CVE-2007-5715

DenyHosts 2.6 processes OpenSSH sshd "not listed in AllowUsers" log messages with an incorrect regular expression that does not match an IP address, which might allow remote attackers to avoid detection and blocking when making invalid login attempts with a username not present in AllowUsers, as...

CVE-2004-0552

Sophos Small Business Suite 1.00 on Windows does not properly handle files whose names contain reserved MS-DOS device names such as 1 LPT1, 2 COM1, 3 AUX, 4 CON, or 5 PRN, which can allow malicious code to bypass detection when it is installed, copied, or executed...