|
267201
|
- |
|
oracle
|
application_server
collaboration_suite
database_server
e-business_suite
enterprise_manager
enterprise_manager_database_control
enterprise_manager_grid_control
oracle10g
oracle…
|
Stack-based buffer overflow in Oracle 9i and 10g allows remote attackers to execute arbitrary code via a long token in the text of a wrapped procedure.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2004-1371
|
2017-07-11 10:30 |
2004-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267202
|
- |
|
ibm
|
db2_universal_database
|
Multiple stack-based buffer overflows in IBM DB2 7.x and 8.1 allow local users to execute arbitrary code via (1) a long third argument to the rec2xml function or (2) a long filename argument to the g…
|
NVD-CWE-Other
|
CVE-2004-1372
|
2017-07-11 10:30 |
2004-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267203
|
- |
|
nullsoft
|
shoutcast_server
|
Format string vulnerability in SHOUTcast 1.9.4 allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via format string specifiers in a content URL, as de…
|
NVD-CWE-Other
|
CVE-2004-1373
|
2017-07-11 10:30 |
2004-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267204
|
- |
|
gnu
turbolinux
|
a2ps
turbolinux_home
turbolinux_server
turbolinux_workstation
|
The (1) fixps (aka fixps.in) and (2) psmandup (aka psmandup.in) scripts in a2ps before 4.13 allow local users to overwrite arbitrary files via a symlink attack on temporary files.
|
NVD-CWE-Other
|
CVE-2004-1377
|
2017-07-11 10:30 |
2004-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267205
|
- |
|
jabberstudio
|
jabberd
jadc2s
|
The expat XML parser code, as used in the open source Jabber (jabberd) 1.4.3 and earlier, jadc2s 0.9.0 and earlier, and possibly other packages, allows remote attackers to cause a denial of service (…
|
NVD-CWE-Other
|
CVE-2004-1378
|
2017-07-11 10:30 |
2004-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267206
|
- |
|
xine
|
xine
xine-lib
|
Heap-based buffer overflow in the DVD subpicture decoder in xine xine-lib 1-rc5 and earlier allows remote attackers to execute arbitrary code via a (1) DVD or (2) MPEG subpicture header where the sec…
|
NVD-CWE-Other
|
CVE-2004-1379
|
2017-07-11 10:30 |
2004-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267207
|
- |
|
phpgroupware
|
phpgroupware
|
Multiple SQL injection vulnerabilities in phpGroupWare 0.9.16.003 and earlier allow remote attackers to execute arbitrary SQL statements via the (1) order, (2) project_id, (3) pro_main, or (4) hours_…
|
NVD-CWE-Other
|
CVE-2004-1383
|
2017-07-11 10:30 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267208
|
- |
|
phpgroupware
|
phpgroupware
|
Multiple cross-site scripting (XSS) vulnerabilities in phpGroupWare 0.9.16.003 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) kp3, (2) type, (3) msg, (4) forum_…
|
NVD-CWE-Other
|
CVE-2004-1384
|
2017-07-11 10:30 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267209
|
- |
|
phpgroupware
|
phpgroupware
|
phpGroupWare 0.9.16.003 and earlier allows remote attackers to gain sensitive information via (1) unexpected characters in the session ID such as shell metacharacters, (2) an invalid appname paramete…
|
NVD-CWE-Other
|
CVE-2004-1385
|
2017-07-11 10:30 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267210
|
- |
|
tiki
|
tikiwiki_cms\/groupware
|
TikiWiki before 1.8.4.1 does not properly verify uploaded images, which could allow remote attackers to upload and execute arbitrary PHP scripts, a different vulnerability than CVE-2005-0200.
|
CWE-20
Improper Input Validation
|
CVE-2004-1386
|
2017-07-11 10:30 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
