CVE-2005-1543

Public exploit
Multiple stack-based and heap-based buffer overflows in Remote Management authentication (zenrem32.exe) on Novell ZENworks 6.5 Desktop and Server Management, ZENworks for Desktops 4.x, ZENworks for Servers 3.x, and Remote Management allows remote attackers to execute arbitrary code via (1) unspecified vectors, (2) type 1 authentication requests, and (3) type 2 authentication requests.
Max CVSS
7.5
EPSS Score
95.67%
Published
2005-05-25
Updated
2017-07-11

CVE-2005-1415

Public exploit
Buffer overflow in GlobalSCAPE Secure FTP Server 3.0.2 allows remote authenticated users to execute arbitrary code via a long FTP command.
Max CVSS
10.0
EPSS Score
44.49%
Published
2005-05-03
Updated
2008-09-05

CVE-2005-1348

Public exploit
Buffer overflow in HTTPMail in MailEnable Enterprise 1.04 and earlier and Professional 1.54 and earlier allows remote attackers to execute arbitrary code via a long HTTP Authorization header.
Max CVSS
7.5
EPSS Score
95.62%
Published
2005-05-02
Updated
2016-10-18

CVE-2005-1323

Public exploit
Buffer overflow in NetFtpd for NetTerm 5.1.1 and earlier allows remote attackers to execute arbitrary code via a long USER command.
Max CVSS
7.5
EPSS Score
95.52%
Published
2005-05-02
Updated
2017-07-11

CVE-2005-1018

Public exploit
Buffer overflow in the UniversalAgent for Computer Associates (CA) BrightStor ARCserve Backup allows remote authenticated users to cause a denial of service or execute arbitrary code via an agent request to TCP port 6050 with a large argument before the option field.
Max CVSS
7.5
EPSS Score
96.52%
Published
2005-05-02
Updated
2016-10-18

CVE-2005-1009

Public exploit
Multiple buffer overflows in BakBone NetVault 6.x and 7.x allow (1) remote attackers to execute arbitrary code via a modified computer name and length that leads to a heap-based buffer overflow, or (2) local users to execute arbitrary code via a long Name entry in the configure.cfg file.
Max CVSS
10.0
EPSS Score
97.32%
Published
2005-05-02
Updated
2017-07-11

CVE-2005-0768

Public exploit
Buffer overflow in the administration web server for GoodTech Telnet Server 4.0 and 5.0, and possibly all versions before 5.0.7, allows remote attackers to execute arbitrary code via a long string to port 2380.
Max CVSS
10.0
EPSS Score
19.58%
Published
2005-05-02
Updated
2016-10-18

CVE-2005-0595

Public exploit
Buffer overflow in ext.dll in BadBlue 2.55 allows remote attackers to execute arbitrary code via a long mfcisapicommand parameter.
Max CVSS
7.5
EPSS Score
95.81%
Published
2005-05-02
Updated
2017-07-12

CVE-2005-0491

Public exploit
Stack-based buffer overflow in Knox Arkeia Server Backup 5.3.x allows remote attackers to execute arbitrary code via a long type 77 request.
Max CVSS
10.0
EPSS Score
60.03%
Published
2005-05-02
Updated
2017-07-11

CVE-2005-0353

Public exploit
Buffer overflow in the Sentinel LM (Lservnt) service in the Sentinel License Manager 7.2.0.2 allows remote attackers to execute arbitrary code by sending a large amount of data to UDP port 5093.
Max CVSS
10.0
EPSS Score
90.15%
Published
2005-05-02
Updated
2017-07-11

CVE-2005-0260

Public exploit
Stack-based buffer overflow in the Discovery Service for BrightStor ARCserve Backup 11.1 and earlier allows remote attackers to execute arbitrary code via a long packet to UDP port 41524, which is not properly handled in a recvfrom call.
Max CVSS
10.0
EPSS Score
43.67%
Published
2005-05-02
Updated
2021-04-07

CVE-2005-0059

Public exploit
Buffer overflow in the Message Queuing component of Microsoft Windows 2000 and Windows XP SP1 allows remote attackers to execute arbitrary code via a crafted message.
Max CVSS
10.0
EPSS Score
96.77%
Published
2005-05-02
Updated
2019-04-30

CVE-2005-0043

Public exploit
Buffer overflow in Apple iTunes 4.7 allows remote attackers to execute arbitrary code via a long URL in (1) .m3u or (2) .pls playlist files.
Max CVSS
7.5
EPSS Score
18.63%
Published
2005-05-02
Updated
2017-07-11
Multiple SQL injection vulnerabilities in MyBulletinBoard (MyBB) 1.00 RC4 allow remote attackers to execute arbitrary SQL commands via the (1) eid parameter to calendar.php, (2) idsql parameter to online.php, (3) usersearch parameter to memberlist.php, (4) pid parameter to editpost.php, (5) fid parameter to forumdisplay.php, (6) tid parameter to newreply.php, (7) sid parameter to search.php, (8) tid or (9) pid parameter to showthread.php, (10) tid parameter to usercp2.php, (11) tid parameter to printthread.php, or (12) pid parameter to reputation.php.
Max CVSS
7.5
EPSS Score
0.62%
Published
2005-05-31
Updated
2016-10-18
Sudo 1.6.8p7 on SuSE Linux 9.3, and possibly other Linux distributions, allows local users to gain privileges by using sudo to call su, then entering a blank password and hitting CTRL-C. NOTE: SuSE and multiple third-party researchers have not been able to replicate this issue, stating "Sudo catches SIGINT and returns an empty string for the password so I don't see how this could happen unless the user's actual password was empty.
Max CVSS
7.2
EPSS Score
0.04%
Published
2005-05-31
Updated
2024-03-21
D-Link DSL-504T stores usernames and passwords in cleartext in the router configuration file, which allows remote attackers to obtain sensitive information.
Max CVSS
7.5
EPSS Score
0.68%
Published
2005-05-26
Updated
2024-02-13
D-Link DSL-504T allows remote attackers to bypass authentication and gain privileges, such as upgrade firmware, restart the router or restore a saved configuration, via a direct request to firmwarecfg.
Max CVSS
7.5
EPSS Score
1.07%
Published
2005-05-26
Updated
2024-01-25
Buffer overflow in HP Radia Notify Daemon 3.1.0.0 (formerly by Novadigm), and other versions including 2.x, 3.x, and 4.x, allows remote attackers to execute arbitrary code via a long file extension.
Max CVSS
7.5
EPSS Score
18.87%
Published
2005-05-03
Updated
2011-03-08
Multiple stack-based buffer overflows in the nvd_exec function in HP Radia Notify Daemon 3.1.2.0 (formerly by Novadigm), and other versions including 2.x, 3.x, and 4.x, allows remote attackers to execute arbitrary code via a command with crafted parameters to a RADEXECD process.
Max CVSS
7.5
EPSS Score
57.15%
Published
2005-05-03
Updated
2011-03-08
Format string vulnerability in PeerCast 0.1211 and earlier allows remote attackers to execute arbitrary code via format strings in the URL.
Max CVSS
7.5
EPSS Score
56.84%
Published
2005-05-28
Updated
2016-10-18
SQL injection vulnerability in login.asp in an unknown product by Online Solutions for Educators (OS4E) allows remote attackers to execute arbitrary SQL commands via the password.
Max CVSS
7.5
EPSS Score
0.27%
Published
2005-05-28
Updated
2011-03-08
Multiple SQL injection vulnerabilities in Net Portal Dynamic System (NPDS) 5.0 allow remote attackers to execute arbitrary SQL commands via the (1) terme parameter in the glossaire module (glossaire.php) or (2) query parameter to links.php.
Max CVSS
7.5
EPSS Score
0.48%
Published
2005-05-29
Updated
2008-09-05
Format string vulnerability in the curses_msg function in the Ncurses interface (ec_curses.c) for Ettercap before 0.7.3 allows remote attackers to execute arbitrary code.
Max CVSS
7.5
EPSS Score
10.72%
Published
2005-05-31
Updated
2023-03-29
The filecopy function in misc.c in Clam AntiVirus (ClamAV) before 0.85, on Mac OS, allows remote attackers to execute arbitrary code via a virus in a filename that contains shell metacharacters, which are not properly handled when HFS permissions prevent the file from being deleted and ditto is invoked.
Max CVSS
7.5
EPSS Score
0.81%
Published
2005-05-27
Updated
2016-05-25
SQL injection vulnerability in SignIn.asp in India Software Solution shopping cart allows remote attackers to execute arbitrary SQL commands via the password.
Max CVSS
7.5
EPSS Score
0.19%
Published
2005-05-29
Updated
2008-09-05
536 vulnerabilities found
1 2 3 4 5 6 ...... 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!