Page 403 of 2061 results (0.059 seconds)

CVSS: 7.5EPSS: 3%CPEs: 86EXPL: 0

CVE-2005-0373

https://notcve.org/view.php?id=CVE-2005-0373

Buffer overflow in digestmd5.c CVS release 1.170 (also referred to as digestmda5.c), as used in the DIGEST-MD5 SASL plugin for Cyrus-SASL but not in any official releases, allows remote attackers to execute arbitrary code. • http://www.gentoo.org/security/en/glsa/glsa-200410-05.xml http://www.linuxcompatible.org/print42495.html http://www.mandriva.com/security/advisories?name=MDKSA-2005:054 http://www.monkey.org/openbsd/archive/ports/0407/msg00265.html http://www.securityfocus.com/bid/11347 https://bugzilla.andrew.cmu.edu/cgi-bin/cvsweb.cgi/src/sasl/plugins/digestmd5.c.diff?r1=1.170&r2=1.171 https://bugzilla.andrew.cmu.edu/cgi-bin/cvsweb.cgi/src/sasl/plugins/digestmd5.c?rev=1.171&content-type •

CVSS: 5.0EPSS: 0%CPEs: 28EXPL: 0

CVE-2004-0743

https://notcve.org/view.php?id=CVE-2004-0743

Safari in Mac OS X before 10.3.5, after sending form data using the POST method, may re-send the data to a GET method URL if that URL is redirected after the POST data and the user uses the forward or backward buttons, which may cause an information leak. Safari para Mac OS X anteriores a 10.3.5, despues de enviar datos de formualarios con el método POST, puede reenviar los datos a un método GET si esa URL es redirigida después de que los datos POST y el usuario utiliza los botones "Atrás" y "Adelante", lo que puede causar un filtrado de información. • http://lists.apple.com/mhonarc/security-announce/msg00056.html http://www.kb.cert.org/vuls/id/128414 https://exchange.xforce.ibmcloud.com/vulnerabilities/16944 •

CVSS: 5.0EPSS: 1%CPEs: 28EXPL: 0

CVE-2004-0744

https://notcve.org/view.php?id=CVE-2004-0744

The TCP/IP Networking component in Mac OS X before 10.3.5 allows remote attackers to cause a denial of service (memory and resource consumption) via a "Rose Attack" that involves sending a subset of small IP fragments that do not form a complete, larger packet. El componente de red TCP/IP de Mac OS X anteriores a 10.3.5 permite a atacantes remotos causar una denegación de servicio (consumición de recursos) mediante un "Ataque de Rosa" en el que se usan ciertos fragmentos IP. • http://digital.net/~gandalf/Rose_Frag_Attack_Explained.txt http://marc.info/?l=bugtraq&m=108075899619193&w=2 http://marc.info/?l=bugtraq&m=108308604119618&w=2 http://www.auscert.org.au/render.html?it=4291 https://exchange.xforce.ibmcloud.com/vulnerabilities/16946 •

CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0

CVE-2004-0513

https://notcve.org/view.php?id=CVE-2004-0513

Unspecified vulnerability in Mac OS X before 10.3.4 has unknown impact and attack vectors related to "logging when tracing system calls." Vulnerabilidad no especificada en Mac OS X versiones anteriores a 10.3.4, tiene un impacto desconocido y vectores de ataque relacionados con "registro de sucesos cuando se siguen llamadas del sistema". • http://lists.apple.com/archives/security-announce/2004/May/msg00005.html http://www.securityfocus.com/bid/10432 http://www.securitytracker.com/alerts/2004/May/1010329.html https://exchange.xforce.ibmcloud.com/vulnerabilities/16291 •

CVSS: 7.6EPSS: 0%CPEs: 1EXPL: 1

CVE-2004-0489

https://notcve.org/view.php?id=CVE-2004-0489

Argument injection vulnerability in the SSH URI handler for Safari on Mac OS 10.3.3 and earlier allows remote attackers to (1) execute arbitrary code via the ProxyCommand option or (2) conduct port forwarding via the -R option. Vulnerabilidad de inyección de argumentos en el manejador de URI SSH de Safari sobre Mac OS 10.3.3 y anteriores permite a atacantes remotos (1) ejecutar código de su elección mediante la opción ProxyCommand o (2) hacer reenvío de puertos mediante la opción -R. • http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021871.html http://www.insecure.ws/article.php?story=200405222251133 https://exchange.xforce.ibmcloud.com/vulnerabilities/16242 • CWE-88: Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') •