CVSS: 9.1EPSS: 3%CPEs: 73EXPL: 0CVE-2004-0817 – dsa-548.txt
https://notcve.org/view.php?id=CVE-2004-0817
17 Sep 2004 — Multiple heap-based buffer overflows in the imlib BMP image handler allow remote attackers to execute arbitrary code via a crafted BMP file. A heap overflow error in imlib could be abused by an attacker to execute arbitrary code on the vicim's machine. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000870 •
CVSS: 8.8EPSS: 3%CPEs: 73EXPL: 0CVE-2004-0827 – dsa-547.txt
https://notcve.org/view.php?id=CVE-2004-0827
16 Sep 2004 — Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via malformed (1) AVI, (2) BMP, or (3) DIB files. SUSE has discovered several buffer overflows in the ImageMagick graphics library. An attacker could create a malicious image or video file in AVI, BMP, or DIB format that could crash the reading process. It might be possible that carefully crafted im... • http://secunia.com/advisories/28800 •
CVSS: 7.5EPSS: 10%CPEs: 30EXPL: 1CVE-2004-0809
https://notcve.org/view.php?id=CVE-2004-0809
16 Sep 2004 — The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process crash) via a certain sequence of LOCK requests for a location that allows WebDAV authoring access. • http://cvs.apache.org/viewcvs.cgi/httpd-2.0/modules/dav/fs/lock.c?r1=1.32&r2=1.33 •
CVSS: 5.5EPSS: 0%CPEs: 28EXPL: 0CVE-2004-0559 – dsa-544.txt
https://notcve.org/view.php?id=CVE-2004-0559
15 Sep 2004 — The maketemp.pl script in Usermin 1.070 and 1.080 allows local users to overwrite arbitrary files at install time via a symlink attack on the /tmp/.usermin directory. El script maketemp.pl en Usermin 1.070 y 1.080 permite a usuarios locales sobreescribir ficheros de su elección durante la instalación mediante un ataque de enlaces simbólicos en el directorio /tmp/.usermin Ludwig Nussel discovered a problem in webmin, a web-based administration toolkit. A temporary directory was used but without checking for ... • http://secunia.com/advisories/12488 •
CVSS: 7.5EPSS: 9%CPEs: 27EXPL: 0CVE-2004-0807 – samba30x.txt
https://notcve.org/view.php?id=CVE-2004-0807
13 Sep 2004 — Samba 3.0.6 and earlier allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via certain malformed requests that cause new processes to be spawned and enter an infinite loop. Samba 3.0.x is susceptible to multiple denial of services bugs that can remotely crash the daemons nmbd and smbd. • ftp://patches.sgi.com/support/free/security/advisories/20041201-01-P •
CVSS: 9.8EPSS: 5%CPEs: 8EXPL: 0CVE-2004-0805 – mpg123overflow.txt
https://notcve.org/view.php?id=CVE-2004-0805
10 Sep 2004 — Buffer overflow in layer2.c in mpg123 0.59r and possibly mpg123 0.59s allows remote attackers to execute arbitrary code via a certain (1) mp3 or (2) mp2 file. Desbordamiento de búfer en layer2.c en mpg123 0.59r y posiblemente en mpg123 0.59s permite a atacantes remotos ejecutar código arbitrario mediante ciertos ficheros mp3 o mp2. A malicious formatted mp3/2 causes mpg123 to fail header checks, this may allow arbitrary code to be executed with the privilege of the user trying to play the mp3. Versions affe... • http://lists.grok.org.uk/pipermail/full-disclosure/2004-September/026151.html •
CVSS: 9.8EPSS: 3%CPEs: 34EXPL: 0CVE-2004-0500 – Fedora Legacy Update Advisory 1237
https://notcve.org/view.php?id=CVE-2004-0500
02 Sep 2004 — Buffer overflow in the MSN protocol plugins (1) object.c and (2) slp.c for Gaim before 0.82 allows remote attackers to cause a denial of service and possibly execute arbitrary code via MSNSLP protocol messages that are not properly handled in a strncpy call. Desbordamiento de búfer en los conectores de protocolo MSN (1) object.c y (2) slp.c en Gaim anteriores a 0.83 permite a atacantes remotos causar una denegación de servicio y posiblemente ejecutar código de su elección mediante mensajes de protocolo MSNS... • http://gaim.sourceforge.net/security/?id=0 •
CVSS: 9.1EPSS: 1%CPEs: 27EXPL: 0CVE-2004-0746 – wp-04-0001.txt
https://notcve.org/view.php?id=CVE-2004-0746
24 Aug 2004 — Konqueror in KDE 3.2.3 and earlier allows web sites to set cookies for country-specific top-level domains, such as .ltd.uk, .plc.uk and .firm.in, which could allow remote attackers to perform a session fixation attack and hijack a user's HTTP session. Konqueror en KDE 3.2.3 Y anteriores pemiten a sitios web establecer cookies para dominios de nivel superior específicos de países, como ltd.uk o com.es, lo que podría permitir a atacantes remotos realizar un ataque de fijación de sesión y secuestrar una sesión... • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000864 •
CVSS: 5.5EPSS: 0%CPEs: 10EXPL: 0CVE-2004-0565 – linux.ia64.psr.mfh.txt
https://notcve.org/view.php?id=CVE-2004-0565
08 Jul 2004 — Floating point information leak in the context switch code for Linux 2.4.x only checks the MFH bit but does not verify the FPH owner, which allows local users to read register values of other processes by setting the MFH bit. Fuga de información de punto flotante en el código de cambio de contexto de Linux 2.4.x sólo comprueba el bit MFH pero no verifica el propietario de FPH, lo que permite a usuarios locales leer valores de registros de otros procesos estableciendo el bit MFH. Arun Sharma has discovered a... • http://archives.neohapsis.com/archives/linux/owl/2004-q2/0038.html •
CVSS: 7.5EPSS: 37%CPEs: 12EXPL: 1CVE-2004-0633 – Ethereal 0.x - Multiple iSNS / SMB / SNMP Protocol Dissector Vulnerabilities
https://notcve.org/view.php?id=CVE-2004-0633
06 Jul 2004 — The iSNS dissector for Ethereal 0.10.3 through 0.10.4 allows remote attackers to cause a denial of service (process abort) via an integer overflow. El diseccionador iSNS de Ehtereal 0.10.3 a 0.10.4 permite a atacanttes remotos causar una denegación de servicio (aborto del proceso) mediante un desbordamiento de enteros. It may be possible to make Ethereal crash or run arbitrary code by injecting a purposefully malformed packet onto the wire or by convincing someone to read a malformed packet trace file due t... • https://www.exploit-db.com/exploits/24259 •