CVE-2005-3757

The Saxon XSLT parser in Google Mini Search Appliance, and possibly Google Search Appliance, allows remote attackers to obtain sensitive information and execute arbitrary code via dangerous Java class methods in select attribute of xsl:value-of tags in XSLT style sheets, such as 1 system-property...

CVE-2005-3737

Buffer overflow in the SVG importer style.cpp of inkscape 0.41 through 0.42.2 might allow remote attackers to execute arbitrary code via a SVG file with long CSS style property values...

CVE-2005-3683

Stack-based buffer overflow in freeFTPd before 1.0.9 with Logging enabled, allows remote attackers to cause a denial of service application crash, and possibly execute arbitrary code, via a long USER command...

CVE-2005-3662

Off-by-one buffer overflow in pnmtopng before 2.39, when using the -alpha command line option AlphasOfColor, allows attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted PNM file with exactly 256 colors...

CVE-2005-3662

Off-by-one buffer overflow in pnmtopng before 2.39, when using the -alpha command line option AlphasOfColor, allows attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted PNM file with exactly 256 colors...

CVE-2002-2207

Buffer overflow in ssldump 0.9b2 and earlier, when running in decryption mode, allows remote attackers to execute arbitrary code via a long RSA PreMasterSecret...

CVE-2003-1262

Buffer overflow in the httpfetch function of HTTP Fetcher 1.0.0 and 1.0.1 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a URL request via a long 1 host, 2 referer, or 3 userAgent value...

CVE-2005-3523

Format string vulnerability in friendsd2 in GpsDrive allows remote attackers to execute arbitrary code via the dir direction field...

CVE-2005-3504

CVE-2005-3504 is a buffer overflow in swcons within IBM AIX 5.2 (with debug malloc enabled) that could allow a remote attacker to trigger a core dump and potentially execute arbitrary code. The connected documents corroborate the affected component (swcons) and the underlying cause (buffer overfl...

CVE-2005-3486

Multiple format string vulnerabilities in Scorched 3D 39.1 bf and earlier allow remote attackers to execute arbitrary code via various 1 GLConsole::addLine, 2 ServerCommon::sendString, 3 ServerCommon::serverLog functions, and possibly other unspecified vectors...

4D WebStar Tomcat Plugin Remote Buffer Overflow flaw

The remote server is running 4D WebStar Web Server. The remote server is vulnerable to a remote buffer overflow in its Tomcat plugin. A malicious user may be able to crash service or execute arbitrary code on the computer with the privileges of the HTTP server. OpenVAS Vulnerability Test $Id:...

mod_ssl hook functions format string vulnerability

The remote host is using a version vulnerable of modssl which is older than 2.8.19. There is a format string condition in the log functions of the remote module which may allow an attacker to execute arbitrary code on the remote host. Some vendors patched older versions of modssl, so this might b...

CVSTrac history.c history_update function overflow

The remote host seems to be running cvstrac, a web-based bug and patch-set tracking system for CVS. This version contains a flaw related to the historyupdate function in history.c that may allow an attacker to cause a buffer overflow and execute arbitrary code on the remote system...

CVE-2005-3393

Format string vulnerability in the foreignoption function in options.c for OpenVPN 2.0.x allows remote clients to execute arbitrary code via format string specifiers in a push of the dhcp-option command option...

CVE-2005-2930

Stack-based buffer overflow in the chmfindinPMGL function in chmlib.c for chmlib before 0.36, as used in products such as KchmViewer, allows user-assisted attackers to execute arbitrary code via a CHM file containing a long element, a different vulnerability than CVE-2005-3318...

CVE-2005-3332

PHP remote file include vulnerability in admin/define.inc.php in Belchior Foundry vCard 2.9 allows remote attackers to execute arbitrary PHP code via the match parameter...

CVE-2005-3262

Format string vulnerability in RARLAB WinRAR 2.90 through 3.50 allows remote attackers to execute arbitrary code via format string specifiers in a UUE/XXE file, which are not properly handled when WinRAR displays diagnostic errors related to an invalid filename...

CVE-2005-2661

Format string vulnerability in the ParseBannerAndCapability function in main.c for up-imapproxy 1.2.3 and 1.2.4 allows remote IMAP servers to execute arbitrary code via format string specifiers in a banner or capability line...

CVE-2005-3150

Format string vulnerability in the LogFlush function in Weex 2.6.1.5, 2.6.1, and possibly other versions allows remote FTP servers to execute arbitrary code via format strings in filenames...

CVE-2005-3114

Buffer overflow in the ActiveX control for NateOn Messenger NateonDownloadManager.ocx allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long third argument to the GotNate.Excute method...