CVSS: 5.0EPSS: 0%CPEs: 61EXPL: 0CVE-2004-1145
https://notcve.org/view.php?id=CVE-2004-1145
Multiple vulnerabilities in Konqueror in KDE 3.3.1 and earlier (1) allow access to restricted Java classes via JavaScript and (2) do not properly restrict access to certain Java classes from the Java applet, which allows remote attackers to bypass sandbox restrictions and read or write arbitrary files. • http://marc.info/?l=bugtraq&m=110356286722875&w=2 http://secunia.com/advisories/13586 http://www.gentoo.org/security/en/glsa/glsa-200501-16.xml http://www.heise.de/security/dienste/browsercheck/tests/java.shtml http://www.kb.cert.org/vuls/id/420222 http://www.kde.org/info/security/advisory-20041220-1.txt http://www.mandriva.com/security/advisories?name=MDKSA-2004:154 http://www.redhat.com/support/errata/RHSA-2005-065.html https://exchange.xforce.ibmcloud.com/vulnera •
CVSS: 5.0EPSS: 4%CPEs: 12EXPL: 1CVE-2004-0633 – Ethereal 0.x - Multiple iSNS / SMB / SNMP Protocol Dissector Vulnerabilities
https://notcve.org/view.php?id=CVE-2004-0633
The iSNS dissector for Ethereal 0.10.3 through 0.10.4 allows remote attackers to cause a denial of service (process abort) via an integer overflow. El diseccionador iSNS de Ehtereal 0.10.3 a 0.10.4 permite a atacanttes remotos causar una denegación de servicio (aborto del proceso) mediante un desbordamiento de enteros. • https://www.exploit-db.com/exploits/24259 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=127381 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000916 http://secunia.com/advisories/12024 http://securitytracker.com/id?1010655 http://www.ethereal.com/appnotes/enpa-sa-00015.html http://www.gentoo.org/security/en/glsa/glsa-200407-08.xml http://www.kb.cert.org/vuls/id/829422 http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:067 http:&#x •
CVSS: 5.0EPSS: 4%CPEs: 37EXPL: 0CVE-2004-0635
https://notcve.org/view.php?id=CVE-2004-0635
The SNMP dissector in Ethereal 0.8.15 through 0.10.4 allows remote attackers to cause a denial of service (process crash) via a (1) malformed or (2) missing community string, which causes an out-of-bounds read. El diseccionador SNMP de Ethereal 0.8.15 a 0.10.4 permite a atacantes remotos causar una denegación de servicio (caída del proceso) mediante cadenas de comunidad (1) malformadas o (2) inexistentes, lo que causa una lectura fuera de límites. • http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=127381 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000916 http://secunia.com/advisories/12024 http://securitytracker.com/id?1010655 http://www.debian.org/security/2004/dsa-528 http://www.ethereal.com/appnotes/enpa-sa-00015.html http://www.gentoo.org/security/en/glsa/glsa-200407-08.xml http://www.kb.cert.org/vuls/id/835846 http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:067 http& •
CVSS: 5.0EPSS: 4%CPEs: 12EXPL: 0CVE-2004-0634
https://notcve.org/view.php?id=CVE-2004-0634
The SMB SID snooping capability in Ethereal 0.9.15 to 0.10.4 allows remote attackers to cause a denial of service (process crash) via a handle without a policy name, which causes a null dereference. La capacidad de "fisgar" (snoop) el SID (Security ID) de SMB (Server Message Blok) en Etheral 0.9.15 a 0.10.4 permite a atacantes remotos causar una denegación de servicio (caída del proceso) mediante un manejador sin nombre de política, lo que causa una desrefernencia nula. • http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=127381 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000916 http://secunia.com/advisories/12024 http://securitytracker.com/id?1010655 http://www.ethereal.com/appnotes/enpa-sa-00015.html http://www.gentoo.org/security/en/glsa/glsa-200407-08.xml http://www.kb.cert.org/vuls/id/518782 http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:067 http://www.redhat.com/archives/fedora-announce-list&#x •
CVSS: 5.0EPSS: 1%CPEs: 5EXPL: 0CVE-2004-0506
https://notcve.org/view.php?id=CVE-2004-0506
The SPNEGO dissector in Ethereal 0.9.8 to 0.10.3 allows remote attackers to cause a denial of service (crash) via unknown attack vectors that cause a null pointer dereference. El diseccionador de SPNEGO en Ethereal 0.9.8 a 0.10.3 permite a atacantes remotos causar una denegación de servicio (caída) mediante vectores de ataque desconocidos que causan una desreferencia de puntero nulo. • ftp://patches.sgi.com/support/free/security/advisories/20040604-01-U.asc ftp://patches.sgi.com/support/free/security/advisories/20040605-01-U.asc http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000916 http://secunia.com/advisories/11608 http://secunia.com/advisories/11776 http://secunia.com/advisories/11836 http://security.gentoo.org/glsa/glsa-200406-01.xml http://securitytracker.com/id?1010158 http://www.ciac.org/ciac/bulletins/o-150.shtml http://www.ethereal&# •