CVE-2005-0192

Directory traversal vulnerability in the parsing of Skin file names in RealPlayer 10.5 (6.0.12.1040) and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in an RJS filename.

Publication date: Wed, 06 Oct 2004 09:00:00 +0000

Cyber News related to CVE-2005-0192

CVE-2005-0192 - Directory traversal vulnerability in the parsing of Skin file names in RealPlayer 10.5 (6.0.12.1040) and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in an RJS filename. ...
7 years ago

CVE-2002-0192 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2002-0193, CVE-2002-1564. Reason: This candidate was published with a description that identified a different vulnerability than what was identified in the original authoritative ...
55 years ago Tenable.com

CVE-2010-0192 - Unspecified vulnerability in Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, allows attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors, a different vulnerability than ...
6 years ago

CVE-2010-0193 - Unspecified vulnerability in Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, allows attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors, a different vulnerability than ...
6 years ago

CVE-2010-0196 - Unspecified vulnerability in Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, allows attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors, a different vulnerability than ...
6 years ago

CVE-2001-0192 - Buffer overflows in CTRLServer in XMail allows attackers to execute arbitrary commands via the cfgfileget or domaindel functions. ...
16 years ago

CVE-2000-0192 - The default installation of Caldera OpenLinux 2.3 includes the CGI program rpm_query, which allows remote attackers to determine what packages are installed on the system. ...
16 years ago

CVE-2011-0192 - Buffer overflow in Fax4Decode in LibTIFF 3.9.4 and possibly other versions, as used in ImageIO in Apple iTunes before 10.2 on Windows and other products, allows remote attackers to execute arbitrary code or cause a denial of service (application ...
10 years ago

CVE-2012-0034 - The NonManagedConnectionFactory in JBoss Enterprise Application Platform (EAP) 5.1.2 and 5.2.0, Web Platform (EWP) 5.1.2 and 5.2.0, and BRMS Platform before 5.3.1 logs the username and password in cleartext when an exception is thrown, which allows ...
10 years ago

CVE-2004-0192 - Cross-site scripting (XSS) vulnerability in the Management Service for Symantec Gateway Security 2.0 allows remote attackers to steal cookies and hijack a management session via a /sgmi URL that contains malicious script, which is not quoted in the ...
7 years ago

CVE-2017-0192 - The Adobe Type Manager Font Driver (ATMFD.dll) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold , 1511, 1607, and 1703 allows an ...
7 years ago

CVE-2012-0192 - Multiple integer overflows in vclmi.dll in the visual class library module in IBM Lotus Symphony before 3.0.1 might allow remote attackers to execute arbitrary code via an embedded (1) JPEG or (2) PNG image object in a Symphony document that triggers ...
7 years ago

CVE-2009-0192 - Off-by-one error in the iMonitor component in Novell eDirectory 8.8 SP3, 8.8 SP3 FTF3, and possibly other versions allows remote attackers to execute arbitrary code via an HTTP request with a crafted Accept-Language header, which triggers a ...
6 years ago

CVE-2016-0192 - Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability." ...
6 years ago

CVE-2008-0192 - Multiple cross-site scripting (XSS) vulnerabilities in WordPress 2.0.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the popuptitle parameter to (1) wp-admin/post.php or (2) wp-admin/page-new.php. ...
6 years ago

CVE-2012-5478 - The AuthorizationInterceptor in JBoss Enterprise Application Platform (EAP) before 5.2.0, Web Platform (EWP) before 5.2.0, BRMS Platform before 5.3.1, and SOA Platform before 5.3.1 does not properly restrict access, which allows remote authenticated ...
7 years ago

CVE-2007-0192 - Cross-site request forgery (CSRF) vulnerability in the save_main operation in the ad_perms section in admin.php in MKPortal allows remote attackers to modify privilege settings, as demonstrated using a getURL of admin.php within a .swf file contained ...
6 years ago

CVE-2006-0192 - SQL injection vulnerability in Login_Validate.asp in ASPSurvey 1.10 allows remote attackers to execute arbitrary SQL commands via the Password parameter to login.asp. ...
6 years ago

CVE-2015-0192 - Unspecified vulnerability in IBM Java 8 before SR1, 7 R1 before SR2 FP11, 7 before SR9, 6 R1 before SR8 FP4, 6 before SR16 FP4, and 5.0 before SR16 FP10 allows remote attackers to gain privileges via unknown vectors related to the Java Virtual ...
5 years ago

CVE-2013-0192 - File Disclosure in SMF (SimpleMachines Forum) < 2.0.3: Forum admin can read files such as the database config. ...
4 years ago

CVE-2019-0192 - In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows to configure the JMX server via an HTTP POST request. By pointing it to a malicious RMI server, an attacker could take advantage of Solr's unsafe deserialization to ...
4 years ago

CVE-2003-0192 - Apache 2 before 2.0.47, and certain versions of mod_ssl for Apache 1.3, do not properly handle "certain sequences of per-directory renegotiations and the SSLCipherSuite directive being used to upgrade from a weak ciphersuite to a strong one," ...
3 years ago

CVE-2020-0192 - In ih264d_decode_slice_thread of ih264d_thread_parse_decode.c, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction ...
3 years ago

CVE-2022-0192 - A DLL search path vulnerability was reported in Lenovo PCManager prior to version 4.0.40.2175 that could allow privilege escalation. ...
2 years ago

CVE-1999-0192 - Buffer overflow in telnet daemon tgetent routing allows remote attackers to gain root access via the TERMCAP environmental variable. ...
2 years ago

Latest Cyber News

CVE-2024-12477 - 19 hours ago
CVE-2024-56923 - 20 hours ago
CVE-2024-56924 - 20 hours ago
CVE-2024-56914 - 21 hours ago
CVE-2025-0611 - 21 hours ago
CVE-2025-0612 - 21 hours ago
CVE-2024-9310 - 22 hours ago
CVE-2024-11166 - 22 hours ago
CVE-2025-23047 - 23 hours ago
CVE-2024-55957 - 23 hours ago
CVE-2025-0651 - 23 hours ago
CVE-2025-24401 - 1 day ago
CVE-2025-24402 - 1 day ago
CVE-2025-24403 - 1 day ago
CVE-2025-20165 - 1 day ago
CVE-2025-23028 - 1 day ago
CVE-2025-24397 - 1 day ago
CVE-2025-24398 - 1 day ago
CVE-2025-24399 - 1 day ago
CVE-2025-24400 - 1 day ago

Cyber Trends (last 7 days)

Okta - 1 year ago
23andMe - 1 year ago
Kimsuky - 1 year ago
LogoFAIL - 1 year ago
Gh0st rat - 1 year ago

Trending Cyber News (last 7 days)

CVE-2024-22349 - 2 days ago
CVE-2024-10846 - 2 days ago
CVE-2024-45336 - 2 days ago
CVE-2024-45341 - 2 days ago
CVE-2024-45091 - 2 days ago
CVE-2024-13444 - 2 days ago
CVE-2024-57934 - 2 days ago
CVE-2024-57938 - 2 days ago
CVE-2025-0509 - 2 days ago
CVE-2025-21660 - 2 days ago
CVE-2024-49700 - 2 days ago
CVE-2024-51919 - 2 days ago
CVE-2025-22318 - 2 days ago
CVE-2025-22553 - 2 days ago
CVE-2025-22717 - 2 days ago
CVE-2025-22727 - 2 days ago
CVE-2025-22733 - 2 days ago
CVE-2025-0623 - 2 days ago
CVE-2024-54792 - 1 day ago
CVE-2025-22150 - 1 day ago