CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In 2005(Overflow)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
401 CVE-2005-0903 DoS Overflow 2005-05-02 2016-10-18
2.6
None Remote High Not required None None Partial
Buffer overflow in QuickTime PictureViewer 6.5.1 allows remote attackers to cause a denial of service (application crash) via a JPEG file with crafted Huffman Table (marker DHT) data.
402 CVE-2005-0892 Exec Code Overflow 2005-03-28 2016-10-18
10.0
None Remote Low Not required Complete Complete Complete
Buffer overflow in smail 3.2.0.120 allows remote attackers or local users to execute arbitrary code via a long string in the MAIL FROM command and possibly other SMTP commands.
403 CVE-2005-0891 119 DoS Overflow 2005-05-02 2018-10-19
5.0
None Remote Low Not required None None Partial
Double free vulnerability in gtk 2 (gtk2) before 2.2.4 allows remote attackers to cause a denial of service (crash) via a crafted BMP image.
404 CVE-2005-0876 Exec Code Overflow 2005-05-02 2017-07-11
5.0
None Remote Low Not required None None Partial
Off-by-one buffer overflow in Dnsmasq before 2.21 may allow attackers to execute arbitrary code via the DHCP lease file.
405 CVE-2005-0875 DoS Overflow 2005-05-02 2016-10-18
5.0
None Remote Low Not required None None Partial
Multiple buffer overflows in the Yahoo plug-in for Trillian 2.0, 3.0, and 3.1 allow remote web servers to cause a denial of service (application crash) via a long string in an HTTP 1.1 response header.
406 CVE-2005-0874 DoS Overflow 2005-05-02 2016-10-18
5.0
None Remote Low Not required None None Partial
Multiple buffer overflows in the (1) AIM, (2) MSN, (3) RSS, and other plug-ins for Trillian 2.0 allow remote web servers to cause a denial of service (application crash) via a long string in an HTTP 1.1 response header.
407 CVE-2005-0867 Overflow 2005-05-02 2018-10-19
7.2
None Local Low Not required Complete Complete Complete
Integer overflow in Linux kernel 2.6 allows local users to overwrite kernel memory by writing to a sysfs file.
408 CVE-2005-0861 DoS Exec Code Overflow 2005-05-02 2017-07-11
7.5
None Remote Low Not required Partial Partial Partial
Multiple buffer overflows in DeleGate before 8.11.1 may allow attackers to cause a denial of service or execute arbitrary code, possibly due to "overflows on arrays."
409 CVE-2005-0838 DoS Exec Code Overflow 2005-05-02 2017-07-11
7.5
None Remote Low Not required Partial Partial Partial
Multiple buffer overflows in the XSL parser for IceCast 2.20 may allow attackers to cause a denial of service and possibly execute arbitrary code via (1) a long test value in an xsl:when tag, (2) a long test value in an xsl:if tag, or (3) a long select value in an xsl:value-of tag.
410 CVE-2005-0830 Exec Code Overflow 2005-05-02 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Multiple buffer overflows in Xzabite DYNDNSUpdate 0.6.15 and earlier, including the ipcheck function in dyndnsupdate.c, allow remote attackers who spoof a dyndns.org server to execute arbitrary code via unknown vectors.
411 CVE-2005-0825 Exec Code Overflow 2005-05-02 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in LTris before 1.0.10 allows local users to execute arbitrary code via a crafted highscores file.
412 CVE-2005-0816 Overflow +Priv 2005-05-02 2018-10-30
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in newgrp in Solaris 7 through 9 allows local users to gain root privileges.
413 CVE-2005-0813 DoS Exec Code Overflow 2005-05-02 2008-09-05
5.0
None Remote Low Not required None None Partial
Buffer overflow in Initial Redirect (ir) Squid Proxy Plug-In 0.1 and 0.2 may allow attackers to cause a denial of service and execute arbitrary code via unknown vectors.
414 CVE-2005-0807 DoS Exec Code Overflow 2005-05-02 2017-07-11
7.5
None Remote Low Not required Partial Partial Partial
Multiple buffer overflows in Cain & Abel before 2.67 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via (1) an IKE packet with a large ID field that is not properly handled by the PSK sniffer filter, (2) the HTTP sniffer filter, or the (3) POP3, (4) SMTP, (5) IMAP, (6) NNTP, or (7) TDS sniffer filters.
415 CVE-2005-0773 Exec Code Overflow 2005-06-18 2011-03-08
7.5
None Remote Low Not required Partial Partial Partial
Stack-based buffer overflow in VERITAS Backup Exec Remote Agent 9.0 through 10.0 for Windows, and 9.0.4019 through 9.1.307 for Netware allows remote attackers to execute arbitrary code via a CONNECT_CLIENT_AUTH request with authentication method type 3 (Windows credentials) and a long password argument.
416 CVE-2005-0769 Overflow 2005-05-02 2018-10-19
7.5
None Remote Low Not required Partial Partial Partial
Multiple buffer overflows in OpenSLP before 1.1.5 allow remote attackers to have an unknown impact via malformed SLP packets.
417 CVE-2005-0768 Exec Code Overflow 2005-05-02 2016-10-18
10.0
None Remote Low Not required Complete Complete Complete
Buffer overflow in the administration web server for GoodTech Telnet Server 4.0 and 5.0, and possibly all versions before 5.0.7, allows remote attackers to execute arbitrary code via a long string to port 2380.
418 CVE-2005-0764 Exec Code Overflow 2005-05-02 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in command.C for rxvt-unicode before 5.3 allows remote attackers to execute arbitrary code via a crafted file containing long escape sequences.
419 CVE-2005-0763 Exec Code Overflow 2005-05-02 2008-09-05
4.6
None Local Low Not required Partial Partial Partial
Buffer overflow in Midnight Commander (mc) 4.5.55 and earlier may allow attackers to execute arbitrary code.
420 CVE-2005-0762 Exec Code Overflow 2005-05-02 2017-10-11
7.5
None Remote Low Not required Partial Partial Partial
Heap-based buffer overflow in the SGI parser in ImageMagick before 6.0 allows remote attackers to execute arbitrary code via a crafted SGI image file.
421 CVE-2005-0755 Exec Code Overflow 2005-04-19 2017-11-21
5.1
None Remote High Not required Partial Partial Partial
Heap-based buffer overflow in RealPlayer 10 and earlier, Helix Player before 10.0.4, and RealOne Player v1 and v2 allows remote attackers to execute arbitrary code via a long hostname in a RAM file.
422 CVE-2005-0753 Exec Code Overflow 2005-04-18 2017-10-11
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in CVS before 1.11.20 allows remote attackers to execute arbitrary code.
423 CVE-2005-0739 189 Overflow 2005-05-02 2017-10-11
5.0
None Remote Low Not required None None Partial
The IAPP dissector (packet-iapp.c) for Ethereal 0.9.1 to 0.10.9 does not properly use certain routines for formatting strings, which could leave it vulnerable to buffer overflows, as demonstrated using modified length values that are not properly handled by the dissect_pdus and pduval_to_str functions.
424 CVE-2005-0737 Exec Code Overflow 2005-05-02 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in Yahoo! Messenger allows remote attackers to execute arbitrary code via the offline mode.
425 CVE-2005-0736 Overflow 2005-03-09 2018-10-03
2.1
None Local Low Not required None Partial None
Integer overflow in sys_epoll_wait in eventpoll.c for Linux kernel 2.6 to 2.6.11 allows local users to overwrite kernel memory via a large number of events.
426 CVE-2005-0716 Exec Code Overflow 2005-03-21 2008-09-05
7.2
None Local Low Not required Complete Complete Complete
Stack-based buffer overflow in the Core Foundation Library in Mac OS X 10.3.5 and 10.3.6, and possibly earlier versions, allows local users to execute arbitrary code via a long CF_CHARSET_PATH environment variable.
427 CVE-2005-0707 Exec Code Overflow 2005-05-02 2017-07-11
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in the IMAP daemon (IMAP4d32.exe) for Ipswitch Collaboration Suite (ICS) before 8.15 Hotfix 1 allows remote authenticated users to execute arbitrary code via a long EXAMINE command.
428 CVE-2005-0706 DoS Exec Code Overflow 2005-05-02 2017-10-11
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in discdb.c for grip 3.1.2 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing the cddb lookup to return more matches than expected.
429 CVE-2005-0704 DoS Exec Code Overflow 2005-05-02 2017-10-11
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in the Etheric dissector in Ethereal 0.10.7 through 0.10.9 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code.
430 CVE-2005-0699 Exec Code Overflow 2005-03-08 2017-10-11
7.5
None Remote Low Not required Partial Partial Partial
Multiple buffer overflows in the dissect_a11_radius function in the CDMA A11 (3G-A11) dissector (packet-3g-a11.c) for Ethereal 0.10.9 and earlier allow remote attackers to execute arbitrary code via RADIUS authentication packets with large length values.
431 CVE-2005-0696 Exec Code Overflow 2005-03-08 2018-10-19
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in ArGoSoft FTP Server 1.4.2.8 allows remote authenticated users to execute arbitrary code via a long DELE command. NOTE: this issue was later reported to also affect 1.4.3.5.
432 CVE-2005-0693 DoS Exec Code Overflow 2005-03-07 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in JoWood Chaser 1.50 and earlier allows remote attackers to cause a denial of service (client or server crash) and execute arbitrary code via a long nickname.
433 CVE-2005-0686 Exec Code Overflow 2005-03-07 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Integer overflow in mlterm 2.5.0 through 2.9.1, with gdk-pixbuf support enabled, allows remote attackers to execute arbitrary code via a large image file that is used as a background.
434 CVE-2005-0684 Exec Code Overflow 2005-04-25 2011-03-08
10.0
None Remote Low Not required Complete Complete Complete
Multiple buffer overflows in the web tool for MySQL MaxDB before 7.5.00.26 allows remote attackers to execute arbitrary code via (1) an HTTP GET request with a long file parameter after a percent ("%") sign or (2) a long Lock-Token string to the WebDAV functionality, which is not properly handled by the getLockTokenHeader function in WDVHandler_CommonUtils.c.
435 CVE-2005-0667 Exec Code Overflow 2005-03-07 2008-09-05
5.1
None Remote High Not required Partial Partial Partial
Buffer overflow in Sylpheed before 1.0.3 and other versions before 1.9.5 allows remote attackers to execute arbitrary code via an e-mail message with certain headers containing non-ASCII characters that are not properly handled when the user replies to the message.
436 CVE-2005-0664 DoS Exec Code Overflow 2005-05-02 2018-10-03
2.6
None Remote High Not required None None Partial
Buffer overflow in the EXIF library (libexif) 0.6.9 does not properly validate the structure of the EXIF tags, which allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a JPEG image with a crafted EXIF tag.
437 CVE-2005-0644 Exec Code Overflow 2005-05-02 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in McAfee Scan Engine 4320 with DAT version before 4436 allows remote attackers to execute arbitrary code via a malformed LHA file with a type 2 header file name field, a variant of CVE-2005-0643.
438 CVE-2005-0643 Exec Code Overflow 2005-05-02 2008-09-10
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in McAfee Scan Engine 4320 with DAT version before 4357 allows remote attackers to execute arbitrary code via crafted LHA files.
439 CVE-2005-0639 Exec Code Overflow 2005-03-02 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Multiple vulnerabilities in xli before 1.17 may allow remote attackers to execute arbitrary code via "buffer management errors" from certain image properties, some of which may be related to integer overflows in PPM files.
440 CVE-2005-0635 Exec Code Overflow 2005-05-02 2008-09-05
10.0
None Remote Low Not required Complete Complete Complete
Buffer overflow in Foxmail Server 2.0 allows remote attackers to execute arbitrary code via a long USER command.
441 CVE-2005-0634 Exec Code Overflow 2005-05-02 2011-03-08
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in Golden FTP Server 1.92 allows remote attackers to execute arbitrary code via a long USER command.
442 CVE-2005-0633 Exec Code Overflow 2005-03-02 2016-10-18
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in Trillian 3.0 and Pro 3.0 allows remote attackers to execute arbitrary code via a crafted PNG image file.
443 CVE-2005-0623 Exec Code Overflow 2005-03-01 2016-10-18
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in RaidenHTTPD 1.1.32, and possibly other versions before 1.1.34, allows remote attackers to execute arbitrary code via a long URL.
444 CVE-2005-0611 Exec Code Overflow 2005-05-02 2017-10-11
5.1
None Remote High Not required Partial Partial Partial
Heap-based buffer overflow in RealNetworks RealPlayer 10.5 (6.0.12.1056 and earlier), 10, 8, and RealOne Player V2 and V1, allows remote attackers to execute arbitrary code via .WAV files.
445 CVE-2005-0608 DoS Exec Code Overflow 2005-02-28 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Heap-based buffer overflow in server.cpp for WebMod 0.47 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a POST request with a Content-Length that is less than the amount of data that is actually sent.
446 CVE-2005-0605 Exec Code Overflow 2005-03-02 2018-10-03
7.5
None Remote Low Not required Partial Partial Partial
scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.
447 CVE-2005-0595 Exec Code Overflow 2005-05-02 2017-07-12
7.5
None Remote Low Not required Partial Partial Partial
Buffer overflow in ext.dll in BadBlue 2.55 allows remote attackers to execute arbitrary code via a long mfcisapicommand parameter.
448 CVE-2005-0594 Exec Code Overflow 2005-05-04 2008-09-05
7.2
None Local Low Not required Complete Complete Complete
Buffer overflow in the Netinfo Setup Tool (NeST) allows local users to execute arbitrary code.
449 CVE-2005-0592 DoS Exec Code Overflow 2005-03-25 2017-10-11
7.5
None Remote Low Not required Partial Partial Partial
Heap-based buffer overflow in the UTF8ToNewUnicode function for Firefox before 1.0.1 and Mozilla before 1.7.6 might allow remote attackers to cause a denial of service (crash) or execute arbitrary code via invalid sequences in a UTF8 encoded string that result in a zero length value.
450 CVE-2005-0582 Exec Code Overflow 2005-05-02 2021-04-09
10.0
None Remote Low Not required Complete Complete Complete
Buffer overflow in Computer Associates (CA) License Client 0.1.0.15 allows remote attackers to execute arbitrary code via a long filename in a PUTOLF request.
Total number of vulnerabilities : 657   Page : 1 2 3 4 5 6 7 8 9 (This Page)10 11 12 13 14
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.