Security Vulnerabilities, CVEs, Published In June 2005 (Denial of service)
BisonFTP Server V4R1 allows remote authenticated users to cause a denial of service via an invalid command with a long argument.
Max CVSS
2.1
EPSS Score
0.65%
Published
2005-06-29
Updated
2008-09-05
The ClamAV Mail fILTER (clamav-milter) 0.84 through 0.85d, when used in Sendmail using long timeouts, allows remote attackers to cause a denial of service by keeping an open connection, which prevents ClamAV from reloading.
Max CVSS
5.0
EPSS Score
1.30%
Published
2005-06-29
Updated
2008-09-05
The Quantum archive decompressor in Clam AntiVirus (ClamAV) before 0.86.1 allows remote attackers to cause a denial of service (application crash) via a crafted Quantum archive.
Max CVSS
2.6
EPSS Score
2.15%
Published
2005-06-29
Updated
2008-11-15
Vipul Razor Agents (razor-agents) before 2.70 allows remote attackers to cause a denial of service via (1) certain "unusual HTML messages" or (2) "certain malformed headers" such as Content-Type.
Max CVSS
5.0
EPSS Score
1.82%
Published
2005-06-17
Updated
2008-09-05
The fetchnews NNTP client in leafnode 1.11.2 and earlier can hang while waiting for input that never arrives, which allows remote NNTP servers to cause a denial of service (news loss).
Max CVSS
5.0
EPSS Score
0.09%
Published
2005-06-09
Updated
2008-09-05
Rakkarsoft RakNet network library 2.33 and earlier, when released before 30 May 2005, and as used in multiple products including nFusion Elite Warriors: Vietnam, allows remote attackers to cause a denial of service (infinite loop) via a zero-byte UDP packet.
Max CVSS
5.0
EPSS Score
4.96%
Published
2005-06-09
Updated
2016-10-18
FlatNuke 2.5.3 allows remote attackers to cause a denial of service or obtain sensitive information via (1) a direct request to foot_news.php, which triggers an infinite loop, or (2) direct requests to unknown scripts, which reveals the web document root in an error message.
Max CVSS
6.4
EPSS Score
0.97%
Published
2005-06-09
Updated
2024-01-25
The GIF parser in ateimg32.dll in AOL Instant Messenger (AIM) 5.9.3797 and earlier allows remote attackers to cause a denial of service (crash) via a malformed buddy icon that causes an integer underflow in a loop counter variable.
Max CVSS
7.5
EPSS Score
0.51%
Published
2005-06-09
Updated
2024-02-08
NEXTWEB (i)Site allows remote attackers to cause a denial of service (error 500) via a crafted HTTP request, possibly involving wildcard requests for .jsp files.
Max CVSS
5.0
EPSS Score
0.16%
Published
2005-06-01
Updated
2016-10-18
CVE-2005-1815
Public exploit
Multiple buffer overflows in Hummingbird Connectivity inetD 10.0.0.1 and 9.0.0.4 allows attackers to cause a denial of service and possibly execute arbitrary code via (1) an FTP command with a long argument to FTPD (ftpdw.exe) or (2) a large amount of data to LPD (Lpdw.exe).
Max CVSS
5.0
EPSS Score
4.14%
Published
2005-06-01
Updated
2008-09-05
Stack-based buffer overflow in PicoWebServer 1.0 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long URL.
Max CVSS
7.5
EPSS Score
1.52%
Published
2005-06-01
Updated
2016-10-18
Sony Ericsson P900 Beamer allows remote attackers to cause a denial of service (panic) via an obexftp session with a long filename in an OBEX File Transfer or OBEX Object Push.
Max CVSS
5.0
EPSS Score
0.17%
Published
2005-06-01
Updated
2020-12-08
User32.DLL in Microsoft Windows 98SE, and possibly other operating systems, allows local and remote attackers to cause a denial of service (crash) via an icon (.ico) bitmap file with large width and height values.
Max CVSS
2.6
EPSS Score
1.16%
Published
2005-06-01
Updated
2008-09-10
Memory leak in Windows Management Instrumentation (WMI) service allows attackers to cause a denial of service (memory consumption and crash) by creating security contexts more quickly than they can be cleared from the RPC cache.
Max CVSS
5.0
EPSS Score
0.51%
Published
2005-06-01
Updated
2008-09-05
CVE-2005-1790
Public exploit
Microsoft Internet Explorer 6 SP2 6.0.2900.2180 and 6.0.2800.1106, and earlier versions, allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a Javascript BODY onload event that calls the window function, aka "Mismatched Document Object Model Objects Memory Corruption Vulnerability."
Max CVSS
2.6
EPSS Score
97.29%
Published
2005-06-01
Updated
2021-07-23
Novell eDirectory 8.7.3 allows remote attackers to cause a denial of service (application crash) via a URL containing an MS-DOS device name such as AUX, CON, PRN, COM1, or LPT1.
Max CVSS
5.0
EPSS Score
22.09%
Published
2005-06-12
Updated
2008-09-05
Gaim before 1.3.1 allows remote attackers to cause a denial of service (application crash) via a Yahoo! message with non-ASCII characters in a file name.
Max CVSS
5.0
EPSS Score
5.02%
Published
2005-06-16
Updated
2018-10-19
The bgp_update_print function in tcpdump 3.x does not properly handle a -1 return value from the decode_prefix4 function, which allows remote attackers to cause a denial of service (infinite loop) via a crafted BGP packet.
Max CVSS
5.0
EPSS Score
7.98%
Published
2005-06-10
Updated
2018-10-19
Apache SpamAssassin 3.0.1, 3.0.2, and 3.0.3 allows remote attackers to cause a denial of service (CPU consumption and slowdown) via a message with a long Content-Type header without any boundaries.
Max CVSS
5.0
EPSS Score
29.33%
Published
2005-06-15
Updated
2023-02-13
The mmap function in the Linux Kernel 2.6.10 can be used to create memory maps with a start address beyond the end address, which allows local users to cause a denial of service (kernel crash).
Max CVSS
2.1
EPSS Score
0.06%
Published
2005-06-16
Updated
2018-10-19
VERITAS Backup Exec 9.0 through 10.0 for Windows Servers, and 9.0.4019 through 9.1.307 for Netware, allows remote attackers to cause a denial of service (Remote Agent crash) via (1) a crafted packet in NDMLSRVR.DLL or (2) a request packet with an invalid (non-0) "Error Status" value, which triggers a null dereference.
Max CVSS
7.5
EPSS Score
18.33%
Published
2005-06-28
Updated
2023-12-28
ptrace in Linux kernel 2.6.8.1 does not properly verify addresses on the amd64 platform, which allows local users to cause a denial of service (kernel crash).
Max CVSS
2.1
EPSS Score
0.06%
Published
2005-06-08
Updated
2018-10-19
22 vulnerabilities found