|
344951
|
- |
|
-
|
-
|
Uapplication Ublog Reload stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for mdb-database/…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-1426
|
2017-10-11 10:30 |
2005-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344952
|
- |
|
gnu
|
gnutls
|
The "record packet parsing" in GnuTLS 1.2 before 1.2.3 and 1.0 before 1.0.25 allows remote attackers to cause a denial of service, possibly related to padding bytes in gnutils_cipher.c.
|
NVD-CWE-Other
|
CVE-2005-1431
|
2017-10-11 10:30 |
2005-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344953
|
- |
|
freeradius
|
freeradius
|
SQL injection vulnerability in the radius_xlat function in the SQL module for FreeRADIUS 1.0.2 and earlier allows remote authenticated users to execute arbitrary SQL commands via (1) group_membership…
|
NVD-CWE-Other
|
CVE-2005-1454
|
2017-10-11 10:30 |
2005-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344954
|
- |
|
freeradius
|
freeradius
|
Buffer overflow in the sql_escape_func function in the SQL module for FreeRADIUS 1.0.2 and earlier allows remote attackers to cause a denial of service (crash).
|
NVD-CWE-Other
|
CVE-2005-1455
|
2017-10-11 10:30 |
2005-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344955
|
- |
|
mozilla
|
firefox
|
Firefox 1.0.3 allows remote attackers to execute arbitrary Javascript in other domains by using an IFRAME and causing the browser to navigate to a previous javascript: URL, which can lead to arbitrar…
|
NVD-CWE-Other
|
CVE-2005-1476
|
2017-10-11 10:30 |
2005-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344956
|
- |
|
mozilla
|
firefox
|
The install function in Firefox 1.0.3 allows remote web sites on the browser's whitelist, such as update.mozilla.org or addon.mozilla.org, to execute arbitrary Javascript with chrome privileges, lead…
|
NVD-CWE-Other
|
CVE-2005-1477
|
2017-10-11 10:30 |
2005-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344957
|
- |
|
squid
|
squid
|
Squid 2.5 STABLE9 and earlier, when the DNS client port is unfiltered and the environment does not prevent IP spoofing, allows remote attackers to spoof DNS lookups.
|
NVD-CWE-Other
|
CVE-2005-1519
|
2017-10-11 10:30 |
2005-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344958
|
- |
|
mozilla
|
firefox
mozilla
|
Firefox before 1.0.4 and Mozilla Suite before 1.7.8 does not properly implement certain security checks for script injection, which allows remote attackers to execute script via "Wrapped" javascript:…
|
NVD-CWE-Other
|
CVE-2005-1531
|
2017-10-11 10:30 |
2005-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344959
|
- |
|
mozilla
|
firefox
mozilla
|
Firefox before 1.0.4 and Mozilla Suite before 1.7.8 do not properly limit privileges of Javascript eval and Script objects in the calling context, which allows remote attackers to conduct unauthorize…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2005-1532
|
2017-10-11 10:30 |
2005-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
344960
|
- |
|
gnu
|
gdb
|
gdb before 6.3 searches the current working directory to load the .gdbinit configuration file, which allows local users to execute arbitrary commands as the user running gdb.
|
NVD-CWE-Other
|
CVE-2005-1705
|
2017-10-11 10:30 |
2005-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
