|
267091
|
- |
|
parlano
|
mindalign
|
Cross-site scripting (XSS) vulnerability in Parlano MindAlign 5.0 and later versions allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
|
NVD-CWE-Other
|
CVE-2005-2590
|
2017-07-11 10:32 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267092
|
- |
|
parlano
|
mindalign
|
Parlano MindAlign 5.0 and later versions allows remote attackers to list valid users via unknown vectors, aka the "User Enumeration" vulnerability.
|
NVD-CWE-Other
|
CVE-2005-2591
|
2017-07-11 10:32 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267093
|
- |
|
parlano
|
mindalign
|
Unknown vulnerability in Parlano MindAlign 5.0 and later versions allows remote attackers to bypass authentication via unknown vectors.
|
NVD-CWE-Other
|
CVE-2005-2592
|
2017-07-11 10:32 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267094
|
- |
|
parlano
|
mindalign
|
Parlano MindAlign 5.0 and later versions uses weak encryption, with unknown impact and attack vectors.
|
NVD-CWE-Other
|
CVE-2005-2593
|
2017-07-11 10:32 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267095
|
- |
|
aol
|
aol_client_software
|
AOL Client Software 9.0 uses insecure permissions for its installation path, which allows local users to execute arbitrary code with SYSTEM privileges by replacing ACSD.exe with a malicious program.
|
NVD-CWE-Other
|
CVE-2005-2597
|
2017-07-11 10:32 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267096
|
- |
|
hummingbird
|
connectivity
|
Hummingbird FTP for Connectivity 10.0 uses weak encryption (trivial encoding) to store the user's password in the FTP profile, which allows attackers to gain privileges.
|
NVD-CWE-Other
|
CVE-2005-2599
|
2017-07-11 10:32 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267097
|
- |
|
symantec_veritas
|
backup_exec
backup_exec_remote_agent
netbackup
|
VERITAS Backup Exec for Windows Servers 8.6 through 10.0, Backup Exec for NetWare Servers 9.0 and 9.1, and NetBackup for NetWare Media Server Option 4.5 through 5.1 uses a static password during auth…
|
NVD-CWE-Other
|
CVE-2005-2611
|
2017-07-11 10:32 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267098
|
- |
|
cpaint
|
cpaint
|
Unknown vulnerability in CPAINT Ajax Toolkit before 1.3-SP allows attackers to execute arbitrary PHP or ASP code or read files via unknown vectors.
|
NVD-CWE-Other
|
CVE-2005-2613
|
2017-07-11 10:32 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267099
|
- |
|
novell
|
groupwise
|
grpWise.exe for Novell GroupWise client 5.5 through 6.5.2 stores the password in plaintext in memory, which allows attackers to obtain the password using a debugger or another mechanism to read proce…
|
NVD-CWE-Other
|
CVE-2005-2620
|
2017-07-11 10:32 |
2005-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267100
|
- |
|
realnetworks
|
realone_player
realplayer
|
Heap-based buffer overflow in DUNZIP32.DLL for RealPlayer 8, 10, and 10.5 and RealOne Player 1 and 2 allows remote attackers to execute arbitrary code via a crafted RealPlayer Skin (RJS) file, a diff…
|
NVD-CWE-Other
|
CVE-2005-2630
|
2017-07-11 10:32 |
2005-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
