Max CVSS | 7.5 | Min CVSS | 1.9 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2005-2970 | 5.0 |
Memory leak in the worker MPM (worker.c) for Apache 2, in certain circumstances, allows remote attackers to cause a denial of service (memory consumption) via aborted connections, which prevents the memory for the transaction pool from being reused f
|
13-02-2023 - 01:16 | 25-10-2005 - 17:06 | |
CVE-2005-3750 | 7.5 |
Opera before 8.51 on Linux and Unix systems allows remote attackers to execute arbitrary code via shell metacharacters (backticks) in a URL that another product provides in a command line argument when launching Opera.
|
28-02-2022 - 16:23 | 22-11-2005 - 19:03 | |
CVE-2005-3662 | 4.6 |
Off-by-one buffer overflow in pnmtopng before 2.39, when using the -alpha command line option (Alphas_Of_Color), allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PNM file with exactly 256 colors.
|
03-10-2018 - 21:33 | 18-11-2005 - 02:02 | |
CVE-2005-3632 | 4.6 |
Multiple buffer overflows in pnmtopng in netpbm 10.0 and earlier allow attackers to execute arbitrary code via a crafted PNM file.
|
03-10-2018 - 21:33 | 21-11-2005 - 22:03 | |
CVE-2005-3256 | 5.0 |
The key selection dialogue in Enigmail before 0.92.1 can incorrectly select a key with a user ID that does not have additional information, which allows parties with that key to decrypt the message.
|
03-10-2018 - 21:31 | 18-10-2005 - 21:02 | |
CVE-2005-3300 | 5.0 |
The register_globals emulation layer in grab_globals.php for phpMyAdmin before 2.6.4-pl3 does not perform safety checks on values in the _FILES array for uploaded files, which allows remote attackers to include arbitrary files by using direct request
|
11-07-2017 - 01:33 | 23-10-2005 - 21:02 | |
CVE-2005-3354 | 5.1 |
Stack-based buffer overflow in the ldif_get_line function in ldif.c of Sylpheed before 2.1.6 allows user-assisted attackers to execute arbitrary code by having local users import LDIF files with long lines.
|
11-07-2017 - 01:33 | 20-11-2005 - 21:03 | |
CVE-2005-3355 | 6.4 |
Directory traversal vulnerability in GNU Gnump3d before 2.9.8 has unknown impact via "CGI parameters, and cookie values".
|
18-10-2011 - 04:00 | 18-11-2005 - 22:03 | |
CVE-2005-3349 | 1.9 |
GNU Gnump3d before 2.9.8 allows local users to modify or delete arbitrary files via a symlink attack on the index.lok temporary file.
|
18-10-2011 - 04:00 | 18-11-2005 - 22:03 | |
CVE-2005-3737 | 5.1 |
Buffer overflow in the SVG importer (style.cpp) of inkscape 0.41 through 0.42.2 might allow remote attackers to execute arbitrary code via a SVG file with long CSS style property values.
|
08-03-2011 - 02:27 | 22-11-2005 - 00:03 | |
CVE-2005-3301 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.6.4-pl3 allow remote attackers to inject arbitrary web script or HTML via certain arguments to (1) left.php, (2) queryframe.php, or (3) server_databases.php.
|
08-03-2011 - 02:26 | 24-10-2005 - 10:02 | |
CVE-2005-3424 | 4.3 |
Cross-site scripting (XSS) vulnerability in GNUMP3D before 2.9.5 allows remote attackers to inject arbitrary web script or HTML via 404 error pages, a different vulnerability than CVE-2005-3425.
|
08-03-2011 - 02:26 | 01-11-2005 - 22:02 | |
CVE-2005-3123 | 5.0 |
Directory traversal vulnerability in GNUMP3D before 2.9.6 allows remote attackers to read arbitrary files via crafted sequences such as "/.//..//////././", which is collapsed into "/.././" after ".." and "//" sequences are removed.
|
08-03-2011 - 02:25 | 30-10-2005 - 20:02 | |
CVE-2005-3322 | 5.0 |
Unspecified vulnerability in Squid on SUSE Linux 9.0 allows remote attackers to cause a denial of service (crash) via HTTPs (SSL).
|
10-09-2008 - 19:46 | 27-10-2005 - 10:02 | |
CVE-2005-3425 | 4.3 |
Cross-site scripting (XSS) vulnerability in GNUMP3D before 2.9.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2005-3424.
|
05-09-2008 - 20:54 | 01-11-2005 - 22:02 | |
CVE-2005-3621 | 5.0 |
CRLF injection vulnerability in phpMyAdmin before 2.6.4-pl4 allows remote attackers to conduct HTTP response splitting attacks via unspecified scripts.
|
05-09-2008 - 20:54 | 16-11-2005 - 11:02 | |
CVE-2005-2869 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.6.4 allow remote attackers to inject arbitrary web script or HTML via (1) the Username to libraries/auth/cookie.auth.lib.php or (2) the error parameter to error.php.
|
05-09-2008 - 20:52 | 08-09-2005 - 23:03 |