CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In May 2005(Overflow)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2005-1826 Exec Code Overflow 2005-05-03 2011-03-08
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in HP Radia Notify Daemon 3.1.0.0 (formerly by Novadigm), and other versions including 2.x, 3.x, and 4.x, allows remote attackers to execute arbitrary code via a long file extension.
2 CVE-2005-1825 Exec Code Overflow 2005-05-03 2011-03-08
7.5
None Remote Low Not required Partial Partial Partial
Multiple stack-based buffer overflows in the nvd_exec function in HP Radia Notify Daemon 3.1.2.0 (formerly by Novadigm), and other versions including 2.x, 3.x, and 4.x, allows remote attackers to execute arbitrary code via a command with crafted parameters to a RADEXECD process.
3 CVE-2005-1776 Exec Code Overflow 2005-05-31 2016-10-18
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in the READ_TCP_STRING function in game_message_functions.cpp in the network plugin for C'Nedra 0.4.0 and earlier allows remote attackers to execute arbitrary code via a long text string.
4 CVE-2005-1775 119 DoS Overflow 2005-05-31 2016-11-25
5.0
None Remote Low Not required None None Partial
Terminator 3: War of the Machines 1.16 and earlier allows remote attackers to cause a denial of service (application crash) via a large nickname.
5 CVE-2005-1772 DoS Overflow 2005-05-31 2016-10-18
5.0
None Remote Low Not required None None Partial
Buffer overflow in the client cd-key hash in Terminator 3: War of the Machines 1.16 and earlier allows remote attackers to cause a denial of service (application crash) via a long client cd-key hash value, a different vulnerability than CVE-2005-1556.
6 CVE-2005-1770 119 DoS Exec Code Overflow 2005-05-31 2016-10-18
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in the Aavmker4 device driver in Avast! Antivirus 4.6 and possibly other versions allows local users to cause a denial of service (system crash) and possibly execute arbitrary code via certain signals combined with crafted input.
7 CVE-2005-1749 DoS Overflow 2005-05-24 2018-10-30
5.0
None Remote Low Not required None None Partial
Buffer overflow in BEA WebLogic Server and WebLogic Express 6.1 Service Pack 4 allows remote attackers to cause a denial of service (CPU consumption from thread looping).
8 CVE-2005-1718 DoS Overflow 2005-05-24 2008-09-05
5.0
None Remote Low Not required None None Partial
Buffer overflow in LS Games War Times 1.03 and earlier allows remote attackers to cause a denial of service (server crash) via a long nickname.
9 CVE-2005-1704 189 Exec Code Overflow 2005-05-24 2018-10-19
4.6
None Local Low Not required Partial Partial Partial
Integer overflow in the Binary File Descriptor (BFD) library for gdb before 6.3, binutils, elfutils, and possibly other packages, allows user-assisted attackers to execute arbitrary code via a crafted object file that specifies a large number of section headers, leading to a heap-based buffer overflow.
10 CVE-2005-1693 Overflow +Priv 2005-05-24 2021-04-09
10.0
None Remote Low Not required Complete Complete Complete
Integer overflow in Computer Associates Vet Antivirus library, as used by CA InoculateIT 6.0, eTrust Antivirus r6.0 through 7.1, eTrust Antivirus for the Gateway r7.0 and r7.1, eTrust Secure Content Manager, eTrust Intrusion Detection, BrightStor ARCserve Backup (BAB) r11.1, Vet Antivirus, Zonelabs ZoneAlarm Security Suite, and ZoneAlarm Antivirus, allows remote attackers to gain privileges via a compressed VBA directory with a project name length of -1, which leads to a heap-based buffer overflow.
11 CVE-2005-1683 DoS Exec Code Overflow 2005-05-20 2016-10-18
2.6
None Remote High Not required None None Partial
Buffer overflow in winword.exe 10.2627.6714 and earlier in Microsoft Word for the Macintosh, before SP3 for Word 2002, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted mcw file.
12 CVE-2005-1679 Exec Code Overflow 2005-05-20 2016-10-18
5.1
None Remote High Not required Partial Partial Partial
Stack-based buffer overflow in the error directive in picasm 1.12b and earlier allows attackers to execute arbitrary code via a long error message.
13 CVE-2005-1666 DoS Exec Code Overflow 2005-05-18 2017-07-11
7.5
None Remote Low Not required Partial Partial Partial
Multiple buffer overflows in Orenosv HTTP/FTP Server 0.8.1 allow remote authenticated users to cause a denial of service (server crash) and possibly execute arbitrary code via long arguments to FTP commands such as MKD, RMD, or DELE, which are processed by the (1) ftp_xlate_path, (2) ftp_is_canonical, or (3) os_fn_nativize functions, or (4) a long SSI command that is processed by the parse_cmd function in cgissi.exe.
14 CVE-2005-1661 DoS Overflow 2005-05-18 2008-09-05
5.0
None Remote Low Not required None None Partial
Jeuce Personal Webserver 2.13 allows remote attackers to cause a denial of service (server crash) via a long GET request, possibly triggering a buffer overflow.
15 CVE-2005-1626 Exec Code Overflow 2005-05-17 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Multiple buffer overflows in handlers.c for Pico Server (pServ) before 3.3 may allow attackers to execute arbitrary code.
16 CVE-2005-1547 Exec Code Overflow 2005-05-14 2016-10-18
7.5
None Remote Low Not required Partial Partial Partial
Heap-based buffer overflow in the demo version of Bakbone Netvault, and possibly other versions, allows remote attackers to execute arbitrary commands via a large packet to port 20031.
17 CVE-2005-1546 Exec Code Overflow 2005-05-14 2008-09-10
5.1
None Remote High Not required Partial Partial Partial
Buffer overflow in the PE parser in HT Editor before 0.8.0 allows remote attackers to execute arbitrary code via a crafted PE file.
18 CVE-2005-1545 Exec Code Overflow 2005-05-14 2008-09-10
5.1
None Remote High Not required Partial Partial Partial
Integer overflow in the ELF parser in HT Editor before 0.8.0 allows remote attackers to execute arbitrary code via a crafted ELF file, which leads to a heap-based buffer overflow.
19 CVE-2005-1544 Exec Code Overflow 2005-05-14 2017-07-11
7.5
None Remote Low Not required Partial Partial Partial
Stack-based buffer overflow in libTIFF before 3.7.2 allows remote attackers to execute arbitrary code via a TIFF file with a malformed BitsPerSample tag.
20 CVE-2005-1543 Exec Code Overflow 2005-05-25 2017-07-11
7.5
None Remote Low Not required Partial Partial Partial
Multiple stack-based and heap-based buffer overflows in Remote Management authentication (zenrem32.exe) on Novell ZENworks 6.5 Desktop and Server Management, ZENworks for Desktops 4.x, ZENworks for Servers 3.x, and Remote Management allows remote attackers to execute arbitrary code via (1) unspecified vectors, (2) type 1 authentication requests, and (3) type 2 authentication requests.
21 CVE-2005-1521 Exec Code Overflow 2005-05-26 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Integer overflow in the fetch_io function of the imap4d server in GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows remote attackers to execute arbitrary code via a partial message request with a large value in the END parameter, which leads to a heap-based buffer overflow.
22 CVE-2005-1520 Exec Code Overflow 2005-05-26 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in the header_get_field_name function in header.c for GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows remote attackers to execute arbitrary code via a crafted e-mail.
23 CVE-2005-1513 DoS Exec Code Overflow 2005-05-11 2020-10-05
5.0
None Remote Low Not required None None Partial
Integer overflow in the stralloc_readyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large SMTP request.
24 CVE-2005-1507 DoS Exec Code Overflow 2005-05-11 2017-07-11
5.0
None Remote Low Not required None None Partial
Buffer overflow in the Tomcat plugin in 4d WebSTAR 5.33 and 5.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long URL.
25 CVE-2005-1471 Exec Code Overflow 2005-05-06 2016-10-18
7.5
None Remote Low Not required Partial Partial Partial
Heap-based buffer overflow in RSA SecurID Web Agent 5, 5.2, and 5.3 allows remote attackers to execute arbitrary code via crafted chunked-encoding data.
26 CVE-2005-1462 119 Exec Code Overflow 2005-05-05 2017-10-11
7.5
None Remote Low Not required Partial Partial Partial
Double free vulnerability in the ICEP dissector in Ethereal before 0.10.11 may allow remote attackers to execute arbitrary code.
27 CVE-2005-1461 DoS Exec Code Overflow 2005-05-05 2017-10-11
7.5
None Remote Low Not required Partial Partial Partial
Multiple buffer overflows in the (1) SIP, (2) CMIP, (3) CMP, (4) CMS, (5) CRMF, (6) ESS, (7) OCSP, (8) X.509, (9) ISIS, (10) DISTCC, (11) FCELS, (12) Q.931, (13) NCP, (14) TCAP, (15) ISUP, (16) MEGACO, (17) PKIX1Explitit, (18) PKIX_Qualified, (19) Presentation dissectors in Ethereal before 0.10.11 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code.
28 CVE-2005-1455 DoS Overflow 2005-05-19 2017-10-11
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in the sql_escape_func function in the SQL module for FreeRADIUS 1.0.2 and earlier allows remote attackers to cause a denial of service (crash).
29 CVE-2005-1442 DoS Exec Code Overflow 2005-05-03 2017-07-11
4.6
None Local Low Not required Partial Partial Partial
Buffer overflow in the Lotus Notes client for Domino 6.5 before 6.5.4 and 6.0 before 6.0.5 allows local users to cause a denial of service (client crash) and possibly execute arbitrary code via the NOTES.INI file.
30 CVE-2005-1415 Exec Code Overflow 2005-05-03 2008-09-05
10.0
None Remote Low Not required Complete Complete Complete
Buffer overflow in GlobalSCAPE Secure FTP Server 3.0.2 allows remote authenticated users to execute arbitrary code via a long FTP command.
31 CVE-2005-1395 Overflow +Priv 2005-05-03 2018-08-13
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in Ce/Ceterm (aka ARPUS/Ce) 2.5.4 and earlier may allow local users to gain privileges via a long (1) XAPPLRESLANGPATH or (2) XAPPLRESDIR environment variable, or (3) command line argument.
32 CVE-2005-1393 Exec Code Overflow 2005-05-03 2016-10-18
4.6
None Local Low Not required Partial Partial Partial
Multiple buffer overflows in ArcGIS for ESRI ArcInfo Workstation 9.0 allow local users to execute arbitrary code via long command line arguments to (1) asmaster, (2) asuser, (3) asutility, (4) se, or (5) asrecovery.
33 CVE-2005-1391 Exec Code Overflow 2005-05-03 2017-07-11
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in the add_port function in APSIS Pound 1.8.2 and earlier allows remote attackers to execute arbitrary code via a long Host HTTP header.
34 CVE-2005-1349 Exec Code Overflow 2005-05-02 2017-07-11
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in Convert-UUlib (Convert::UUlib) before 1.051 allows remote attackers to execute arbitrary code via a malformed parameter to a read operation.
35 CVE-2005-1348 Exec Code Overflow 2005-05-02 2016-10-18
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in HTTPMail in MailEnable Enterprise 1.04 and earlier and Professional 1.54 and earlier allows remote attackers to execute arbitrary code via a long HTTP Authorization header.
36 CVE-2005-1344 Exec Code Overflow 2005-05-02 2008-09-10
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in htdigest in Apache 2.0.52 may allow attackers to execute arbitrary code via a long realm argument. NOTE: since htdigest is normally only locally accessible and not setuid or setgid, there are few attack vectors which would lead to an escalation of privileges, unless htdigest is executed from a CGI program. Therefore this may not be a vulnerability.
37 CVE-2005-1343 Exec Code Overflow 2005-05-03 2008-09-05
7.2
None Local Low Not required Complete Complete Complete
Stack-based buffer overflow in the VPN daemon (vpnd) for Mac OS X before 10.3.9 allows local users to execute arbitrary code via a long -i (Server_id) argument.
38 CVE-2005-1336 Exec Code Overflow 2005-05-04 2008-09-05
4.6
None Local Low Not required Partial Partial Partial
Buffer overflow in the Foundation framework for Mac OS X 10.3.9 allows local users to execute arbitrary code via a long environment variable.
39 CVE-2005-1326 DoS Overflow 2005-05-02 2008-09-05
5.0
None Remote Low Not required None None Partial
Buffer overflow in VooDoo cIRCle BOTNET before 1.0.33 allows remote authenticated attackers to cause a denial of service (client crash) via a crafted packet.
40 CVE-2005-1323 Exec Code Overflow 2005-05-02 2017-07-11
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in NetFtpd for NetTerm 5.1.1 and earlier allows remote attackers to execute arbitrary code via a long USER command.
41 CVE-2005-1263 Exec Code Overflow 2005-05-11 2018-10-19
7.2
None Local Low Not required Complete Complete Complete
The elf_core_dump function in binfmt_elf.c for Linux kernel 2.x.x to 2.2.27-rc2, 2.4.x to 2.4.31-pre1, and 2.6.x to 2.6.12-rc4 allows local users to execute arbitrary code via an ELF binary that, in certain conditions involving the create_elf_tables function, causes a negative length argument to pass a signed integer comparison, leading to a buffer overflow.
42 CVE-2005-1261 Exec Code Overflow 2005-05-11 2018-10-19
7.5
None Remote Low Not required Partial Partial Partial
Stack-based buffer overflow in the URL parsing function in Gaim before 1.3.0 allows remote attackers to execute arbitrary code via an instant message (IM) with a large URL.
43 CVE-2005-1256 Exec Code Overflow 2005-05-25 2008-11-15
10.0
None Remote Low Not required Complete Complete Complete
Stack-based buffer overflow in the IMAP daemon (IMAPD32.EXE) in IMail 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allows remote authenticated users to execute arbitrary code via a STATUS command with a long mailbox name.
44 CVE-2005-1255 Exec Code Overflow 2005-05-25 2008-11-15
10.0
None Remote Low Not required Complete Complete Complete
Multiple stack-based buffer overflows in the IMAP server in IMail 8.12 and 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allow remote attackers to execute arbitrary code via a LOGIN command with (1) a long username argument or (2) a long username argument that begins with a special character.
45 CVE-2005-1254 DoS Overflow 2005-05-25 2008-11-15
5.0
None Remote Low Not required None None Partial
Stack-based buffer overflow in the IMAP server for Ipswitch IMail 8.12 and 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote authenticated users to cause a denial of service (crash) via a SELECT command with a large argument.
46 CVE-2005-1248 Exec Code Overflow 2005-05-16 2017-10-11
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in Apple iTunes before 4.8 allows remote attackers to execute arbitrary code via a crafted MPEG4 file.
47 CVE-2005-1232 Exec Code Overflow 2005-05-02 2016-11-28
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in Sun Java System Web Proxy Server (aka Sun ONE Proxy Server) 3.6 SP6 allows remote attackers to execute arbitrary code via unknown vectors.
48 CVE-2005-1195 Exec Code Overflow 2005-05-02 2017-07-11
7.5
None Remote Low Not required Partial Partial Partial
Multiple heap-based buffer overflows in the code used to handle (1) MMS over TCP (MMST) streams or (2) RealMedia RTSP streams in xine-lib before 1.0, and other products that use xine-lib such as MPlayer 1.0pre6 and earlier, allow remote malicious servers to execute arbitrary code.
49 CVE-2005-1194 Exec Code Overflow 2005-05-04 2017-10-11
4.6
None Local Low Not required Partial Partial Partial
Stack-based buffer overflow in the ieee_putascii function for nasm 0.98 and earlier allows attackers to execute arbitrary code via a crafted asm file, a different vulnerability than CVE-2004-1287.
50 CVE-2005-1187 Exec Code Overflow 2005-05-02 2017-07-11
5.1
None Remote High Not required Partial Partial Partial
Heap-based buffer overflow in WinHex 12.05 SR-14, and possibly other versions, may allow attackers to execute arbitrary code via a long file name argument. NOTE: since this overflow is in the command line of an unprivileged program, it is highly likely that this is not a vulnerability.
Total number of vulnerabilities : 165   Page : 1 (This Page)2 3 4
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.