| Max CVSS | 7.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2005-0349 | 7.5 |
The production release of the UniversalAgent for UNIX in BrightStor ARCserve Backup 11.1 contains hard-coded credentials, which allows remote attackers to access the file system and possibly execute arbitrary commands.
|
07-04-2021 - 18:14 | 02-05-2005 - 04:00 | |
| CVE-2005-0366 | 5.0 |
The integrity check feature in OpenPGP, when handling a message that was encrypted using cipher feedback (CFB) mode, allows remote attackers to recover part of the plaintext via a chosen-ciphertext attack when the first 2 bytes of a message block are
|
10-12-2020 - 15:17 | 02-05-2005 - 04:00 | |
| CVE-2017-12718 | 6.8 |
A Classic Buffer Overflow issue was discovered in Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump, Version 1.1, 1.5, and 1.6. A third-party component used in the pump does not verify input buffer size prior to copying, leading to a buffe
|
09-10-2019 - 23:23 | 15-02-2018 - 10:29 | |
| CVE-2017-12722 | 5.0 |
An Out-of-bounds Read issue was discovered in Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump, Version 1.1, 1.5, and 1.6. A third-party component used in the pump reads memory out of bounds, causing the communications module to crash. Sm
|
02-03-2018 - 16:09 | 15-02-2018 - 10:29 | |
| CVE-2012-5296 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Mavili Guestbook, as released in November 2007, allow remote attackers to inject arbitrary web script or HTML via the id parameter to (1) approve.asp, (2) delete.asp, (3) edit.asp, or (4) edit2.a
|
29-08-2017 - 01:32 | 04-10-2012 - 17:55 | |
| CVE-2012-5299 | 7.5 |
Mavili Guestbook, as released in November 2007, allows remote attackers to edit, delete, and approve arbitrary messages via a direct request to (1) edit.asp, (2) delete.asp, or (3) approve.asp.
|
29-08-2017 - 01:32 | 04-10-2012 - 17:55 | |
| CVE-2012-5298 | 5.0 |
Mavili Guestbook, as released in November 2007, stores guestbook.mdb under the web root with insufficient access control, which allows remote attackers to read the database via a direct request.
|
29-08-2017 - 01:32 | 04-10-2012 - 17:55 | |
| CVE-2012-5297 | 7.5 |
SQL injection vulnerability in edit.asp in Mavili Guestbook, as released in November 2007, allows remote attackers to execute arbitrary SQL commands via the id parameter.
|
29-08-2017 - 01:32 | 04-10-2012 - 17:55 | |
| CVE-2008-4163 | 7.8 |
Unspecified vulnerability in ISC BIND 9.3.5-P2-W1, 9.4.2-P2-W1, and 9.5.0-P2-W1 on Windows allows remote attackers to cause a denial of service (UDP client handler termination) via unknown vectors.
|
08-08-2017 - 01:32 | 22-09-2008 - 18:52 | |
| CVE-2005-0424 | 5.0 |
Unknown vulnerability in the delete.asp program in certain versions of ASPjar Guestbook allows remote attackers to delete messages. NOTE: there is insufficient information to know if this is the same issue as CVE-2002-1730.
|
11-07-2017 - 01:32 | 27-04-2005 - 04:00 | |
| CVE-2005-0423 | 5.0 |
SQL injection vulnerability in login.asp in ASPjar Guestbook allows remote attackers to execute arbitrary SQL commands via the password field.
|
11-07-2017 - 01:32 | 27-04-2005 - 04:00 | |
| CVE-2000-0446 | 7.5 |
Buffer overflow in MDBMS database server allows remote attackers to execute arbitrary commands via a long string.
|
10-09-2008 - 19:04 | 24-05-2000 - 04:00 | |
| CVE-2005-0074 | 7.2 |
Buffer overflow in pcdsvgaview in xpcd 2.08 allows local users to execute arbitrary code.
|
05-09-2008 - 20:45 | 11-02-2005 - 05:00 |