267401
|
- |
|
the_ignition_project
|
ignitionserver
|
Unknown vulnerability in The Ignition Project ignitionServer 0.1.2 through 0.3.1, with the linking service enabled, allows remote attackers to bypass authentication.
|
NVD-CWE-Other
|
CVE-2004-2431
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267402
|
- |
|
-
|
-
|
WinAgents TFTP Server 3.0 allows remote attackers to cause a denial of service (crash) via a request for a file with a long file name, possibly due to an off-by-one buffer overflow.
|
NVD-CWE-Other
|
CVE-2004-2432
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267403
|
- |
|
altnet grokster kazaa
|
altnet_download_manager grokster kazaa_media_desktop
|
Buffer overflow in the IsValidFile function in the ADM ActiveX control for Altnet Download Manager 4.0.0.4 and earlier, as used in Kazaa Media Desktop 1.3 through 2.6.4 and Grokkster 1.3 through 2.6,…
|
NVD-CWE-Other
|
CVE-2004-2433
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267404
|
- |
|
microsoft
|
ie
|
Microsoft Internet Explorer 6.0 SP1 allows remote attackers to cause a denial of service (browser crash) via a link with "::{" (colon colon left brace), which triggers a null dereference when the use…
|
NVD-CWE-Other
|
CVE-2004-2434
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267405
|
- |
|
peoplesoft
|
hrms
|
Cross-site scripting (XSS) vulnerability in PeopleSoft Human Resources Management System (HRMS) 7.0, when "web enabled" using HTML Access, allows remote attackers to inject arbitrary web script or HT…
|
NVD-CWE-Other
|
CVE-2004-2435
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267406
|
- |
|
php_fusion
|
php_fusion
|
SQL injection vulnerability in PHP-Fusion 4.01 allows remote attackers to execute arbitrary SQL commands via the rowstart parameter to (1) index.php or (2) members.php, or (3) the comment_id paramete…
|
NVD-CWE-Other
|
CVE-2004-2437
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267407
|
- |
|
php_fusion
|
php_fusion
|
Cross-site scripting (XSS) vulnerability in PHP-Fusion 4.01 allows remote attackers to inject arbitrary web script or HTML via the (1) Submit News, (2) Submit Link or (3) Submit Article field.
|
NVD-CWE-Other
|
CVE-2004-2438
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267408
|
- |
|
hp
|
color_laserjet color_laserjet_4600 laserjet_2500 laserjet_3000 laserjet_3700 laserjet_4100_mfp laserjet_4200 laserjet_4300 laserjet_9000 laserjet_9000_mfp laserjet_9040_…
|
The remote upgrade capability in HP LaserJet 4200 and 4300 printers does not require a password, which allows remote attackers to upgrade firmware.
|
NVD-CWE-Other
|
CVE-2004-2439
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267409
|
- |
|
proxytunnel
|
proxytunnel
|
Unspecified vulnerability in cmdline.c in proxytunnel 1.1.3 and earlier allows local users to obtain proxy credentials (username or password) of other users.
|
NVD-CWE-Other
|
CVE-2004-2440
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
267410
|
- |
|
kerio
|
kerio_mailserver
|
Unspecified vulnerability in Kerio MailServer before 6.0.3 has unknown impact and unknown remote attack vectors, related to a "potential security issue."
|
NVD-CWE-Other
|
CVE-2004-2441
|
2017-07-11 10:31 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|