Export limit exceeded: 29880 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (29880 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2005-2068 | 1 Freebsd | 1 Freebsd | 2025-04-03 | N/A |
| FreeBSD 4.x through 4.11 and 5.x through 5.4 allows remote attackers to modify certain TCP options via a TCP packet with the SYN flag set for an already established session. | ||||
| CVE-2005-2073 | 1 Ibm | 1 Db2 | 2025-04-03 | N/A |
| Unknown vulnerability in IBM DB2 8.1.4 through 8.1.9 and 8.2.0 through 8.2.2 allows local users with SELECT privileges to conduct unauthorized activities and insert, update or delete table contents. | ||||
| CVE-2005-2076 | 1 Hp | 1 Version Control Repository Manager | 2025-04-03 | N/A |
| HP Version Control Repository Manager (VCRM) before 2.1.1.730 does not properly handle the "@" character in a proxy password, which could allow attackers with physical access to obtain portions of the password when it is displayed to the screen. | ||||
| CVE-2005-2081 | 1 Digium | 1 Asterisk | 2025-04-03 | N/A |
| Stack-based buffer overflow in the function that parses commands in Asterisk 1.0.7, when the 'write = command' option is enabled, allows remote attackers to execute arbitrary code via a command that has two double quotes followed by a tab character. | ||||
| CVE-2005-2078 | 1 Sofotex | 1 Bisonftp | 2025-04-03 | N/A |
| BisonFTP Server V4R1 allows remote authenticated users to cause a denial of service via an invalid command with a long argument. | ||||
| CVE-2005-2083 | 1 Truenorth Software | 1 Ia Emailserver | 2025-04-03 | N/A |
| Format string vulnerability in IMAP4 in IA eMailServer Corporate Edition 5.2.2 build 1051 allows remote attackers to cause a denial of service (application crash) via a LIST command with format string specifiers as the second argument. | ||||
| CVE-2005-2082 | 1 Cgi-club | 1 Imtrset | 2025-04-03 | N/A |
| im_trbbs.cgi in imTRSET 1.02 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the df parameter. | ||||
| CVE-2005-2086 | 1 Phpbb Group | 1 Phpbb | 2025-04-03 | N/A |
| PHP remote file inclusion vulnerability in viewtopic.php in phpBB 2.0.15 and earlier allows remote attackers to execute arbitrary PHP code. | ||||
| CVE-2005-2382 | 1 Oray | 1 Peanuthull | 2025-04-03 | N/A |
| Oray PeanutHull 3.0.1.0 and earlier does not properly drop SYSTEM privileges when launched from the system tray, which allows local users to gain privileges by accessing the Help functionality. | ||||
| CVE-2005-2399 | 1 Php Surveyor | 1 Php Surveyor | 2025-04-03 | N/A |
| PHP Surveyor 0.98 allows remote attackers to trigger SQL errors via missing parameters to (1) browse.php, (2) export.php, (3) conditions.php, or (4) spss.php. | ||||
| CVE-2005-2410 | 1 Gnome | 1 Networkmanager | 2025-04-03 | N/A |
| Format string vulnerability in the nm_info_handler function in Network Manager may allow remote attackers to execute arbitrary code via format string specifiers in a Wireless Access Point identifier, which is not properly handled in a syslog call. | ||||
| CVE-2005-2417 | 1 Astalavista It Engineering | 1 Contrexx | 2025-04-03 | N/A |
| Contrexx before 1.0.5 allows remote attackers to obtain sensitive information via a direct request to /config/version.xml. | ||||
| CVE-2005-2432 | 1 Tincan | 1 Phplist | 2025-04-03 | N/A |
| SQL injection vulnerability in PhpList allows remote attackers to modify SQL statements via the id argument to admin pages such as (1) members or (2) admin. | ||||
| CVE-2005-2452 | 1 Libtiff | 1 Libtiff | 2025-04-03 | N/A |
| libtiff up to 3.7.0 allows remote attackers to cause a denial of service (application crash) via a TIFF image header with a zero "YCbCr subsampling" value, which causes a divide-by-zero error in (1) tif_strip.c and (2) tif_tile.c, a different vulnerability than CVE-2004-0804. | ||||
| CVE-2005-2460 | 1 Kayako | 1 Liveresponse | 2025-04-03 | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in Kayako liveResponse 2.x allow remote attackers to inject arbitrary web script or HTML via the (1) username parameter or (2) name field when entering a session or sending a message. | ||||
| CVE-2004-0249 | 1 Phpx | 1 Phpx | 2025-04-03 | N/A |
| PHPX 2.0 through 3.2.4 allows remote attackers to gain access to other accounts by modifying the cookie's PXL variable to reference another userID. | ||||
| CVE-2005-2476 | 1 Naxtor | 1 Shopping Cart | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in lost_passowrd.php in Naxtor Shopping Cart 1.0 allows remote attackers to inject arbitrary web script or HTML via the email parameter. | ||||
| CVE-2005-2510 | 1 Apple | 1 Mac Os X Server | 2025-04-03 | N/A |
| The Server Admin tool in servermgr_ipfilter for Mac OS X 10.4 to 10.4.2, when using multiple subnets and Address Groups, does not always properly write firewall rules to the Active Rules when certain conditions occur, which could result in firewall policies that are less restrictive than intended by the administrator. | ||||
| CVE-2005-2546 | 1 Arab Portal | 1 Arab Portal | 2025-04-03 | N/A |
| Arab Portal 2.0 allows remote attackers to obtain sensitive information via a long (1) username or (2) password, which reveals the path in an error message when the undefined "errmsg" function is called. | ||||
| CVE-2005-2551 | 1 Novell | 1 Edirectory | 2025-04-03 | N/A |
| Buffer overflow in dhost.exe in iMonitor for Novell eDirectory 8.7.3 on Windows allows attackers to cause a denial of service (crash) and obtain access to files via unknown vectors. | ||||