The design of the Internet Key Exchange (IKE) protocol, when using Aggressive Mode for shared secret authentication, does not encrypt initiator or responder identities during negotiation, which may allow remote attackers to determine valid...
Buffer overflow in certain RPC routines in IBM AIX 4.3 may allow attackers to execute arbitrary code, related to a "variable data type." Date published : 2005-03-26 http://www-1.ibm.com/support/search.wss?rs=0&q=IY28706&apar=only http://www.kb.cert.org/vuls/id/273779
Buffer overflow in the file_comp function in rcp for IBM AIX 4.3.x and 5.1 allows remote attackers to execute arbitrary code. Date published : 2005-03-26 http://www-1.ibm.com/support/search.wss?rs=0&q=IY26503&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=IY28698&apar=only
Unknown vulnerability in IBM AIX Parallel Systems Support Programs (PSSP) 3.1.1, 3.2, and 3.4 allows remote attackers to read arbitrary files from a file collection. Date published : 2005-03-26 http://www-1.ibm.com/support/search.wss?rs=0&q=IY20699&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=IY28063&apar=only
Buffer overflow in the FC client for IBM AIX 4.3.x allows remote attackers to cause a denial of service (crash and core dump). Date published : 2005-03-26 http://www-1.ibm.com/support/search.wss?rs=0&q=IY27310&apar=only http://www.kb.cert.org/vuls/id/152955
Scalable OGo (SOGo) 1.0 allows remote authenticated users to bypass intended permissions and view private appointments of other users. Date published : 2005-03-26 http://bugzilla.opengroupware.org/bugzilla/show_bug.cgi?id=1060 http://www.osvdb.org/14675
SQL injection vulnerability in Dream4 Koobi CMS 4.2.3 allows remote attackers to execute arbitrary SQL commands via the area parameter. Date published : 2005-03-26 http://www.securityfocus.com/bid/12896 http://securitytracker.com/id?1013558
Cross-site scripting (XSS) vulnerability in index.php for Dream4 Koobi CMS 4.2.3 allows remote attackers to inject arbitrary web script or HTML via the area parameter. Date published : 2005-03-26 http://www.securityfocus.com/bid/12895 http://securitytracker.com/id?1013558
Multiple cross-site scripting (XSS) vulnerabilities in functions.inc.php for Double Choco Latte 0.9.4.3 allow remote attackers to inject arbitrary web script or HTML via the (1) class or (2) method name. Date published : 2005-03-26...
Eval injection vulnerability in Double Choco Latte before 0.9.4.3 allows remote attackers to execute arbitrary PHP code via the menuAction variable in (1) functions.inc.php or (2) main.php, which causes code to be injected into...
Cross-site scripting (XSS) vulnerability in Invision Power Board 2.0.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an HTTP POST request. Date published : 2005-03-26 http://www.securityfocus.com/bid/12888
Multiple cross-site scripting (XSS) vulnerabilities in XMB Forum 1.9.1 allow remote attackers to inject arbitrary web script or HTML via the (1) Mood or (2) "Send To" fields. Date published : 2005-03-26 http://www.securityfocus.com/bid/12886 https://docs.xmbforum2.com/index.php?title=Security_Issue_History
DigitalHive 2.0 allows remote attackers to re-install the product by directly accessing the install script. Date published : 2005-03-26 http://securitytracker.com/id?1013516 https://exchange.xforce.ibmcloud.com/vulnerabilities/19802
Multiple cross-site scripting (XSS) vulnerabilities in base.php for DigitalHive 2.0 allow remote attackers to inject arbitrary web script or HTML via (1) the mt parameter to the membres.php page or (2) the -afs-1- query...