Show filters
106 Total Results
Displaying 91-100 of 106
Sort by:
Attacker Value
Unknown
CVE-2004-0817
Disclosure Date: December 31, 2004 (last updated February 22, 2025)
Multiple heap-based buffer overflows in the imlib BMP image handler allow remote attackers to execute arbitrary code via a crafted BMP file.
0
Attacker Value
Unknown
CVE-2004-1491
Disclosure Date: December 31, 2004 (last updated October 04, 2023)
Opera 7.54 and earlier uses kfmclient exec to handle unknown MIME types, which allows remote attackers to execute arbitrary code via a shortcut or launcher that contains an Exec entry.
0
Attacker Value
Unknown
CVE-2004-0867
Disclosure Date: December 23, 2004 (last updated February 22, 2025)
Mozilla Firefox 0.9.2 allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk, and .sch.uk, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session. NOTE: it was later reported that 2.x is also affected.
0
Attacker Value
Unknown
CVE-2004-0803
Disclosure Date: December 23, 2004 (last updated February 22, 2025)
Multiple vulnerabilities in the RLE (run length encoding) decoders for libtiff 3.6.1 and earlier, related to buffer overflows and integer overflows, allow remote attackers to execute arbitrary code via TIFF files.
0
Attacker Value
Unknown
CVE-2005-0373
Disclosure Date: October 07, 2004 (last updated February 22, 2025)
Buffer overflow in digestmd5.c CVS release 1.170 (also referred to as digestmda5.c), as used in the DIGEST-MD5 SASL plugin for Cyrus-SASL but not in any official releases, allows remote attackers to execute arbitrary code.
0
Attacker Value
Unknown
CVE-2004-0866
Disclosure Date: September 16, 2004 (last updated February 22, 2025)
Internet Explorer 6.0 allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk, and .sch.uk, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session.
0
Attacker Value
Unknown
CVE-2004-0827
Disclosure Date: September 16, 2004 (last updated February 22, 2025)
Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via malformed (1) AVI, (2) BMP, or (3) DIB files.
0
Attacker Value
Unknown
CVE-2004-0905
Disclosure Date: September 14, 2004 (last updated February 22, 2025)
Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to perform cross-domain scripting and possibly execute arbitrary code by convincing a user to drag and drop javascript: links to a frame or page in another domain.
0
Attacker Value
Unknown
CVE-2004-0587
Disclosure Date: August 06, 2004 (last updated February 22, 2025)
Insecure permissions for the /proc/scsi/qla2300/HbaApiNode file in Linux allows local users to cause a denial of service.
0
Attacker Value
Unknown
CVE-2002-0083
Disclosure Date: March 15, 2002 (last updated February 22, 2025)
Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges.
0
