Avaya

Modular Messaging Message Storage Server

15 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2005-4471

Exploit
  • EPSS 1.33%
  • Veröffentlicht 22.12.2005 00:03:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

POP3 service in Avaya Modular Messaging Message Storage Server (MSS) 2.0 SP 4 and earlier allows remote attackers to cause a denial of service (infinite loop) via crafted packets.

6.2

CVE-2004-1235

Exploit
  • EPSS 0.08%
  • Veröffentlicht 14.04.2005 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Race condition in the (1) load_elf_library and (2) binfmt_aout function calls for uselib in Linux kernel 2.4 through 2.429-rc2 and 2.6 through 2.6.10 allows local users to execute arbitrary code by manipulating the VMA descriptor.

2.1

CVE-2005-0003

  • EPSS 0.08%
  • Veröffentlicht 14.04.2005 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

The 64 bit ELF support in Linux kernel 2.6 before 2.6.10, on 64-bit architectures, does not properly check for overlapping VMA (virtual memory address) allocations, which allows local users to cause a denial of service (system crash) or execute arbit...

10

CVE-2004-1050

  • EPSS 75.6%
  • Veröffentlicht 31.12.2004 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Heap-based buffer overflow in Internet Explorer 6 allows remote attackers to execute arbitrary code via long (1) SRC or (2) NAME attributes in IFRAME, FRAME, and EMBED elements, as originally discovered using the mangleme utility, aka "the IFRAME vul...

5

CVE-2004-0841

Exploit
  • EPSS 55.96%
  • Veröffentlicht 23.12.2004 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Internet Explorer 6.x allows remote attackers to install arbitrary programs via mousedown events that call the Popup.show method and use drag-and-drop actions in a popup window, aka "HijackClick 3" and the "Script in Image Tag File Download Vulnerabi...

7.5

CVE-2004-0842

Exploit
  • EPSS 84.33%
  • Veröffentlicht 23.12.2004 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Internet Explorer 6.0 SP1 and earlier, and possibly other versions, allows remote attackers to cause a denial of service (application crash from "memory corruption") via certain malformed Cascading Style Sheet (CSS) elements that trigger heap-based b...

7.5

CVE-2004-1307

  • EPSS 5.11%
  • Veröffentlicht 21.12.2004 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Integer overflow in the TIFFFetchStripThing function in tif_dirread.c for libtiff 3.6.1 allows remote attackers to execute arbitrary code via a TIFF file with the STRIPOFFSETS flag and a large number of strips, which causes a zero byte buffer to be a...

5

CVE-2004-0839

Exploit
  • EPSS 45.43%
  • Veröffentlicht 18.08.2004 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Internet Explorer in Windows XP SP2, and other versions including 5.01 and 5.5, allows remote attackers to install arbitrary programs via a web page that uses certain styles and the AnchorClick behavior, popup windows, and drag-and-drop capabilities ...

10

CVE-2004-0201

  • EPSS 63.79%
  • Veröffentlicht 06.08.2004 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Heap-based buffer overflow in the HtmlHelp program (hh.exe) in HTML Help for Microsoft Windows 98, Me, NT 4.0, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary commands via a .CHM file with a large length field, a different vuln...

7.2

CVE-2004-0205

  • EPSS 5.72%
  • Veröffentlicht 06.08.2004 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Buffer overflow in Microsoft Internet Information Server (IIS) 4.0 allows local users to execute arbitrary code via the redirect function.