Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2005-3508 | 7.5 |
SQL injection vulnerability in showGallery.php in Gallery (Galerie) 2.4 allows remote attackers to execute arbitrary SQL commands via the galid parameter.
|
19-10-2018 - 15:36 | 06-11-2005 - 11:02 | |
CVE-2005-3503 | 7.2 |
chfn in pwdutils 3.0.4 and earlier on SuSE Linux, and possibly other operating systems, does not properly check arguments for the GECOS field, which allows local users to gain privileges.
|
19-10-2018 - 15:36 | 05-11-2005 - 11:02 | |
CVE-2005-3523 | 7.5 |
Format string vulnerability in friendsd2 in GpsDrive allows remote attackers to execute arbitrary code via the dir (direction) field.
|
19-10-2018 - 15:36 | 07-11-2005 - 02:02 | |
CVE-2008-2439 | 5.0 |
Directory traversal vulnerability in the UpdateAgent function in TmListen.exe in the OfficeScanNT Listener service in the client in Trend Micro OfficeScan 7.3 Patch 4 build 1367 and other builds before 1372, OfficeScan 8.0 SP1 before build 1222, Offi
|
11-10-2018 - 20:41 | 03-10-2008 - 15:07 | |
CVE-2008-4402 | 10.0 |
Multiple buffer overflows in CGI modules in the server in Trend Micro OfficeScan 8.0 SP1 before build 2439 and 8.0 SP1 Patch 1 before build 3087 allow remote attackers to execute arbitrary code via unspecified vectors.
|
08-08-2017 - 01:32 | 03-10-2008 - 15:07 | |
CVE-2008-4403 | 5.0 |
The CGI modules in the server in Trend Micro OfficeScan 8.0 SP1 before build 2439 and 8.0 SP1 Patch 1 before build 3087 allow remote attackers to cause a denial of service (NULL pointer dereference and child process crash) via crafted HTTP headers, r
|
08-08-2017 - 01:32 | 03-10-2008 - 15:07 | |
CVE-2016-1161 | 6.0 |
Cross-site request forgery (CSRF) vulnerability in ManageEngine Password Manager Pro before 8.5 (Build 8500).
|
26-04-2017 - 16:44 | 20-04-2017 - 21:59 | |
CVE-2005-3583 | 7.8 |
(1) Java Runtime Environment (JRE) and (2) Software Development Kit (SDK) 1.4.2_08, 1.4.2_09, and 1.5.0_05 and possibly other versions allow remote attackers to cause a denial of service (JVM unresponsive) via a crafted serialized object, such as a f
|
18-10-2016 - 03:36 | 16-11-2005 - 07:42 | |
CVE-2005-3502 | 5.0 |
attachment_send.php in Cerberus Helpdesk allows remote attackers to view attachments and tickets of other users via a modified file_id parameter.
|
18-10-2016 - 03:35 | 05-11-2005 - 11:02 | |
CVE-2005-3501 | 4.3 |
The cabd_find function in cabd.c of the libmspack library (mspack) for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted CAB file that causes cabd_find to be called with a zero le
|
14-07-2011 - 04:00 | 05-11-2005 - 11:02 | |
CVE-2005-3500 | 5.0 |
The tnef_attachment function in tnef.c for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via a crafted value in a CAB file that causes ClamAV to repeatedly scan the sa
|
08-03-2011 - 02:26 | 05-11-2005 - 11:02 | |
CVE-2005-3303 | 7.5 |
The FSG unpacker (fsg.c) in Clam AntiVirus (ClamAV) 0.80 through 0.87 allows remote attackers to cause "memory corruption" and execute arbitrary code via a crafted FSG 1.33 file.
|
08-03-2011 - 02:26 | 05-11-2005 - 11:02 | |
CVE-2000-0759 | 6.4 |
Jakarta Tomcat 3.1 under Apache reveals physical path information when a remote attacker requests a URL that does not exist, which generates an error message that includes the physical path.
|
05-09-2008 - 20:21 | 20-10-2000 - 04:00 |