|
268831
|
- |
|
microsoft
|
log_sink_class_activex_control
|
The Microsoft Log Sink Class ActiveX control in pkmcore.dll is marked as "safe for scripting" for Internet Explorer, which allows remote attackers to create or append to arbitrary files.
|
NVD-CWE-Other
|
CVE-2005-0360
|
2008-09-6 05:46 |
2005-07-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268832
|
- |
|
awstats
|
awstats
|
awstats.pl in AWStats 6.2 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) "pluginmode", (2) "loadplugin", or (3) "noloadplugin" parameters.
|
NVD-CWE-Other
|
CVE-2005-0362
|
2008-09-6 05:46 |
2005-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268833
|
- |
|
awstats
|
awstats
|
awstats.pl in AWStats 4.0 and 6.2 allows remote attackers to execute arbitrary commands via shell metacharacters in the config parameter.
|
NVD-CWE-Other
|
CVE-2005-0363
|
2008-09-6 05:46 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268834
|
- |
|
mailreader.com
|
mailreader.com
|
Cross-site scripting (XSS) vulnerability in network.cgi in mailreader before 2.3.29 earlier allows remote attackers to inject arbitrary web script or HTML via MIME text/enriched or text/richtext mess…
|
NVD-CWE-Other
|
CVE-2005-0386
|
2008-09-6 05:46 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268835
|
- |
|
remstats
|
remstats
|
remstats 1.0.13 and earlier, when processing uptime data, allows local users to create or overwrite arbitrary files via a symlink attack on temporary files.
|
NVD-CWE-Other
|
CVE-2005-0387
|
2008-09-6 05:46 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268836
|
- |
|
remstats
|
remstats
|
Unknown vulnerability in the remoteping service in remstats 1.0.13 and earlier allows remote attackers to execute arbitrary commands "due to missing input sanitising."
|
NVD-CWE-Other
|
CVE-2005-0388
|
2008-09-6 05:46 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268837
|
- |
|
crip
|
crip
|
The helper scripts for crip 3.5 do not properly use temporary files, which allows local users to have an unknown impact with unknown attack vectors.
|
NVD-CWE-Other
|
CVE-2005-0393
|
2008-09-6 05:46 |
2005-07-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268838
|
- |
|
kmail
kde
|
kmail
kde
|
KMail 1.7.1 in KDE 3.3.2 allows remote attackers to spoof email information, such as whether the email has been digitally signed or encrypted, via HTML formatted email.
|
NVD-CWE-Other
|
CVE-2005-0404
|
2008-09-6 05:46 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268839
|
- |
|
sun
|
j2se
|
Argument injection vulnerability in Java Web Start for J2SE 1.4.2 up to 1.4.2_06, on Mac OS X, allows untrusted applications to gain privileges via the value parameter of a property tag in a JNLP fil…
|
NVD-CWE-Other
|
CVE-2005-0418
|
2008-09-6 05:46 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268840
|
- |
|
ibm
|
websphere_application_server
|
Unknown vulnerability in IBM Websphere Application Server 5.0, 5.1, and 6.0 when running on Windows, allows remote attackers to obtain the source code for Java Server Pages (.jsp) via a crafted URL t…
|
NVD-CWE-Other
|
CVE-2005-0425
|
2008-09-6 05:46 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
