3033
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268195
|
- |
|
compuware
|
driverstudio
|
Compuware DriverStudio Remote Control service (DSRsvc.exe) 2.7 and 3.0 beta 2 allows remote attackers to bypass authentication via a null session.
|
NVD-CWE-Other
|
CVE-2005-3034
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268196
|
- |
|
compuware
|
driverstudio
|
Compuware DriverStudio Remote Control service (DSRsvc.exe) 2.7 and 3.0 beta 2 allows remote attackers to cause a denial of service (reboot) via a UDP packet sent directly to port 9110.
|
NVD-CWE-Other
|
CVE-2005-3035
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268197
|
- |
|
ttxn
|
file_transfer_anywhere
|
File Transfer Anywhere 3.01 stores sensitive password information in plaintext in the PASS value in the "File Transfer Anywhere" registry key, which allows local users to gain privileges.
|
NVD-CWE-Other
|
CVE-2005-3036
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268198
|
- |
|
handy_address_book
|
handy_address_book_server
|
Cross-site scripting (XSS) vulnerability in Handy Address Book Server 1.1 allows remote attackers to inject arbitrary web script or HTML via the SEARCHTEXT parameter in a demos URL.
|
NVD-CWE-Other
|
CVE-2005-3037
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268199
|
- |
|
hosting_controller
|
hosting_controller
|
Unspecified vulnerability in Hosting Controller 6.1 before Hotfix 2.4 allows remote attackers to list and read contents of arbitrary drives, related to "the PHP vulnerability."
|
NVD-CWE-Other
|
CVE-2005-3038
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268200
|
- |
|
mall23
|
mall23
|
SQL injection vulnerability in infopage.asp in Mall23 eCommerce allows remote attackers to execute arbitrary SQL commands via the idPage parameter.
|
NVD-CWE-Other
|
CVE-2005-3039
|
2008-09-6 05:53 |
2005-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
