CVE List

Id CVE No. Status Description Phase Votes Comments Actions
8740  CVE-2004-0312  Candidate  Linksys WAP55AG 1.07 allows remote attackers with access to an SNMP read only community string to gain access to read/write communtiy strings via a query for OID 1.3.6.1.4.1.3955.2.1.13.1.2.  Proposed (20040318)  NOOP(4) Armstrong, Cole, Cox, Wall    View
8739  CVE-2004-0311  Candidate  American Power Conversion (APC) Web/SNMP Management SmartSlot Card 3.0 through 3.0.3 and 3.21 are shipped with a default password of TENmanUFactOryPOWER, which allows remote attackers to gain unauthorized access.  Proposed (20040318)  ACCEPT(3) Armstrong, Baker, Cole | NOOP(2) Cox, Wall    View
8738  CVE-2004-0310  Candidate  Cross-site scripting (XSS) vulnerability in LiveJournal 1.0 and 1.1 allows remote attackers to execute Javascript as other users via the stylesheet, which does not strip the semicolon or parentheses, as demonstrated using a background:url.  Proposed (20040318)  NOOP(5) Armstrong, Christey, Cole, Cox, Wall  Christey> Despite the description, the specific affected versions are | not actually known. Either they need to be removed or we need | some source that can confirm the affected versions.  View
8737  CVE-2004-0309  Entry  Stack-based buffer overflow in the SMTP service support in vsmon.exe in Zone Labs ZoneAlarm before 4.5.538.001, ZoneLabs Integrity client 4.0 before 4.0.146.046, and 4.5 before 4.5.085, allows remote attackers to execute arbitrary code via a long RCPT TO argument.        View
8736  CVE-2004-0308  Candidate  Unknown vulnerability in Cisco ONS 15327 before 4.1(3), ONS 15454 before 4.6(1), ONS 15454 SD before 4.1(3), and Cisco ONS15600 before 1.3(0) allows a superuser whose account is locked out, disabled, or suspended to gain unauthorized access via a Telnet connection to the VxWorks shell.  Modified (20040820)  ACCEPT(4) Armstrong, Baker, Cole, Wall | NOOP(1) Cox    View

Page 19196 of 20943, showing 5 records out of 104715 total, starting on record 95976, ending on 95980

Actions