| Max CVSS | 7.5 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2005-4699 | 6.4 |
Argument injection vulnerability in TellMe 1.2 and earlier allows remote attackers to modify command line arguments for the Whois program and obtain sensitive information via "--" style options in the q_Host parameter.
|
13-02-2024 - 17:53 | 31-12-2005 - 05:00 | |
| CVE-2001-0863 | 5.0 |
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not handle the "fragment" keyword in a compiled ACL (Turbo ACL) for packets that are sent to the router, which allows remote attackers to cause a denial of service via a flood of fragmen
|
10-10-2017 - 01:29 | 06-12-2001 - 05:00 | |
| CVE-2005-4696 | 2.1 |
The Microsoft Wireless Zero Configuration system (WZCS) stores WEP keys and pair-wise Master Keys (PMK) of the WPA pre-shared key in plaintext in memory of the explorer process, which allows attackers with access to process memory to steal the keys a
|
05-10-2017 - 01:29 | 31-12-2005 - 05:00 | |
| CVE-2010-0304 | 7.5 |
Multiple buffer overflows in the LWRES dissector in Wireshark 0.9.15 through 1.0.10 and 1.2.0 through 1.2.5 allow remote attackers to cause a denial of service (crash) via a malformed packet, as demonstrated using a stack-based buffer overflow to the
|
19-09-2017 - 01:30 | 03-02-2010 - 18:30 | |
| CVE-2005-4786 | 4.0 |
Buffer overflow in the archive decompression library (vrAZMain.dll 5.8.22.137), as used in HAURI anti-virus products including (1) ViRobot Expert 4.0, (2) ViRobot Advanced Server, and (3) HAURI LiveCall, allows user-assisted attackers to execute arbi
|
20-07-2017 - 01:29 | 31-12-2005 - 05:00 | |
| CVE-2005-4697 | 2.1 |
The Microsoft Wireless Zero Configuration system (WZCS) allows local users to access WEP keys and pair-wise Master Keys (PMK) of the WPA pre-shared key via certain calls to the WZCQueryInterface API function in wzcsapi.dll.
|
20-07-2017 - 01:29 | 31-12-2005 - 05:00 | |
| CVE-2005-4677 | 7.5 |
SQL injection vulnerability in additional_images.php (aka the Additional Images module) before 1.14 in osCommerce allows remote attackers to execute arbitrary SQL commands via the products_id parameter to product_info.php.
|
20-07-2017 - 01:29 | 31-12-2005 - 05:00 | |
| CVE-2005-4700 | 5.0 |
TellMe 1.2 and earlier, when the Server (o_Server) and HEAD (o_Head) options are enabled, allows remote attackers to obtain sensitive information via an invalid q_Host parameter, which reveals the full pathname of the application in an fsockopen erro
|
20-07-2017 - 01:29 | 31-12-2005 - 05:00 | |
| CVE-2005-4698 | 4.3 |
Cross-site scripting (XSS) vulnerability in TellMe 1.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the 91) q_IP (IP) or (2) q_Host (HOST) parameters.
|
20-07-2017 - 01:29 | 31-12-2005 - 05:00 | |
| CVE-2005-3118 | 7.5 |
Mason before 1.0.0 does not install the init script after the user uses Mason to configure a firewall, which causes the system to run without a firewall after a reboot.
|
08-03-2011 - 02:25 | 06-10-2005 - 19:02 |