CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In 2005(Overflow)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
351 CVE-2005-1274 Exec Code Overflow 2005-04-26 2008-09-05
10.0
None Remote Low Not required Complete Complete Complete
Stack-based buffer overflow in the getIfHeader function in the WebDAV functionality in MySQL MaxDB before 7.5.00.26 allows remote attackers to execute arbitrary code via an HTTP unlock request and a long "If" parameter.
352 CVE-2005-1272 Exec Code Overflow 2005-08-05 2021-04-07
7.5
None Remote Low Not required Partial Partial Partial
Stack-based buffer overflow in the Backup Agent for Microsoft SQL Server in BrightStor ARCserve Backup Agent for SQL Server 11.0 allows remote attackers to execute arbitrary code via a long string sent to port (1) 6070 or (2) 6050.
353 CVE-2005-1268 193 DoS Overflow 2005-08-05 2021-06-06
5.0
None Remote Low Not required None None Partial
Off-by-one error in the mod_ssl Certificate Revocation List (CRL) verification callback in Apache, when configured to use a CRL, allows remote attackers to cause a denial of service (child process crash) via a CRL that causes a buffer overflow of one null byte.
354 CVE-2005-1263 Exec Code Overflow 2005-05-11 2018-10-19
7.2
None Local Low Not required Complete Complete Complete
The elf_core_dump function in binfmt_elf.c for Linux kernel 2.x.x to 2.2.27-rc2, 2.4.x to 2.4.31-pre1, and 2.6.x to 2.6.12-rc4 allows local users to execute arbitrary code via an ELF binary that, in certain conditions involving the create_elf_tables function, causes a negative length argument to pass a signed integer comparison, leading to a buffer overflow.
355 CVE-2005-1261 Exec Code Overflow 2005-05-11 2018-10-19
7.5
None Remote Low Not required Partial Partial Partial
Stack-based buffer overflow in the URL parsing function in Gaim before 1.3.0 allows remote attackers to execute arbitrary code via an instant message (IM) with a large URL.
356 CVE-2005-1256 Exec Code Overflow 2005-05-25 2008-11-15
10.0
None Remote Low Not required Complete Complete Complete
Stack-based buffer overflow in the IMAP daemon (IMAPD32.EXE) in IMail 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allows remote authenticated users to execute arbitrary code via a STATUS command with a long mailbox name.
357 CVE-2005-1255 Exec Code Overflow 2005-05-25 2008-11-15
10.0
None Remote Low Not required Complete Complete Complete
Multiple stack-based buffer overflows in the IMAP server in IMail 8.12 and 8.13 in Ipswitch Collaboration Suite (ICS), and other versions before IMail Server 8.2 Hotfix 2, allow remote attackers to execute arbitrary code via a LOGIN command with (1) a long username argument or (2) a long username argument that begins with a special character.
358 CVE-2005-1254 DoS Overflow 2005-05-25 2008-11-15
5.0
None Remote Low Not required None None Partial
Stack-based buffer overflow in the IMAP server for Ipswitch IMail 8.12 and 8.13, and other versions before IMail Server 8.2 Hotfix 2, allows remote authenticated users to cause a denial of service (crash) via a SELECT command with a large argument.
359 CVE-2005-1248 Exec Code Overflow 2005-05-16 2017-10-11
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in Apple iTunes before 4.8 allows remote attackers to execute arbitrary code via a crafted MPEG4 file.
360 CVE-2005-1232 Exec Code Overflow 2005-05-02 2016-11-28
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in Sun Java System Web Proxy Server (aka Sun ONE Proxy Server) 3.6 SP6 allows remote attackers to execute arbitrary code via unknown vectors.
361 CVE-2005-1219 Exec Code Overflow 2005-07-12 2018-10-12
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in the Microsoft Color Management Module for Windows allows remote attackers to execute arbitrary code via an image with crafted ICC profile format tags.
362 CVE-2005-1213 Exec Code Overflow 2005-06-14 2018-10-12
7.5
None Remote Low Not required Partial Partial Partial
Stack-based buffer overflow in the news reader for Microsoft Outlook Express (MSOE.DLL) 5.5 SP2, 6, and 6 SP1 allows remote malicious NNTP servers to execute arbitrary code via a LIST response with a long second field.
363 CVE-2005-1212 Exec Code Overflow 2005-06-14 2019-04-30
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in Microsoft Step-by-Step Interactive Training (orun32.exe) allows remote attackers to execute arbitrary code via a bookmark link file (.cbo, cbl, or .cbm extension) with a long User field.
364 CVE-2005-1211 Exec Code Overflow 2005-06-14 2021-07-23
5.1
None Remote High Not required Partial Partial Partial
Buffer overflow in the PNG image rendering component of Microsoft Internet Explorer allows remote attackers to execute arbitrary code via a crafted PNG file.
365 CVE-2005-1208 Exec Code Overflow 2005-06-14 2018-10-12
10.0
None Remote Low Not required Complete Complete Complete
Integer overflow in Microsoft Windows 98, 2000, XP SP2 and earlier, and Server 2003 SP1 and earlier allows remote attackers to execute arbitrary code via a crafted compiled Help (.CHM) file with a large size field that triggers a heap-based buffer overflow, as demonstrated using a "ms-its:" URL in Internet Explorer.
366 CVE-2005-1207 Exec Code Overflow 2005-06-14 2018-10-12
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in the Web Client service in Microsoft Windows XP and Windows Server 2003 allows remote authenticated users to execute arbitrary code via a crafted WebDAV request containing special parameters.
367 CVE-2005-1206 Exec Code Overflow 2005-06-14 2018-10-12
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in the Server Message Block (SMB) functionality for Microsoft Windows 2000, XP SP1 and SP2, and Server 2003 and SP1 allows remote attackers to execute arbitrary code via unknown vectors, aka the "Server Message Block Vulnerability."
368 CVE-2005-1195 Exec Code Overflow 2005-05-02 2017-07-11
7.5
None Remote Low Not required Partial Partial Partial
Multiple heap-based buffer overflows in the code used to handle (1) MMS over TCP (MMST) streams or (2) RealMedia RTSP streams in xine-lib before 1.0, and other products that use xine-lib such as MPlayer 1.0pre6 and earlier, allow remote malicious servers to execute arbitrary code.
369 CVE-2005-1194 Exec Code Overflow 2005-05-04 2017-10-11
4.6
None Local Low Not required Partial Partial Partial
Stack-based buffer overflow in the ieee_putascii function for nasm 0.98 and earlier allows attackers to execute arbitrary code via a crafted asm file, a different vulnerability than CVE-2004-1287.
370 CVE-2005-1187 Exec Code Overflow 2005-05-02 2017-07-11
5.1
None Remote High Not required Partial Partial Partial
Heap-based buffer overflow in WinHex 12.05 SR-14, and possibly other versions, may allow attackers to execute arbitrary code via a long file name argument. NOTE: since this overflow is in the command line of an unprivileged program, it is highly likely that this is not a vulnerability.
371 CVE-2005-1175 DoS Exec Code Overflow 2005-07-18 2020-01-21
7.5
None Remote Low Not required Partial Partial Partial
Heap-based buffer overflow in the Key Distribution Center (KDC) in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a certain valid TCP or UDP request.
372 CVE-2005-1173 Exec Code Overflow 2005-05-02 2016-10-18
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in PMSoftware Simple Web Server 1.0 allows remote attackers to execute arbitrary code via a long GET request.
373 CVE-2005-1163 Exec Code Overflow 2005-05-02 2017-07-12
6.4
None Remote Low Not required Partial Partial None
Multiple buffer overflows in Yager 5.24 and earlier allow remote attackers to execute arbitrary code via (1) a crafted nickname or (2) a packet with a large amount of data.
374 CVE-2005-1142 Exec Code Overflow 2005-04-15 2016-10-18
7.5
None Remote Low Not required Partial Partial Partial
Heap-based buffer overflow in the readpgm function in pnm.c for GOCR 0.40, when it is not using netpbm, allows remote attackers to execute arbitrary code via a P3 format PNM file with more data than implied by its width and height values.
375 CVE-2005-1141 Exec Code Overflow 2005-04-15 2016-10-18
7.5
None Remote Low Not required Partial Partial Partial
Integer overflow in the readpgm function in pnm.c for GOCR 0.40, when using the netpbm library, allows remote attackers to execute arbitrary code via a PNM file with large width and height values, which leads to a heap-based buffer overflow.
376 CVE-2005-1123 119 DoS Overflow Mem. Corr. 2005-05-02 2020-03-26
5.0
None Remote Low Not required None None Partial
Monkey daemon (monkeyd) before 0.9.1 allows remote attackers to cause a denial of service (memory corruption) via a request for a zero byte file.
377 CVE-2005-1110 Exec Code Overflow 2005-05-02 2017-07-11
7.5
None Remote Low Not required Partial Partial Partial
Stack-based buffer overflow in the RespondeHTTPPendiente function in the HTTP server for SUMUS 0.2.2 allows remote attackers to execute arbitrary code via a large packet sent to TCP port 81.
378 CVE-2005-1106 DoS Overflow 2005-05-02 2016-10-18
5.0
None Remote Low Not required None None Partial
PictureViewer in QuickTime for Windows 6.5.2 allows remote attackers to cause a denial of service (application crash) via a GIF image with the maximum depth start value, possibly triggering an integer overflow.
379 CVE-2005-1101 DoS Exec Code Overflow 2005-05-02 2017-07-11
7.5
None Remote Low Not required Partial Partial Partial
Multiple buffer overflows in Lotus Domino Server 6.0.5 and 6.5.4 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via large amounts of data in certain (1) time or (2) date fields.
380 CVE-2005-1099 Exec Code Overflow 2005-04-12 2017-07-11
10.0
None Remote Low Not required Complete Complete Complete
Multiple buffer overflows in the HandleChild function in server.c in Greylisting daemon (GLD) 1.3 and 1.4, when GLD is listening on a network interface, allow remote attackers to execute arbitrary code.
381 CVE-2005-1093 Exec Code Overflow 2005-05-02 2017-07-11
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in the PopUp Plus 2.0.3.8 plugin for Miranda IM, with "Use SmileyAdd Setting" enabled, allows remote attackers to execute arbitrary code.
382 CVE-2005-1086 Exec Code Overflow 2005-05-02 2017-07-11
6.4
None Remote Low Not required None Partial Partial
Buffer overflow in the cmdIS.DLL plugin for AN HTTPD Server 1.42n allows remote attackers to execute arbitrary code via an HTTP request with a long User-Agent header.
383 CVE-2005-1046 Exec Code Overflow 2005-05-02 2018-10-19
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in the kimgio library for KDE 3.4.0 allows remote attackers to execute arbitrary code via a crafted PCX image file.
384 CVE-2005-1042 Exec Code Overflow 2005-05-02 2018-10-30
7.5
None Remote Low Not required Partial Partial Partial
Integer overflow in the exif_process_IFD_TAG function in exif.c in PHP before 4.3.11 may allow remote attackers to execute arbitrary code via an IFD tag that leads to a negative byte count.
385 CVE-2005-1035 Overflow 2005-04-05 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Multiple buffer overflows in Pavuk before 0.9.32 have unknown attack vectors and impact.
386 CVE-2005-1019 Overflow +Priv 2005-05-02 2017-07-11
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in the getConfig function in Aeon 0.2a and earlier allows local users to gain privileges via a long HOME environment variable.
387 CVE-2005-1018 DoS Exec Code Overflow 2005-05-02 2016-10-18
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in the UniversalAgent for Computer Associates (CA) BrightStor ARCserve Backup allows remote authenticated users to cause a denial of service or execute arbitrary code via an agent request to TCP port 6050 with a large argument before the option field.
388 CVE-2005-1015 Exec Code Overflow 2005-05-02 2008-09-05
10.0
None Remote Low Not required Complete Complete Complete
Buffer overflow in MailEnable Imapd (MEIMAP.exe) allows remote attackers to execute arbitrary code via a long LOGIN command.
389 CVE-2005-1014 Exec Code Overflow 2005-05-02 2017-07-11
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in the IMAP service for MailEnable Enterprise 1.04 and earlier and Professional 1.54 allows remote attackers to execute arbitrary code via a long AUTHENTICATE command.
390 CVE-2005-1009 Exec Code Overflow 2005-05-02 2017-07-11
10.0
None Remote Low Not required Complete Complete Complete
Multiple buffer overflows in BakBone NetVault 6.x and 7.x allow (1) remote attackers to execute arbitrary code via a modified computer name and length that leads to a heap-based buffer overflow, or (2) local users to execute arbitrary code via a long Name entry in the configure.cfg file.
391 CVE-2005-0993 Exec Code Overflow 2005-05-02 2016-10-18
4.6
None Local Low Not required Partial Partial Partial
Buffer overflow in nwprint in SCO OpenServer 5.0.7 allows local users to execute arbitrary code via a long command line argument.
392 CVE-2005-0984 Exec Code Overflow 2005-05-02 2016-10-18
5.0
None Remote Low Not required None Partial None
Buffer overflow in the G_Printf function in Star Wars Jedi Knight: Jedi Academy 1.011 and earlier allows remote attackers to execute arbitrary code via a long message using commands such as (1) say and (2) tell.
393 CVE-2005-0979 DoS Exec Code Overflow 2005-05-02 2017-07-11
7.5
None Remote Low Not required Partial Partial Partial
Multiple buffer overflows in RUMBA 7.3 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via crafted values in a profile file, as demonstrated using a long SysName field.
394 CVE-2005-0972 Exec Code Overflow 2005-05-12 2008-09-05
7.2
None Local Low Not required Complete Complete Complete
Integer overflow in the searchfs system call in Mac OS X 10.3.9 and earlier allows local users to execute arbitrary code via crafted parameters.
395 CVE-2005-0971 Overflow +Priv 2005-05-12 2008-09-05
4.6
None Local Low Not required Partial Partial Partial
Stack-based buffer overflow in the semop system call in Mac OS X 10.3.9 and earlier allows local users to gain privileges via crafted arguments.
396 CVE-2005-0969 DoS Exec Code Overflow 2005-05-12 2008-09-05
4.6
None Local Low Not required Partial Partial Partial
Heap-based buffer overflow in the syscall emulation functionality in Mac OS X before 10.3.9 allows local users to cause a denial of service (kernel panic) and possibly execute arbitrary code via crafted parameters.
397 CVE-2005-0959 Exec Code Overflow 2005-05-02 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in the mt_do_dir function in YepYep mtftpd 0.0.3 may allow attackers to execute arbitrary code via a long path.
398 CVE-2005-0941 DoS Exec Code Overflow 2005-05-02 2017-10-11
5.1
None Remote High Not required Partial Partial Partial
The StgCompObjStream::Load function in OpenOffice.org OpenOffice 1.1.4 and earlier allocates memory based on 16 bit length values, but process memory using 32 bit values, which allows remote attackers to cause a denial of service and possibly execute arbitrary code via a DOC document with certain length values, which leads to a heap-based buffer overflow.
399 CVE-2005-0926 DoS Exec Code Overflow 2005-05-02 2008-09-10
5.1
None Remote High Not required Partial Partial Partial
Buffer overflow in Sylpheed before 1.0.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attachments with MIME-encoded file names.
400 CVE-2005-0906 Exec Code Overflow 2005-05-02 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in a player logging function in the Tincat network library 2.x before 2.0.28, as used in games such as Sacred and The Settlers: Heritage of Kings, allows remote attackers to execute arbitrary code.
Total number of vulnerabilities : 657   Page : 1 2 3 4 5 6 7 8 (This Page)9 10 11 12 13 14
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.