|
268931
|
- |
|
e-merge
|
unace
|
Multiple buffer overflows in unace 1.2b allow attackers to execute arbitrary code via (1) 2 overflows in ACE archives, (2) a long command line argument, or (3) certain "Ready for next volume" message…
|
NVD-CWE-Other
|
CVE-2005-0160
|
2008-09-6 05:45 |
2005-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268932
|
- |
|
e-merge
|
unace
|
Multiple directory traversal vulnerabilities in unace 1.2b allow attackers to overwrite arbitrary files via an ACE archive containing (1) ../ sequences or (2) absolute pathnames.
|
NVD-CWE-Other
|
CVE-2005-0161
|
2008-09-6 05:45 |
2005-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268933
|
- |
|
yahoo
|
messenger
|
The Audio Setup Wizard (asw.dll) in Yahoo! Messenger 6.0.0.1750, and possibly other versions, allows attackers to arbitrary code by placing a malicious ping.exe program into the Messenger program dir…
|
NVD-CWE-Other
|
CVE-2005-0242
|
2008-09-6 05:45 |
2005-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268934
|
- |
|
yahoo
|
messenger
|
Yahoo! Messenger 6.0.0.1750, and possibly other versions before 6.0.0.1921, does not properly display long filenames in file dialog boxes, which could allow remote attackers to trick users into downl…
|
NVD-CWE-Other
|
CVE-2005-0243
|
2008-09-6 05:45 |
2005-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268935
|
- |
|
jbrowser
|
jbrowser
|
Directory traversal vulnerability in browser.php in JBrowser 1.0 through 2.1 allows remote attackers to read arbitrary files via the directory parameter. NOTE: the provenance of this information is …
|
CWE-22
Path Traversal
|
CVE-2004-2750
|
2008-09-6 05:45 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268936
|
- |
|
postnuke_software_foundation
|
postnuke
|
Cross-site scripting (XSS) vulnerability in the Downloads module in PostNuke up to 0.726, and possibly later versions, allows remote attackers to inject arbitrary HTML and web script via the ttitle p…
|
CWE-79
Cross-site Scripting
|
CVE-2004-2752
|
2008-09-6 05:45 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268937
|
- |
|
yabb
|
yabb_se
|
SQL injection vulnerability in SSI.php in YaBB SE 1.5.4, 1.5.3, and possibly other versions before 1.5.5 allows remote attackers to execute arbitrary SQL commands via the ID_MEMBER parameter to the (…
|
CWE-89
SQL Injection
|
CVE-2004-2754
|
2008-09-6 05:45 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268938
|
- |
|
xoops
|
xoops
|
Cross-site scripting (XSS) vulnerability in viewtopic.php in Xoops 2.x, possibly 2 through 2.0.5, allows remote attackers to inject arbitrary web script or HTML via the (1) forum and (2) topic_id par…
|
CWE-79
Cross-site Scripting
|
CVE-2004-2756
|
2008-09-6 05:45 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268939
|
- |
|
securecomputing
|
sidewinder_g2
|
Secure Computing Corporation Sidewinder G2 6.1.0.01 allows remote attackers to cause a denial of service (CPU consumption) via delayed responses to DNS queries.
|
NVD-CWE-Other
|
CVE-2004-2399
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268940
|
- |
|
phpgroupware
|
phpgroupware
|
Unknown "overflow" in the phpgw_config table for phpGroupWare before 0.9.14.002 has unknown attack vectors and impact.
|
NVD-CWE-Other
|
CVE-2004-2406
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
