|
346151
|
- |
|
mozilla
|
firefox
mozilla
thunderbird
|
Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7, allow remote web sites to hijack the user interface via the "chrome" flag and XML User Interface Language (XUL) files.
|
NVD-CWE-Other
|
CVE-2004-0764
|
2017-10-11 10:29 |
2004-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346152
|
- |
|
mozilla
|
firefox
mozilla
thunderbird
|
The cert_TestHostName function in Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7, only checks the hostname portion of a certificate when the hostname portion of the URI is not a f…
|
NVD-CWE-Other
|
CVE-2004-0765
|
2017-10-11 10:29 |
2004-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346153
|
- |
|
mozilla
|
bugzilla
|
Buffer overflow in LHA allows remote attackers to execute arbitrary code via long pathnames in LHarc format 2 headers for a .LHZ archive, as originally demonstrated using the "x" option but also expl…
|
NVD-CWE-Other
|
CVE-2004-0769
|
2017-10-11 10:29 |
2004-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346154
|
- |
|
tsugio_okamoto
|
lha
|
Buffer overflow in the extract_one function from lhext.c in LHA may allow attackers to execute arbitrary code via a long w (working directory) command line option, a different issue than CVE-2004-076…
|
NVD-CWE-Other
|
CVE-2004-0771
|
2017-10-11 10:29 |
2004-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346155
|
- |
|
rob_flynn
|
gaim
|
The smiley theme functionality in Gaim before 0.82 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of the tar file that is dragged to the smiley selecto…
|
NVD-CWE-Other
|
CVE-2004-0784
|
2017-10-11 10:29 |
2004-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346156
|
- |
|
rob_flynn
|
gaim
|
Multiple buffer overflows in Gaim before 0.82 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) Rich Text Format (RTF) messages, (2) a long hostname for …
|
NVD-CWE-Other
|
CVE-2004-0785
|
2017-10-11 10:29 |
2004-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346157
|
- |
|
andrew_tridgell
|
rsync
|
Directory traversal vulnerability in the sanitize_path function in util.c for rsync 2.6.2 and earlier, when chroot is disabled, allows attackers to read or write certain files.
|
NVD-CWE-Other
|
CVE-2004-0792
|
2017-10-11 10:29 |
2004-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346158
|
- |
|
spamassassin
|
spamassassin
|
SpamAssassin 2.5x, and 2.6x before 2.64, allows remote attackers to cause a denial of service via certain malformed messages.
|
NVD-CWE-Other
|
CVE-2004-0796
|
2017-10-11 10:29 |
2004-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346159
|
- |
|
libtiff
pdflib
wxgtk2
apple
kde
mandrakesoft
redhat
suse
trustix
|
libtiff
pdf_library
wxgtk2
mac_os_x
mac_os_x_server
kde
mandrake_linux
enterprise_linux
enterprise_linux_desktop
fedora_core
linux_advanced_workstation
suse_linux
…
|
Multiple vulnerabilities in the RLE (run length encoding) decoders for libtiff 3.6.1 and earlier, related to buffer overflows and integer overflows, allow remote attackers to execute arbitrary code v…
|
NVD-CWE-Other
|
CVE-2004-0803
|
2017-10-11 10:29 |
2004-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346160
|
- |
|
cdrtools
|
cdrecord
|
cdrecord in the cdrtools package before 2.01, when installed setuid root, does not properly drop privileges before executing a program specified in the RSH environment variable, which allows local us…
|
NVD-CWE-Other
|
CVE-2004-0806
|
2017-10-11 10:29 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
