ZoneAlarm and ZoneAlarm Pro before 5.5.062, with ad-blocking enabled, allows remote web sites to cause a denial of service (application instability or system hang) via certain JavaScript. Date published : 2005-02-19 http://www.securityfocus.com/bid/11706 http://marc.info/?l=bugtraq&m=110088808402495&w=2
Buffer overflow in pop3svr.exe for DMS POP3 1.5.3.27 and earlier allows remote attackers to cause a denial of service (service crash) via a long (1) username or (2) password. Date published : 2005-02-19 http://www.securityfocus.com/bid/11705...
AppServ 2.5.x and earlier installs a default username and password, which allows remote attackers to gain access. Date published : 2005-02-19 http://www.securityfocus.com/bid/11704 http://marc.info/?l=bugtraq&m=110079586328430&w=2
SQL injection vulnerability in post.php in Invision Power Board (IPB) 2.0.0 through 2.0.2 allows remote attackers to execute arbitrary SQL commands via the qpid parameter. Date published : 2005-02-19 http://www.securityfocus.com/bid/11703 http://marc.info/?l=bugtraq&m=110079592702417&w=2
SQL injection vulnerability in the Event Calendar module 2.13 for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the (1) eid or (2) cid parameters. Date published : 2005-02-19 http://www.securityfocus.com/bid/11693 http://marc.info/?l=bugtraq&m=110064626111756&w=2
Cross-site scripting (XSS) vulnerability in the Event Calendar module 2.13 for PHP-Nuke allows remote attackers to execute arbitrary web script via the (1) type, (2) day, (3) month, or (4) year parameters in a...
The Event Calendar module 2.13 for PHP-Nuke allows remote attackers to gain sensitive information via an HTTP request to (1) config.php, (2) index.php, or (3) submit.php, which reveal the full path in an error...
Microsoft Internet Explorer 6.0 SP1 does not properly handle certain character strings in the Path attribute, which can cause it to modify cookies in other domains when the attacker’s domain name is within the...
Hired Team: Trial 2.0 and earlier and 2.200 does not limit how game players can kick other players off the server, including the administrator. Date published : 2005-02-19 http://marc.info/?l=bugtraq&m=110054260919742&w=2 http://secunia.com/advisories/13207
Hired Team: Trial 2.0 and earlier and 2.200 allows remote attackers to cause a denial of service (application crash) via the status command. Date published : 2005-02-19 http://www.securityfocus.com/bid/11683 http://marc.info/?l=bugtraq&m=110054260919742&w=2
Hired Team: Trial 2.0 and earlier and 2.200 allows remote attackers to cause a denial of service (game interruption) via a malformed UDP packet sent to a game port, such as port 29200. Date...
Format string vulnerability in the game console in Hired Team: Trial 2.0 and earlier and 2.200 allows remote attackers to cause a denial of service (application crash) via format string specifiers in a message....
Format string vulnerability in Army Men RTS 1.0 allows remote attackers to cause a denial of service (application crash) via a nickname that contains format strings. Date published : 2005-02-19 http://www.securityfocus.com/bid/11679 http://marc.info/?l=bugtraq&m=110053709800174&w=2
Eudora 6.2.0.14 does not issue a warning when a user forwards an e-mail message that contains base64 or quoted-printable encoded attachments, which makes it easier for remote attackers to read arbitrary files via spoofed...