CAN-2005-1532

CVE-2005-1532 is a vulnerability in Mozilla-based applications (Mozilla Suite/Firefox/Thunderbird) caused by insufficient validation in handling JavaScript eval and Script objects, enabling remote code execution with the privileges of the logged-in user. Public advisories reference this CVE along...

CAN-2005-1636

CVE-2005-1636 is a MySQL vulnerability describing an insecure temporary file handling bug in the mysql_install_db script that could allow a local user to execute arbitrary SQL commands during installation. Public advisories (RHSA-2005:685, DSA-783-1, CentOS CES A-2005:685, MDKSA-2006:045) cite up...

CAN-2005-2641

The CAN-2005-2641 entry corresponds to a pam_ldap authentication bypass vulnerability. The connected documents confirm: the pam_ldap module before version 180 does not properly handle a new PasswordPolicyControl, enabling possible privilege escalation via authentication bypass. The impact stated ...

CAN-2005-2088

The connected Nessus document lists CVE-2005-2088 as an HTTP Request Smuggling issue in Apache httpd when acting as a proxy: Apache 1.3.x before 1.3.34 and 2.0.x before 2.0.55 are vulnerable to crafted requests with both Transfer-Encoding: chunked and Content-Length headers, leading to misinterpr...

CAN-2005-2627

CAN-2005-2627 and CAN-2005-2626 affect the kismet wireless sniffer. The Debian/OSS advisories describe CAN-2005-2627 as multiple integer underflows that could allow remote code execution, and CAN-2005-2626 as insecure handling of unprintable SSID characters. OpenVAS entries mirror these issues an...

CAN-2005-2101

CVE-2005-2101 concerns the KDE kdeedu suite, where the lange n2kvhtml converter (langen2kvhtml) creates insecure temporary files in /tmp with predictable names. This local-privilege issue allows a non-privileged user to potentially overwrite files, as described in Debian security advisories (DSA-...

CAN-2005-2536

CVE-2005-2536 affects pstotext, which failed to use Ghostscript -dSAFER, allowing remote attackers to exploit malformed PostScript/PDF files to execute arbitrary commands. The issue is documented in Debian DSA-792-1 and OSSC/NASL entries, stating that pstotext did not invoke -dSAFER and that fixe...

CAN-2005-2717

CVE-2005-2717 relates to a remote code execution flaw in the webcalendar package (input validation). Multiple trusted sources (Debian DSA-799-1, Debian security notices) describe a trivially exploitable issue that allowed code execution with HTTP daemon privileges. The Debian advisories state the...

CAN-2005-2700

CAN-2005-2700 describes a client-certificate authentication bypass in mod_ssl for Apache when SSLVerifyClient is configured as optional globally and required in a specific location. The issue allows remote bypass of access controls under certain configurations. Public advisories (e.g., F5 K5278/K...

CAN-2005-2657

CVE-2005-2657 corresponds to a design-error in common-lisp-controller (versions 4.18 and earlier) that allows a local user to compile malicious code into a cache directory, which can be executed by another user who has not run Common Lisp before. Public advisories (DSA-811-1/2) describe a local p...

CAN-2005-2411

The CVE-2005-2411 entry concerns tDiary, a weblog system. A CSRF-design error in tdiary allowed remote attackers to perform actions as another user and execute commands on the server when a user visiting a malicious URL. Publicly referenced in Debian security advisories (DSA-808-1) and related OS...

CAN-2005-2658

CVE-2005-2658 is a buffer overflow in Turquoise SuperStat (turqstat) prior to 2.2.x. Debian advisories describe remote exploitation via a crafted NNTP server that could execute arbitrary code. Public records cite fixed versions per distribution: 2.2.1woody1 (woody), 2.2.2sarge1 (sarge), and 2.2.4...

CAN-2005-2672

CVE-2005-2672 concerns the lm_sensors project, where a bug in the pwmconfig tool creates a temporary file insecurely, allowing potential tampering. Documented in multiple advisories (Debian DSA-814-1, Red Hat RHSA-2005:825, CentOS CESA-2005:825, Fedora 2005-1054/1053), the issue affects lm_sensor...

CAN-2005-2820

CAN-2005-2820 affects the courier/sqwebmail stack. The vulnerability arises from missing input sanitisation that, via Internet Explorer Conditional Comment handling in SqWebmail, can cause hidden JavaScript execution when a user views a malicious email. This is a remote cross-site scripting issue...

CAN-2005-2491

CVE-2005-2491 describes an integer overflow in the PCRE library that is embedded in Python (and is also referenced in Exim advisories). The vulnerability arises when processing specially crafted regular expressions, potentially allowing an attacker to execute arbitrary code with the privileges of...

CAN-2005-2962

The CVE-2005-2962 issue affects ntlmaps prior to version 0.9.9. The post-installation script incorrectly sets configuration file permissions to world-readable, allowing local users to obtain the Windows NT username and password used by ntlmaps. Public advisories (e.g., Debian DSA-830-1) document ...

CAN-2005-2660

CVE-2005-2660 affects apachetop (versions 0.12.5 and earlier). The issue arises when apachetop runs in debug mode: it creates a temporary file insecurely in /tmp (atop.debug), which can be targeted by a local attacker via a symlink attack to overwrite arbitrary files with the webserver/user runni...

CAN-2005-2558

CAN-2005-2558 corresponds to a MySQL CREATE FUNCTION init_syms Buffer Overflow vulnerability. The core issue is improper boundary handling when processing CREATE FUNCTION statements in the MySQL UDF mechanism, allowing a remote attacker who has certain privileges on the MySQL server to cause a de...

CAN-2005-2878

CVE-2005-2878 : A format-string vulnerability exists in GNU mailutils imap4d’s handling of IMAP SEARCH commands. An authenticated attacker could execute arbitrary code on the target system with the imap4d privileges. Affected products: mailutils imap4d (Debian, Gentoo GLSA, etc.). Root cause: ins...

CAN-2005-2992

Arc on Unix up to version 5.21j and earlier creates a temporary file with insecure permissions, allowing a local user to overwrite arbitrary files via a symlink attack (CVE-2005-2992; also CVE-2005-2945). Debian and SuSE advisories reference these vulnerabilities and patches exist (DSA-843-1; arc...