|
268431
|
- |
|
mandrakesoft
|
mandrake_lam-runtime
|
The LAM runtime environment package (lam-runtime-7.0.6-2mdk) on Mandrake Linux installs the mpi user without a password, which allows local users to gain privileges.
|
NVD-CWE-Other
|
CVE-2005-1379
|
2016-10-18 12:19 |
2005-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268432
|
- |
|
apple
|
safari
|
Safari 1.3 allows remote attackers to cause a denial of service (application crash) via a long https URL that triggers a NULL pointer dereference.
|
NVD-CWE-Other
|
CVE-2005-1385
|
2016-10-18 12:19 |
2005-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268433
|
- |
|
francisco_burzi
|
php-nuke
|
PHP-Nuke 7.6 and earlier allows remote attackers to obtain sensitive information via a direct request to (1) ipban.php, (2) db.php, (3) lang-norwegian.php, (4) lang-indonesian.php, (5) lang-greek.php…
|
NVD-CWE-Other
|
CVE-2005-1386
|
2016-10-18 12:19 |
2005-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268434
|
- |
|
kristofer_szymanski
|
cocktail
|
Cocktail 3.5.4 and possibly earlier in Mac OS X passes the administrative password on the command line to sudo in cleartext, which allows local users to gain sensitive information by running listing …
|
NVD-CWE-Other
|
CVE-2005-1387
|
2016-10-18 12:19 |
2005-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268435
|
- |
|
esri
|
arcinfo_workstation
|
Multiple buffer overflows in ArcGIS for ESRI ArcInfo Workstation 9.0 allow local users to execute arbitrary code via long command line arguments to (1) asmaster, (2) asuser, (3) asutility, (4) se, or…
|
NVD-CWE-Other
|
CVE-2005-1393
|
2016-10-18 12:19 |
2005-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268436
|
- |
|
rsa
|
securid_web_agent
|
Heap-based buffer overflow in RSA SecurID Web Agent 5, 5.2, and 5.3 allows remote attackers to execute arbitrary code via crafted chunked-encoding data.
|
NVD-CWE-Other
|
CVE-2005-1471
|
2016-10-18 12:19 |
2005-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268437
|
- |
|
oracle
|
database_server
|
SQL injection vulnerability in the SYS.DBMS_CDC_IPUBLISH.CREATE_SCN_CHANGE_SET procedure in Oracle Database Server 10g allows remote attackers to execute arbitrary SQL commands via the CHANGE_SET_NAM…
|
NVD-CWE-Other
|
CVE-2005-1197
|
2016-10-18 12:18 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268438
|
- |
|
anaconda_partners
|
foundation_directory
|
Directory traversal vulnerability in apexec.pl for Anaconda Foundation Directory allows remote attackers to read arbitrary files via hex-encoded null characters (%00) in the middle of ".." sequences …
|
NVD-CWE-Other
|
CVE-2005-1198
|
2016-10-18 12:18 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268439
|
- |
|
infopop
|
ultimate_bulletin_board
|
SQL injection vulnerability in printthread.php in UBB.Threads allows remote attackers to execute arbitrary SQL commands via the main parameter.
|
NVD-CWE-Other
|
CVE-2005-1199
|
2016-10-18 12:18 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268440
|
- |
|
egroupware
|
egroupware
|
Multiple cross-site scripting (XSS) vulnerabilities in eGroupware before 1.0.0.007 allow remote attackers to inject arbitrary web script or HTML via the (1) ab_id, (2) page, (3) type, or (4) lang par…
|
NVD-CWE-Other
|
CVE-2005-1202
|
2016-10-18 12:18 |
2005-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
