|
352291
|
- |
|
dgen
debian
|
emulator
debian_linux
|
romload.c in DGen Emulator 1.23 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files during decompression of (1) gzip or (2) bzip ROM files.
|
NVD-CWE-Other
|
CVE-2004-0770
|
2017-07-11 10:30 |
2005-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352292
|
- |
|
realnetworks
|
helix_universal_mobile_server_and_gateway
helix_universal_server
|
RealNetworks Helix Universal Server 9.0.2 for Linux and 9.0.3 for Windows allows remote attackers to cause a denial of service (CPU and memory exhaustion) via a POST request with a Content-Length hea…
|
NVD-CWE-Other
|
CVE-2004-0774
|
2017-07-11 10:30 |
2004-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352293
|
- |
|
inter7
|
courier-imap
|
Format string vulnerability in the auth_debug function in Courier-IMAP 1.6.0 through 2.2.1 and 3.x through 3.0.3, when login debugging (DEBUG_LOGIN) is enabled, allows remote attackers to execute arb…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2004-0777
|
2017-07-11 10:30 |
2004-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352294
|
- |
|
firebirdsql
mozilla
|
firebird
firefox
mozilla
|
The (1) Mozilla 1.6, (2) Firebird 0.7 and (3) Firefox 0.8 web browsers do not properly verify that cached passwords for SSL encrypted sites are only sent via SSL encrypted sessions to the site, which…
|
NVD-CWE-Other
|
CVE-2004-0779
|
2017-07-11 10:30 |
2004-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352295
|
- |
|
icecast
|
icecast
|
Cross-site scripting (XSS) vulnerability in list.cgi in the Icecast internal web server (icecast-server) 1.3.12 and earlier allows remote attackers to inject arbitrary web script via the UserAgent pa…
|
NVD-CWE-Other
|
CVE-2004-0781
|
2017-07-11 10:30 |
2004-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352296
|
- |
|
openca
|
openca
|
Cross-site scripting (XSS) vulnerability in the web frontend in OpenCA 0.9.1-8 and earlier, and 0.9.2 RC6 and earlier, allows remote attackers to inject arbitrary web script or HTML via the form inpu…
|
NVD-CWE-Other
|
CVE-2004-0787
|
2017-07-11 10:30 |
2004-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352297
|
- |
|
delegate
dnrd
don_moore
maradns
pliant
posadis
qbik
team_johnlong
axis
|
delegate
dnrd
mydns
maradns
pliant_dns_server
posadis
wingate
raidendnsd
2100_network_camera
2110_network_camera
2120_network_camera
2400_video_server
2401_video_s…
|
Multiple implementations of the DNS protocol, including (1) Poslib 1.0.2-1 and earlier as used by Posadis, (2) Axis Network products before firmware 3.13, and (3) Men & Mice Suite 2.2x before 2.2.3 a…
|
NVD-CWE-Other
|
CVE-2004-0789
|
2017-07-11 10:30 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352298
|
- |
|
debian
|
bsdmainutils
|
The calendar program in bsdmainutils 6.0 through 6.0.14 does not drop root privileges when executed with the -a flag, which allows attackers to execute arbitrary commands via a calendar event file.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2004-0793
|
2017-07-11 10:30 |
2004-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352299
|
- |
|
luke_mewburn
|
lukemftp
tnftpd
|
Multiple signal handler race conditions in lukemftpd (aka tnftpd before 20040810) allow remote authenticated attackers to cause a denial of service or execute arbitrary code.
|
NVD-CWE-Other
|
CVE-2004-0794
|
2017-07-11 10:30 |
2004-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
352300
|
- |
|
ibm
|
db2_universal_database
|
DB2 8.1 remote command server (DB2RCMD.EXE) executes the db2rcmdc.exe program as the db2admin administrator, which allows local users to gain privileges via the DB2REMOTECMD named pipe.
|
NVD-CWE-Other
|
CVE-2004-0795
|
2017-07-11 10:30 |
2004-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
