|
268971
|
- |
|
php_heaven
|
phpmychat
|
PHPMyChat 0.14.5 does not remove or protect setup.php3 after installation, which allows attackers to obtain sensitive information including database passwords via a direct request.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2004-2718
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268972
|
- |
|
mailenable
|
mailenable
|
HTTPMail service in MailEnable Professional 1.18 does not properly handle arguments to the Authorization header, which allows remote attackers to cause a denial of service (null dereference and appli…
|
NVD-CWE-Other
|
CVE-2004-2726
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268973
|
- |
|
linux
|
linux_kernel
|
Multiple integer overflows in Sbus PROM driver (drivers/sbus/char/openprom.c) for the Linux kernel 2.4.x up to 2.4.27, 2.6.x up to 2.6.7, and possibly later versions, allow local users to execute arb…
|
CWE-189
Numeric Errors
|
CVE-2004-2731
|
2008-09-6 05:44 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268974
|
- |
|
zen_cart
|
zen_cart
|
SQL injection vulnerability in application_top.php for Zen Cart 1.1.3 before patch 2 may allow remote attackers to execute arbitrary SQL commands via the products_id parameter.
|
NVD-CWE-Other
|
CVE-2004-2025
|
2008-09-6 05:43 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268975
|
- |
|
-
|
-
|
The Altiris Client Service for Windows 5.6 SP1 Hotfix E (5.6.181) allows local users to execute arbitrary commands by opening the AClient tray icon and using the View Log File option, a different vul…
|
NVD-CWE-Other
|
CVE-2004-2070
|
2008-09-6 05:43 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268976
|
- |
|
microsoft
|
baseline_security_analyzer
|
Microsoft Baseline Security Analyzer (MBSA) 1.2 does not correctly identify systems that have been patched but remain vulnerable to exploit until the system is rebooted, possibly giving the administr…
|
NVD-CWE-Other
|
CVE-2004-2091
|
2008-09-6 05:43 |
2004-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268977
|
- |
|
symantec
|
norton_antivirus
|
Unknown versions of Symantec Norton AntiVirus and Microsoft Outlook allow attackers to cause a denial of service (crash) via malformed e-mail messages (1) without a body or (2) without a carriage ret…
|
NVD-CWE-Other
|
CVE-2004-2147
|
2008-09-6 05:43 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268978
|
- |
|
xmlstarlet
|
command_line_xml_toolkit
|
Format string vulnerability in xml_elem.c for XMLStarlet Command Line XML Toolkit 0.9.3 may allow attackers to cause a denial of service or execute arbitrary code.
|
NVD-CWE-Other
|
CVE-2004-2160
|
2008-09-6 05:43 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268979
|
- |
|
microsoft
|
windows_xp
|
The Internet Connection Firewall (ICF) in Microsoft Windows XP SP2 is configured by default to trust sessmgr.exe, which allows local users to use sessmgr.exe to create a local listening port that byp…
|
NVD-CWE-Other
|
CVE-2004-2176
|
2008-09-6 05:43 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268980
|
- |
|
devoybb
|
devoybb_web_forum
|
Cross-site scripting (XSS) vulnerability in DevoyBB Web Forum 1.0.0 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
|
NVD-CWE-Other
|
CVE-2004-2177
|
2008-09-6 05:43 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
