CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In October 2005

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
201 CVE-2005-3149 +Priv 2005-10-05 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Uim 0.4.x before 0.4.9.1 and 0.5.0 and earlier does not properly handle the LIBUIM_VANILLA environment variable when a suid or sgid application is linked to libuim, such as immodule for Qt, which allows local users to gain privileges.
202 CVE-2005-3148 2005-10-05 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
StoreBackup before 1.19 does not properly set the uid and guid for symbolic links (1) that are backed up by storeBackup.pl, or (2) recovered by storeBackupRecover.pl, which could cause files to be restored with incorrect ownership.
203 CVE-2005-3147 +Info 2005-10-05 2008-09-05
2.1
None Local Low Not required Partial None None
StoreBackup before 1.19 creates the backup root with world-readable permissions, which allows local users to obtain sensitive information.
204 CVE-2005-3146 2005-10-05 2008-09-05
2.1
None Local Low Not required None Partial None
StoreBackup before 1.19 allows local users to perform unauthorized operations on arbitrary files via a symlink attack on temporary files.
205 CVE-2005-3145 DoS 2005-10-05 2008-09-05
5.0
None Remote Low Not required None None Partial
httpAdapter.c in sblim-sfcb before 0.9.2 allows remote attackers to cause a denial of service (resource consumption) by connecting to sblim-sfcb but not sending any data.
206 CVE-2005-3144 DoS 2005-10-05 2008-09-05
5.0
None Remote Low Not required None None Partial
httpAdapter.c in sblim-sfcb before 0.9.2 allows remote attackers to cause a denial of service via long HTTP headers.
207 CVE-2005-3143 DoS 2005-10-05 2008-09-05
5.0
None Remote Low Not required None None Partial
Unspecified vulnerability in the Mailbox Server for 4D WebStar before 5.3.5 allows attackers to cause a denial of service (crash) via IMAP clients on Mac OS X 10.4 Mail 2.
208 CVE-2005-3142 Exec Code Overflow 2005-10-05 2017-07-10
10.0
Admin Remote Low Not required Complete Complete Complete
Heap-based buffer overflow in Kaspersky Antivirus (KAV) 5.0 and Kaspersky Personal Security Suite 1.1 allows remote attackers to execute arbitrary code via a CAB file with large records after the header.
209 CVE-2005-3141 DoS 2005-10-05 2016-10-17
5.0
None Remote Low Not required None None Partial
Cerulean Studios Trillian 3.0 allows remote attackers to cause a denial of service (crash) via a reverse direct connection from a different client, as demonstrated using LICQ.
210 CVE-2005-3140 2005-10-05 2016-10-17
5.0
None Remote Low Not required Partial None None
Procom NetFORCE 800 4.02 M10 Build 20 and possibly other versions sends the NIS password map (passwd.nis) as a file attachment in diagnostic e-mail messages, which allows remote attackers to obtain the cleartext NIS password hashes.
211 CVE-2005-3139 2005-10-05 2017-07-10
5.0
None Remote Low Not required Partial None None
Bugzilla 2.19.1 through 2.20rc2 and 2.21, with user matching turned on in substring mode, allows attackers to list all users whose names match an arbitrary substring, even when the usevisibilitygroups parameter is set.
212 CVE-2005-3138 +Info 2005-10-05 2017-07-10
5.0
None Remote Low Not required Partial None None
Bugzilla 2.18rc1 through 2.18.3, 2.19 through 2.20rc2, and 2.21 allows remote attackers to obtain sensitive information such as the list of installed products via the config.cgi file, which is accessible even when the requirelogin parameter is set.
213 CVE-2005-3137 2005-10-05 2017-07-10
2.1
None Local Low Not required None Partial None
The (1) cfmailfilter and (2) cfcron.in files for cfengine 1.6.5 allow local users to overwrite arbitrary files via a symlink attack on temporary files, a different vulnerability than CVE-2005-2960.
214 CVE-2005-3136 Dir. Trav. 2005-10-04 2017-07-10
5.0
None Remote Low Not required None Partial None
Directory traversal vulnerability in Virtools Web Player 3.0.0.100 and earlier allows remote attackers to overwrite arbitrary files via a .. (dot dot) in a filename.
215 CVE-2005-3135 Exec Code Overflow 2005-10-04 2016-10-17
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in Virtools Web Player 3.0.0.100 and earlier allows remote attackers to execute arbitrary code via a long filename.
216 CVE-2005-3134 Bypass 2005-10-04 2018-08-13
7.5
User Remote Low Not required Partial Partial Partial
Citrix Metaframe Presentation Server 3.0 and 4.0 allows remote attackers to bypass policy restrictions by downloading the launch.ica file and changing the client device name (ClientName).
217 CVE-2005-3133 Dir. Trav. 2005-10-04 2016-10-17
5.0
None Remote Low Not required None Partial None
Multiple directory traversal vulnerabilities in MERAK Mail Server 8.2.4r with Icewarp Web Mail 5.5.1, and possibly earlier versions, allows remote attackers to (1) delete arbitrary files or directories via a relative path to the id parameter to logout.html or (2) include arbitrary PHP files or other files via the helpid parameter to help.html.
218 CVE-2005-3132 +Info 2005-10-04 2016-10-17
5.0
None Remote Low Not required Partial None None
MERAK Mail Server 8.2.4r with Icewarp Web Mail 5.5.1, and possibly earlier versions, allows remote attackers to obtain sensitive information via a direct request to bwlist_inc.html, which reveals the path in an error message.
219 CVE-2005-3131 XSS 2005-10-04 2016-10-17
4.3
None Remote Medium Not required None Partial None
Multiple cross-site scripting (XSS) vulnerabilities in MERAK Mail Server 8.2.4r with Icewarp Web Mail 5.5.1, and possibly earlier versions, allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to blank.html, or the createdataCX parameter to (2) calendar_d.html, (3) calendar_m.html, or (4) calendar_w.html.
220 CVE-2005-3130 Exec Code Sql 2005-10-04 2016-10-17
7.5
User Remote Low Not required Partial Partial Partial
SQL injection vulnerability in lucidCMS 1.0.11 allows remote attackers to execute arbitrary SQL commands via the login field.
221 CVE-2005-3129 CSRF 2005-10-04 2017-07-10
5.1
User Remote High Not required Partial Partial Partial
Cross-site request forgery (CSRF) vulnerability in Serendipity 0.8.4 and earlier allows remote attackers to perform unauthorized actions as a logged in user via a link or IMG tag to serendipity_admin.php.
222 CVE-2005-3128 XSS 2005-10-04 2017-07-10
4.3
None Remote Medium Not required None Partial None
Cross-site scripting (XSS) vulnerability in add.php in Address Add Plugin 1.9 and 2.0 for Squirrelmail allows remote attackers to inject arbitrary web script or HTML via the IMG tag.
223 CVE-2005-3127 XSS 2005-10-04 2017-07-10
4.3
None Remote Medium Not required None Partial None
Cross-site scripting (XSS) vulnerability in index.php in lucidCMS 1.0.11 allows remote attackers to inject arbitrary web script or HTML via the query string.
224 CVE-2005-3123 Dir. Trav. 2005-10-30 2008-09-05
5.0
None Remote Low Not required Partial None None
Directory traversal vulnerability in GNUMP3D before 2.9.6 allows remote attackers to read arbitrary files via crafted sequences such as "/.//..//////././", which is collapsed into "/.././" after ".." and "//" sequences are removed.
225 CVE-2005-3121 2005-10-20 2008-09-05
2.1
None Local Low Not required None Partial None
A rule file in module-assistant before 0.9.10 causes a temporary file to be created insecurely, which allows local users to conduct unauthorized operations.
226 CVE-2005-3120 Exec Code Overflow 2005-10-17 2018-10-19
7.5
User Remote Low Not required Partial Partial Partial
Stack-based buffer overflow in the HTrjis function in Lynx 2.8.6 and earlier allows remote NNTP servers to execute arbitrary code via certain article headers containing Asian characters that cause Lynx to add extra escape (ESC) characters.
227 CVE-2005-3119 399 DoS 2005-10-12 2017-10-10
2.1
None Local Low Not required None None Partial
Memory leak in the request_key_auth_destroy function in request_key_auth in Linux kernel 2.6.10 up to 2.6.13 allows local users to cause a denial of service (memory consumption) via a large number of authorization token keys.
228 CVE-2005-3118 2005-10-06 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Mason before 1.0.0 does not install the init script after the user uses Mason to configure a firewall, which causes the system to run without a firewall after a reboot.
229 CVE-2005-3088 200 +Info 2005-10-27 2018-10-03
2.1
None Local Low Not required Partial None None
fetchmailconf before 1.49 in fetchmail 6.2.0, 6.2.5 and 6.2.5.2 creates configuration files with insecure world-readable permissions, which allows local users to obtain sensitive information such as passwords.
230 CVE-2005-2992 2005-10-13 2016-10-17
2.1
None Local Low Not required None Partial None
arc 5.21j and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files, a different type of vulnerability than CVE-2005-2945.
231 CVE-2005-2978 Exec Code 2005-10-18 2018-10-03
7.5
User Remote Low Not required Partial Partial Partial
pnmtopng in netpbm before 10.25, when using the -trans option, uses uninitialized size and index variables when converting Portable Anymap (PNM) images to Portable Network Graphics (PNG), which might allow attackers to execute arbitrary code by modifying the stack.
232 CVE-2005-2973 DoS 2005-10-27 2018-10-19
2.1
None Local Low Not required None None Partial
The udp_v6_get_port function in udp.c in Linux 2.6 before 2.6.14-rc5, when running IPv6, allows local users to cause a denial of service (infinite loop and crash).
233 CVE-2005-2972 119 Exec Code Overflow 2005-10-23 2018-10-03
5.1
User Remote High Not required Partial Partial Partial
Multiple stack-based buffer overflows in the RTF import feature in AbiWord before 2.2.11 allow user-assisted attackers to execute arbitrary code via an RTF file with long identifiers, which are not properly handled in the (1) ParseLevelText, (2) getCharsInsideBrace, (3) HandleLists, (4) or (5) HandleAbiLists functions in ie_imp_RTF.cpp, a different vulnerability than CVE-2005-2964.
234 CVE-2005-2971 Exec Code Overflow 2005-10-20 2018-10-03
7.5
User Remote Low Not required Partial Partial Partial
Heap-based buffer overflow in the KWord RTF importer for KOffice 1.2.0 through 1.4.1 allows remote attackers to execute arbitrary code via a crafted RTF file.
235 CVE-2005-2970 DoS 2005-10-25 2018-10-19
5.0
None Remote Low Not required None None Partial
Memory leak in the worker MPM (worker.c) for Apache 2, in certain circumstances, allows remote attackers to cause a denial of service (memory consumption) via aborted connections, which prevents the memory for the transaction pool from being reused for other connections.
236 CVE-2005-2969 2005-10-18 2018-05-02
5.0
None Remote Low Not required None Partial None
The SSL/TLS server implementation in OpenSSL 0.9.7 before 0.9.7h and 0.9.8 before 0.9.8a, when using the SSL_OP_MSIE_SSLV2_RSA_PADDING option, disables a verification step that is required for preventing protocol version rollback attacks, which allows remote attackers to force a client and server to use a weaker protocol than needed via a man-in-the-middle attack.
237 CVE-2005-2967 Exec Code 2005-10-14 2017-07-10
7.5
User Remote Low Not required Partial Partial Partial
Format string vulnerability in input_cdda.c in xine-lib 1-beta through 1-beta 3, 1-rc, 1.0 through 1.0.2, and 1.1.1 allows remote servers to execute arbitrary code via format string specifiers in metadata in CDDB server responses when the victim plays a CD.
238 CVE-2005-2966 Exec Code 2005-10-05 2018-10-03
5.1
User Remote High Not required Partial Partial Partial
The Python SVG import plugin (diasvg_import.py) for DIA 0.94 and earlier allows user-assisted attackers to execute arbitrary commands via a crafted SVG file.
239 CVE-2005-2963 Bypass 2005-10-13 2017-07-10
7.5
None Remote Low Not required Partial Partial Partial
The mod_auth_shadow module 1.0 through 1.5 and 2.0 for Apache with AuthShadow enabled uses shadow authentication for all locations that use the require group directive, even when other authentication mechanisms are specified, which might allow remote authenticated users to bypass security restrictions.
240 CVE-2005-2961 Exec Code Overflow 2005-10-05 2017-07-10
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in the get_string_ahref function for ProZilla 1.3.7.4 and possibly earlier, with the -ftpsearch option enabled, allows remote servers to execute arbitrary code via a search response with a crafted string in the HREF field of an <A> tag.
241 CVE-2005-2960 2005-10-05 2017-07-10
2.1
None Local Low Not required None Partial None
cfengine 1.6.5 and 2.1.16 allows local users to overwrite arbitrary files via a symlink attack on temporary files used by vicf.in, a different vulnerability than CVE-2005-3137.
242 CVE-2005-2959 264 +Priv 2005-10-25 2018-10-03
4.6
User Local Low Not required Partial Partial Partial
Incomplete blacklist vulnerability in sudo 1.6.8 and earlier allows local users to gain privileges via the (1) SHELLOPTS and (2) PS4 environment variables before executing a bash script on behalf of another user, which are not cleared even though other variables are.
243 CVE-2005-2958 Exec Code 2005-10-25 2018-10-03
7.5
User Remote Low Not required Partial Partial Partial
Multiple format string vulnerabilities in the GNOME Data Access library for GNOME2 (libgda2) 1.2.1 and earlier allow attackers to execute arbitrary code.
244 CVE-2005-2943 Exec Code Overflow 2005-10-13 2017-07-10
7.5
User Remote Low Not required Partial Partial Partial
Stack-based buffer overflow in sendmail in XMail before 1.22 allows remote attackers to execute arbitrary code via a long -t command line option.
245 CVE-2005-2933 Exec Code Overflow 2005-10-13 2018-10-19
7.5
User Remote Low Not required Partial Partial Partial
Buffer overflow in the mail_valid_net_parse_work function in mail.c for Washington's IMAP Server (UW-IMAP) before imap-2004g allows remote attackers to execute arbitrary code via a mailbox name containing a single double-quote (") character without a closing quote, which causes bytes after the double-quote to be copied into a buffer indefinitely.
246 CVE-2005-2930 119 Exec Code Overflow 2005-10-28 2011-08-02
5.1
User Remote High Not required Partial Partial Partial
Stack-based buffer overflow in the _chm_find_in_PMGL function in chm_lib.c for chmlib before 0.36, as used in products such as KchmViewer, allows user-assisted attackers to execute arbitrary code via a CHM file containing a long element, a different vulnerability than CVE-2005-3318.
247 CVE-2005-2927 Exec Code Overflow 2005-10-25 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
Stack-based buffer overflow in ppp in SCO Unixware 7.1.3 and 7.1.4, and possibly earlier versions, allows local users to execute arbitrary code via a long argument to the (1) prompt or (2) defprompt command.
248 CVE-2005-2926 Exec Code Overflow 2005-10-25 2019-10-09
4.6
User Local Low Not required Partial Partial Partial
Stack-based buffer overflow in (1) backupsh and (2) authsh in SCO Openserver 5.0.7 allows local users to execute arbitrary code via a long HOME environment variable.
249 CVE-2005-2925 Exec Code Bypass 2005-10-12 2018-10-19
7.2
Admin Local Low Not required Complete Complete Complete
runpriv in SGI IRIX allows local users to bypass intended restrictions and execute arbitrary commands via shell metacharacters in a command line for a privileged binary in /usr/sysadm/privbin.
250 CVE-2005-2804 DoS Overflow 2005-10-04 2017-07-10
5.0
None Remote Low Not required None None Partial
Integer overflow in the registry parsing code in GroupWise 6.5.3, and possibly earlier version, allows remote attackers to cause a denial of service (application crash) via a large TCP/IP port in the Windows registry key.
Total number of vulnerabilities : 283   Page : 1 2 3 4 5 (This Page)6
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.