|
266791
|
- |
|
qbik
|
wingate
|
WinGate 5.2.3 build 901 and 6.0 beta 2 build 942, and other versions such as 5.0.5, allows remote attackers to read arbitrary files via leading slash (//) characters in a URL request to the wingate-i…
|
NVD-CWE-Other
|
CVE-2004-0578
|
2017-07-11 10:30 |
2004-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266792
|
- |
|
william_deich
debian
|
super
debian_linux
|
Format string vulnerability in super before 3.23 allows local users to execute arbitrary code as root.
|
NVD-CWE-Other
|
CVE-2004-0579
|
2017-07-11 10:30 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266793
|
- |
|
gnu
mandrakesoft
|
ksymoops
mandrake_linux
mandrake_linux_corporate_server
|
ksymoops-gznm script in Mandrake Linux 9.1 through 10.0, and Corporate Server 2.1, allows local users to delete arbitrary files via a symlink attack on files in /tmp.
|
NVD-CWE-Other
|
CVE-2004-0581
|
2017-07-11 10:30 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266794
|
- |
|
webmin
|
webmin
|
Unknown vulnerability in Webmin 1.140 allows remote attackers to bypass access control rules and gain read access to configuration information for a module.
|
NVD-CWE-Other
|
CVE-2004-0582
|
2017-07-11 10:30 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266795
|
- |
|
usermin
webmin
debian
|
usermin
webmin
debian_linux
|
The account lockout functionality in (1) Webmin 1.140 and (2) Usermin 1.070 does not parse certain character strings, which allows remote attackers to conduct a brute force attack to guess user IDs a…
|
NVD-CWE-Other
|
CVE-2004-0583
|
2017-07-11 10:30 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266796
|
- |
|
horde
|
imp
|
Unknown vulnerability in Horde IMP 3.2.3 and earlier, before a "security fix," does not properly validate input, which allows remote attackers to execute arbitrary script as other users via script or…
|
NVD-CWE-Other
|
CVE-2004-0584
|
2017-07-11 10:30 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266797
|
- |
|
ibm
|
acprunner
|
acpRunner ActiveX 1.2.5.0 allows remote attackers to execute arbitrary code via the (1) DownLoadURL, (2) SaveFilePath, and (3) Download ActiveX methods.
|
NVD-CWE-Other
|
CVE-2004-0586
|
2017-07-11 10:30 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266798
|
- |
|
usermin
|
usermin
|
Cross-site scripting (XSS) vulnerability in the web mail module for Usermin 1.070 allows remote attackers to insert arbitrary HTML and script via e-mail messages.
|
NVD-CWE-Other
|
CVE-2004-0588
|
2017-07-11 10:30 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266799
|
- |
|
usermin
|
usermin
|
This vulnerability is addressed in the following product update:
Usermin, Usermin, 1.080
|
NVD-CWE-Other
|
CVE-2004-0588
|
2017-07-11 10:30 |
2004-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266800
|
- |
|
frees_wan
openswan
strongswan
|
frees_wan
super_frees_wan
openswan
strongswan
|
FreeS/WAN 1.x and 2.x, and other related products including superfreeswan 1.x, openswan 1.x before 1.0.6, openswan 2.x before 2.1.4, and strongSwan before 2.1.3, allows remote attackers to authentica…
|
NVD-CWE-Other
|
CVE-2004-0590
|
2017-07-11 10:30 |
2004-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
