Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

4.6

MEDIUM

CVE-2004-1181

htmlheadline before 21.8 allows local users to overwrite arbitrary files via a symlink attack on temporary files....

Affected Products : htmlheadline
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
5.0

MEDIUM

CVE-2005-0081

MySQL MaxDB 7.5.0.0, and other versions before 7.5.0.21, allows remote attackers to cause a denial of service (crash) via an HTTP request with invalid headers....

Affected Products : maxdb
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
5.0

MEDIUM

CVE-2004-1093

Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service via "use of already freed memory."...

Affected Products : enterprise_linux debian_linux suse_linux linux_advanced_workstation linux turbolinux_server turbolinux_workstation midnight_commander
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
4.3

MEDIUM

CVE-2005-1118

Cross-site scripting (XSS) vulnerability in IISWebAgentIF.dll in the RSA Authentication Agent for Web 5.2 allows remote attackers to inject arbitrary web script or HTML via the postdata parameter....

Affected Products : authentication_agent_for_web
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
2.1

LOW

CVE-2005-0124

The coda_pioctl function in the coda functionality (pioctl.c) for Linux kernel 2.6.9 and 2.4.x before 2.4.29 may allow local users to cause a denial of service (crash) or execute arbitrary code via negative vi.in_size or vi.out_size values, which may trig...

Affected Products : linux_kernel
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
4.6

MEDIUM

CVE-2005-0004

The mysqlaccess script in MySQL 4.0.23 and earlier, 4.1.x before 4.1.10, 5.0.x before 5.0.3, and other versions including 3.x, allows local users to overwrite arbitrary files or read temporary files via a symlink attack on temporary files....

Affected Products : debian_linux mysql mariadb
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
7.5

HIGH

CVE-2004-1004

Multiple format string vulnerabilities in Midnight Commander (mc) 4.5.55 and earlier allow remote attackers to have an unknown impact....

Affected Products : enterprise_linux debian_linux suse_linux linux_advanced_workstation linux turbolinux_server turbolinux_workstation midnight_commander
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
5.0

MEDIUM

CVE-2005-0082

The sapdbwa_GetUserData function in MySQL MaxDB 7.5.0.0, and other versions before 7.5.0.21, allows remote attackers to cause a denial of service (crash) via invalid parameters to the WebDAV handler code, which triggers a null dereference that causes the ...

Affected Products : maxdb
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
7.5

HIGH

CVE-2005-0130

Certain Perl scripts in Konversation 0.15 allow remote attackers to execute arbitrary commands via shell metacharacters in (1) channel names or (2) song names that are not properly quoted when the user runs IRC scripts....

Affected Products : konversation
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
7.2

HIGH

CVE-2005-0020

Buffer overflow in playmidi before 2.4 allows local users to execute arbitrary code....

Affected Products : mandrake_linux mandrake_linux_corporate_server playmidi
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
2.1

LOW

CVE-2004-0812

Unknown vulnerability in the Linux kernel before 2.4.23, on the AMD AMD64 and Intel EM64T architectures, associated with "setting up TSS limits," allows local users to cause a denial of service (crash) and possibly execute arbitrary code....

Affected Products : linux_kernel enterprise_linux enterprise_linux_desktop
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
7.5

HIGH

CVE-2004-1176

Buffer underflow in extfs.c in Midnight Commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code....

Affected Products : enterprise_linux debian_linux suse_linux linux_advanced_workstation linux turbolinux_server turbolinux_workstation midnight_commander
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
5.0

MEDIUM

CVE-2005-0112

The web-based administrative interface for 3Com OfficeConnect Wireless 11g Access Point (AP) 1.00.08, and possibly earlier versions before 1.03.07A, allows remote attackers to bypass authentication and obtain sensitive information by directly accessing th...

Affected Products : 3crwe454g72
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
6.2

MEDIUM

CVE-2004-1235

Race condition in the (1) load_elf_library and (2) binfmt_aout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor....

Affected Products : linux_kernel enterprise_linux enterprise_linux_desktop suse_linux linux modular_messaging_message_storage_server ubuntu_linux linux mandrake_linux mandrake_linux_corporate_server +10 more products
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
5.0

MEDIUM

CVE-2004-1092

Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by causing mc to free unallocated memory....

Affected Products : enterprise_linux debian_linux suse_linux linux_advanced_workstation linux turbolinux_server turbolinux_workstation midnight_commander
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
5.0

MEDIUM

CVE-2004-1009

Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service (infinite loop) via unknown attack vectors....

Affected Products : enterprise_linux debian_linux suse_linux linux_advanced_workstation linux turbolinux_server turbolinux_workstation midnight_commander
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
7.5

HIGH

CVE-2004-1175

fish.c in midnight commander allows remote attackers to execute arbitrary programs via "insecure filename quoting," possibly using shell metacharacters....

Affected Products : enterprise_linux debian_linux suse_linux linux_advanced_workstation linux turbolinux_server turbolinux_workstation midnight_commander
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
5.0

MEDIUM

CVE-2005-1043

exif.c in PHP before 4.3.11 allows remote attackers to cause a denial of service (memory consumption and crash) via an EXIF header with a large IFD nesting level, which causes significant stack recursion....

Affected Products : mac_os_x mac_os_x_server php suse_linux propack linux peachtree_linux
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
7.5

HIGH

CVE-2005-0129

The Quick Buttons feature in Konversation 0.15 allows remote attackers to execute certain IRC commands via a channel name containing "%" variables, which are recursively expanded by the Server::parseWildcards function when the Part Button is selected....

Affected Products : konversation
Published: Apr. 14, 2005

Modified: Apr. 03, 2025
5.0

MEDIUM

CVE-2005-0718

Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (segmentation fault) by aborting the connection during a (1) PUT or (2) POST request, which causes Squid to access previously freed memory....

Affected Products : squid
Published: Apr. 14, 2005

Modified: Apr. 03, 2025

Showing 20 of 292830 Results

Browse by Apps

Latest CVE Feed

4.6

5.0

5.0

4.3

2.1

4.6

7.5

5.0

7.5

7.2

2.1

7.5

5.0

6.2

5.0

5.0

7.5

5.0

7.5

5.0

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable