|
268771
|
- |
|
notify_technology
|
notifylink
|
NotifyLink, when configured for client key retrieval, allows remote attackers to obtain AES keys via a direct request to /hwp/get.asp, then uses a weak encryption scheme (fixed byte reordering) to pr…
|
NVD-CWE-Other
|
CVE-2005-0809
|
2008-09-6 05:47 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268772
|
- |
|
notify_technology
|
notifylink
|
SQL injection vulnerability in NotifyLink before 3.0 allows remote attackers to execute arbitrary SQL commands via the URL.
|
NVD-CWE-Other
|
CVE-2005-0810
|
2008-09-6 05:47 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268773
|
- |
|
notify_technology
|
notifylink
|
The web interface in NotifyLink 3.0 does not properly restrict access to functions that have been disabled in the GUI, which allows remote authenticated users to bypass intended restrictions via a di…
|
NVD-CWE-Other
|
CVE-2005-0811
|
2008-09-6 05:47 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268774
|
- |
|
notify_technology
|
notifylink
|
The web interface in NotifyLink 3.0 displays passwords in cleartext on the administrative page, which could allow remote attackers or local users to obtain sensitive information.
|
NVD-CWE-Other
|
CVE-2005-0812
|
2008-09-6 05:47 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268775
|
- |
|
initial_redirect
|
initial_redirect_squid_proxy_plug-in
|
Buffer overflow in Initial Redirect (ir) Squid Proxy Plug-In 0.1 and 0.2 may allow attackers to cause a denial of service and execute arbitrary code via unknown vectors.
|
NVD-CWE-Other
|
CVE-2005-0813
|
2008-09-6 05:47 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268776
|
- |
|
novell
|
netware
|
The xvesa code in Novell Netware 6.5 SP2 and SP3 allows remote attackers to redirect the xsession without authentication via a direct request to GUIMirror/Start.
|
NVD-CWE-Other
|
CVE-2005-0819
|
2008-09-6 05:47 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268777
|
- |
|
-
|
-
|
Microsoft Office InfoPath 2003 SP1 includes sensitive information in the Manifest.xsf file in a custom .xsn form, which allows attackers to obtain printer and network information, obtain the database…
|
NVD-CWE-Other
|
CVE-2005-0820
|
2008-09-6 05:47 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268778
|
- |
|
citrix
|
metaframe_password_manager
|
Citrix Metaframe Password Manager 2.5 and earlier stores a password in cleartext although it is obfuscated when presented to a user, which allows users to view their secondary passwords even if it is…
|
NVD-CWE-Other
|
CVE-2005-0822
|
2008-09-6 05:47 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268779
|
- |
|
lgames
|
ltris
|
Buffer overflow in LTris before 1.0.10 allows local users to execute arbitrary code via a crafted highscores file.
|
NVD-CWE-Other
|
CVE-2005-0825
|
2008-09-6 05:47 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268780
|
- |
|
xzabite
|
dyndnsupdate
|
Multiple buffer overflows in Xzabite DYNDNSUpdate 0.6.15 and earlier, including the ipcheck function in dyndnsupdate.c, allow remote attackers who spoof a dyndns.org server to execute arbitrary code …
|
NVD-CWE-Other
|
CVE-2005-0830
|
2008-09-6 05:47 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
