|
267951
|
- |
|
-
|
-
|
The Web Services fat client for BEA WebLogic Server and Express 7.0 SP4 and earlier, when using 2-way SSL and multiple certificates to connect to the same URL, may use the incorrect identity after th…
|
NVD-CWE-Other
|
CVE-2004-1755
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267952
|
- |
|
bea
|
weblogic_server
|
BEA WebLogic Server and WebLogic Express 8.1 SP2 and earlier, and 7.0 SP4 and earlier, when using 2-way SSL with a custom trust manager, may accept a certificate chain even if the trust manager rejec…
|
NVD-CWE-Other
|
CVE-2004-1756
|
2017-07-11 10:31 |
2004-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267953
|
- |
|
bea
|
weblogic_server
|
BEA WebLogic Server and Express 8.1, SP1 and earlier, stores the administrator password in cleartext in config.xml, which allows local users to gain privileges.
|
NVD-CWE-Other
|
CVE-2004-1757
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267954
|
- |
|
bea
|
weblogic_server
|
BEA WebLogic Server and WebLogic Express version 8.1 up to SP2, 7.0 up to SP4, and 6.1 up to SP6 may store the database username and password for an untargeted JDBC connection pool in plaintext in co…
|
NVD-CWE-Other
|
CVE-2004-1758
|
2017-07-11 10:31 |
2004-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267955
|
- |
|
cisco
ibm
|
emergency_responder
ip_call_center_express_enhanced
ip_call_center_express_standard
ip_interactive_voice_response
personal_assistant
director_agent
call_manager
internet_service_…
|
Cisco voice products, when running the IBM Director Agent on IBM servers before OS 2000.2.6, allows remote attackers to cause a denial of service (CPU consumption) via arbitrary packets to TCP port 1…
|
CWE-399
Resource Management Errors
|
CVE-2004-1759
|
2017-07-11 10:31 |
2004-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267956
|
- |
|
cisco
ibm
|
emergency_responder
ip_call_center_express_enhanced
ip_call_center_express_standard
ip_interactive_voice_response
personal_assistant
director_agent
call_manager
internet_service_…
|
The default installation of Cisco voice products, when running the IBM Director Agent on IBM servers before OS 2000.2.6, does not require authentication, which allows remote attackers to gain adminis…
|
CWE-287
Improper Authentication
|
CVE-2004-1760
|
2017-07-11 10:31 |
2004-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267957
|
- |
|
f-secure
|
f-secure_anti-virus
|
Unknown vulnerability in F-Secure Anti-Virus (FSAV) 4.52 for Linux before Hotfix 3 allows the Sober.D worm to bypass FASV.
|
NVD-CWE-Other
|
CVE-2004-1762
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267958
|
- |
|
haht_commerce
|
hahtsite_scenario_server
|
Buffer overflow in hsrun.exe for HAHTsite Scenario Server 5.1 Patch 06 (build 91) allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long project n…
|
NVD-CWE-Other
|
CVE-2004-1763
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267959
|
- |
|
mod_security
|
mod_security
|
Off-by-one buffer overflow in ModSecurity (mod_security) 1.7.4 for Apache 2.x, when SecFilterScanPost is enabled, allows remote attackers to execute arbitrary code via crafted POST requests.
|
NVD-CWE-Other
|
CVE-2004-1765
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267960
|
- |
|
-
|
-
|
The default installation of NetScreen-Security Manager before Feature Pack 1 does not enable encryption for communication with devices running ScreenOS 5.0, which allows remote attackers to obtain se…
|
NVD-CWE-Other
|
CVE-2004-1766
|
2017-07-11 10:31 |
2004-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
