Novell eDirectory 8.6.2 and 8.7 use case insensitive passwords, which makes it easier for remote attackers to conduct brute force password guessing. Date published : 2005-08-05 http://www.securityfocus.com/bid/4893 http://archives.neohapsis.com/archives/bugtraq/2002-05/0273.html
Buffer overflow in Blue World Lasso Web Data Engine 3.6.5 allows remote attackers to cause a denial of service via a long URL. Date published : 2005-08-05 http://www.securityfocus.com/bid/4110 http://www.securiteam.com/windowsntfocus/5NP0B2A6AQ.html
Microsoft Windows XP allows remote attackers to cause a denial of service (CPU consumption) by flooding UDP port 500 (ISAKMP). Date published : 2005-08-05 http://www.safehack.com/Advisory/sh_XPDOS500.txt http://www.iss.net/security_center/static/8207.php
Netgear RM-356 and RT-338 series SOHO routers allow remote attackers to cause a denial of service (crash) via a UDP port scan, as demonstrated using nmap. Date published : 2005-08-05 http://www.securityfocus.com/bid/4111 http://archives.neohapsis.com/archives/bugtraq/2002-02/0183.html
Cross-site scripting (XSS) vulnerability in Hyper NIKKI System (HNS) Lite before 0.9 and HNS before 2.10-pl2 allows remote attackers to inject arbitrary web script or HTML. Date published : 2005-08-05 http://www.securityfocus.com/bid/4102 http://www.h14m.org/SA/2002/hns-SA-2002-01.txt
Artekopia Netjuke before 1.0 b7 allows remote attackers to execute arbitrary code on the web server, possibly via the section parameter, which is passed to an eval call. Date published : 2005-08-05 http://www.securityfocus.com/bid/3988 http://sourceforge.net/tracker/index.php?func=detail&aid=507312&group_id=42076&atid=432052
search.cgi in AGH HTMLsearch 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the template parameter. Date published : 2005-08-05 http://www.securityfocus.com/bid/3985 http://www.securiteam.com/securitynews/5WP0R2K60O.html
RCA Digital Cable Modem DCM225 and DCM225E, and other modems that must conform to the Data-over-Cable Service Interface Specifications DOCSIS standard, uses the "public" community string for SNMP access, which allows remote attackers to...
Fwmon before 1.0.10 allows remote attackers to cause a denial of service (crash) by causing the kernel to return a large packet. Date published : 2005-08-05 http://www.securityfocus.com/bid/3984 http://www.scaramanga.co.uk/fwmon/fwmon-1.0.10.tar.gz
The RCA Digital Cable Modems DCM225 and DCM225E allow remote attackers to cause a denial of service (modem device reset) by connecting to port 80 on the 10.0.0.0/8 device. Date published : 2005-08-05 http://www.securityfocus.com/bid/4375...
Matt Wright FormMail 1.9 and earlier allows remote attackers to bypass the HTTP_REFERER check and conduct unauthorized activities via (1) a blank referer, (2) a spoofed referer with a trusted domain/URL after the beginning...
Unknown vulnerability in the "VAIO Manual" software in certain Sony VAIO personal computers sold from November 2001 to January 2002, allows remote attackers to modify data via a web page or HTML e-mail. Date...
Cross-site scripting (XSS) vulnerability in the lookup script in Veridis OpenKeyServer (OKS) 1.2 allows remote attackers to inject arbitrary web script or HTML via the search parameter. Date published : 2005-08-05 http://www.securityfocus.com/bid/4369 http://www.securiteam.com/securitynews/5BP0R1P6KE.html
PHP remote file inclusion vulnerability in WikkiTikkiTavi before 0.21 allows remote attackers to execute arbitrary PHP code via the TemplateDir variable, as demonstrated using conflict.php. Date published : 2005-08-05 http://www.securityfocus.com/bid/3946 http://sourceforge.net/mailarchive/message.php?msg_id=185752