CVE-2004-0964

Public exploit
Buffer overflow in Zinf 2.2.1 on Windows, and other older versions for Linux, allows remote attackers or local users to execute arbitrary code via certain values in a .pls file.
Max CVSS
10.0
EPSS Score
16.69%
Published
2005-02-09
Updated
2017-07-11

CVE-2004-1037

Public exploit
The search function in TWiki 20030201 allows remote attackers to execute arbitrary commands via shell metacharacters in a search string.
Max CVSS
10.0
EPSS Score
91.20%
Published
2005-03-01
Updated
2017-07-11

CVE-2004-1080

Public exploit
The WINS service (wins.exe) on Microsoft Windows NT Server 4.0, Windows 2000 Server, and Windows Server 2003 allows remote attackers to write to arbitrary memory locations and possibly execute arbitrary code via a modified memory pointer in a WINS replication packet to TCP port 42, aka the "Association Context Vulnerability."
Max CVSS
10.0
EPSS Score
96.85%
Published
2005-01-10
Updated
2019-04-30

CVE-2004-1134

Public exploit
Buffer overflow in the Microsoft W3Who ISAPI (w3who.dll) allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long query string.
Max CVSS
10.0
EPSS Score
96.53%
Published
2005-01-10
Updated
2017-07-11

CVE-2004-1135

Public exploit
Multiple buffer overflows in WS_FTP Server 5.03 2004.10.14 allow remote attackers to cause a denial of service (service crash) via long (1) SITE, (2) XMKD, (3) MKD, and (4) RNFR commands.
Max CVSS
5.0
EPSS Score
11.48%
Published
2005-01-10
Updated
2017-07-11

CVE-2004-1172

Public exploit
Stack-based buffer overflow in the Agent Browser in Veritas Backup Exec 8.x before 8.60.3878 Hotfix 68, and 9.x before 9.1.4691 Hotfix 40, allows remote attackers to execute arbitrary code via a registration request with a long hostname.
Max CVSS
10.0
EPSS Score
95.03%
Published
2005-01-10
Updated
2017-07-11

CVE-2004-1211

Public exploit
Multiple buffer overflows in the IMAP service in Mercury/32 4.01a allow remote authenticated users to cause a denial of service (application crash) and possibly execute arbitrary code via long arguments to the (1) EXAMINE, (2) SUBSCRIBE, (3) STATUS, (4) APPEND, (5) CHECK, (6) CLOSE, (7) EXPUNGE, (8) FETCH, (9) RENAME, (10) DELETE, (11) LIST, (12) SEARCH, (13) CREATE, or (14) UNSUBSCRIBE commands.
Max CVSS
10.0
EPSS Score
96.37%
Published
2005-01-10
Updated
2017-07-11

CVE-2005-0043

Public exploit
Buffer overflow in Apple iTunes 4.7 allows remote attackers to execute arbitrary code via a long URL in (1) .m3u or (2) .pls playlist files.
Max CVSS
7.5
EPSS Score
18.63%
Published
2005-05-02
Updated
2017-07-11

CVE-2005-0059

Public exploit
Buffer overflow in the Message Queuing component of Microsoft Windows 2000 and Windows XP SP1 allows remote attackers to execute arbitrary code via a crafted message.
Max CVSS
10.0
EPSS Score
96.77%
Published
2005-05-02
Updated
2019-04-30

CVE-2005-0116

Public exploit
AWStats 6.1, and other versions before 6.3, allows remote attackers to execute arbitrary commands via shell metacharacters in the configdir parameter to aswtats.pl.
Max CVSS
7.5
EPSS Score
97.22%
Published
2005-01-18
Updated
2008-09-05

CVE-2005-0260

Public exploit
Stack-based buffer overflow in the Discovery Service for BrightStor ARCserve Backup 11.1 and earlier allows remote attackers to execute arbitrary code via a long packet to UDP port 41524, which is not properly handled in a recvfrom call.
Max CVSS
10.0
EPSS Score
43.67%
Published
2005-05-02
Updated
2021-04-07

CVE-2005-0277

Public exploit
Buffer overflow in the FTP service in 3Com 3CDaemon 2.0 revision 10 allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via (1) a long username in the USER command or (2) an FTP command that contains a long argument, such as cd, send, or ls.
Max CVSS
5.0
EPSS Score
21.40%
Published
2005-05-02
Updated
2017-07-11

CVE-2005-0308

Public exploit
Buffer overflow in the wsprintf function in W32Dasm 8.93 and earlier allows remote attackers to execute arbitrary code via a large import or export function name.
Max CVSS
7.5
EPSS Score
83.62%
Published
2005-01-24
Updated
2017-07-11

CVE-2005-0353

Public exploit
Buffer overflow in the Sentinel LM (Lservnt) service in the Sentinel License Manager 7.2.0.2 allows remote attackers to execute arbitrary code by sending a large amount of data to UDP port 5093.
Max CVSS
10.0
EPSS Score
90.15%
Published
2005-05-02
Updated
2017-07-11

CVE-2005-0455

Public exploit
Stack-based buffer overflow in the CSmil1Parser::testAttributeFailed function in smlparse.cpp for RealNetworks RealPlayer 10.5 (6.0.12.1056 and earlier), 10, 8, and RealOne Player V2 and V1 allows remote attackers to execute arbitrary code via a .SMIL file with a large system-screen-size value.
Max CVSS
5.1
EPSS Score
46.80%
Published
2005-05-02
Updated
2017-10-11

CVE-2005-0478

Public exploit
Multiple buffer overflows in TrackerCam 5.12 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) an HTTP request with a long User-Agent header or (2) a long argument to an arbitrary PHP script.
Max CVSS
5.0
EPSS Score
26.05%
Published
2005-03-30
Updated
2017-07-11

CVE-2005-0491

Public exploit
Stack-based buffer overflow in Knox Arkeia Server Backup 5.3.x allows remote attackers to execute arbitrary code via a long type 77 request.
Max CVSS
10.0
EPSS Score
60.03%
Published
2005-05-02
Updated
2017-07-11

CVE-2005-0511

Public exploit
misc.php for vBulletin 3.0.6 and earlier, when "Add Template Name in HTML Comments" is enabled, allows remote attackers to execute arbitrary PHP code via nested variables in the template parameter.
Max CVSS
7.5
EPSS Score
89.06%
Published
2005-02-21
Updated
2016-10-18

CVE-2005-0581

Public exploit
Multiple buffer overflows in Computer Associates (CA) License Client and Server 0.1.0.15 allow remote attackers to execute arbitrary code via (1) certain long fields in the Checksum item in a GCR request, (2) a long IP address, hostname, or netmask values in a GCR request, (3) a long last parameter in a GETCONFIG packet, or (4) long values in a request with an invalid format.
Max CVSS
4.6
EPSS Score
84.11%
Published
2005-05-02
Updated
2021-04-09

CVE-2005-0595

Public exploit
Buffer overflow in ext.dll in BadBlue 2.55 allows remote attackers to execute arbitrary code via a long mfcisapicommand parameter.
Max CVSS
7.5
EPSS Score
95.81%
Published
2005-05-02
Updated
2017-07-12

CVE-2005-0684

Public exploit
Multiple buffer overflows in the web tool for MySQL MaxDB before 7.5.00.26 allows remote attackers to execute arbitrary code via (1) an HTTP GET request with a long file parameter after a percent ("%") sign or (2) a long Lock-Token string to the WebDAV functionality, which is not properly handled by the getLockTokenHeader function in WDVHandler_CommonUtils.c.
Max CVSS
10.0
EPSS Score
96.72%
Published
2005-04-25
Updated
2011-03-08

CVE-2005-0768

Public exploit
Buffer overflow in the administration web server for GoodTech Telnet Server 4.0 and 5.0, and possibly all versions before 5.0.7, allows remote attackers to execute arbitrary code via a long string to port 2380.
Max CVSS
10.0
EPSS Score
19.58%
Published
2005-05-02
Updated
2016-10-18

CVE-2005-0771

Public exploit
VERITAS Backup Exec Server (beserver.exe) 9.0 through 10.0 for Windows allows remote unauthenticated attackers to modify the registry by calling methods to the RPC interface on TCP port 6106.
Max CVSS
10.0
EPSS Score
96.86%
Published
2005-06-23
Updated
2011-03-08

CVE-2005-0773

Public exploit
Stack-based buffer overflow in VERITAS Backup Exec Remote Agent 9.0 through 10.0 for Windows, and 9.0.4019 through 9.1.307 for Netware allows remote attackers to execute arbitrary code via a CONNECT_CLIENT_AUTH request with authentication method type 3 (Windows credentials) and a long password argument.
Max CVSS
7.5
EPSS Score
96.55%
Published
2005-06-18
Updated
2011-03-08

CVE-2005-1009

Public exploit
Multiple buffer overflows in BakBone NetVault 6.x and 7.x allow (1) remote attackers to execute arbitrary code via a modified computer name and length that leads to a heap-based buffer overflow, or (2) local users to execute arbitrary code via a long Name entry in the configure.cfg file.
Max CVSS
10.0
EPSS Score
97.32%
Published
2005-05-02
Updated
2017-07-11
73 vulnerabilities found
1 2 3
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!