CVE-2005-1092

Lightspeed DeluxeFTP 6.01 stores usernames and passwords in plaintext in sites.xml, which is world-readable, which allows local users to gain privileges.

Publication date: Mon, 02 May 2005 09:00:00 +0000

Cyber News related to CVE-2005-1092

CVE-2005-1092 - Lightspeed DeluxeFTP 6.01 stores usernames and passwords in plaintext in sites.xml, which is world-readable, which allows local users to gain privileges. ...
15 years ago

CVE-2019-1062 - A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1092, ...
3 years ago

CVE-2019-1106 - A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1062, ...
3 years ago

CVE-2019-1092 - A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1062, ...
3 years ago

CVE-2019-1107 - A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1062, ...
3 years ago

CVE-2019-1103 - A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1062, ...
3 years ago

CVE-2012-1092 - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2012-1410. Reason: This candidate is a reservation duplicate of CVE-2012-1410. Notes: All CVE users should reference CVE-2012-1410 instead of this candidate. All references and ...
54 years ago Tenable.com

CVE-2020-1062 - A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-1092. ...
2 years ago

CVE-2020-1092 - A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-1062. ...
2 years ago

CVE-2016-1092 - Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allow attackers to obtain sensitive information from process ...
7 years ago

CVE-2016-1079 - Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allow attackers to obtain sensitive information from process ...
7 years ago

CVE-2007-1256 - Mozilla Firefox 2.0.0.2 allows remote attackers to spoof the address bar, favicons, and document source, and perform updates in the context of arbitrary websites, by repeatedly setting document.location in the onunload attribute when linking to ...
5 years ago

CVE-2008-1092 - Buffer overflow in msjet40.dll before 4.0.9505.0 in Microsoft Jet Database Engine allows remote attackers to execute arbitrary code via a crafted Word file, as exploited in the wild in March 2008. NOTE: as of 20080513, Microsoft has stated that this ...
5 years ago

CVE-2013-1092 - Multiple unquoted Windows search path vulnerabilities in Novell ZENworks Desktop Management (ZDM) 7 through 7.1 might allow local users to gain privileges via a Trojan horse "program" file in the C: folder, related to an attempted launch of ...
11 years ago

CVE-1999-1092 - tin 1.40 creates the .tin directory with insecure permissions, which allows local users to read passwords from the .inputhistory file. ...
7 years ago

CVE-2003-1092 - Unknown vulnerability in the "Automatic File Content Type Recognition (AFCTR) Tool version of the file package before 3.41, related to "a memory allocation problem," has unknown impact. ...
6 years ago

CVE-2004-1092 - Midnight commander (mc) 4.5.55 and earlier allows remote attackers to cause a denial of service by causing mc to free unallocated memory. ...
6 years ago

CVE-2010-1092 - Multiple SQL injection vulnerabilities in login.php in ScriptsFeed Business Directory Software allow remote attackers to execute arbitrary SQL commands via the (1) us and (2) ps parameters. ...
6 years ago

CVE-2000-1092 - loadpage.cgi CGI program in EZshopper 3.0 and 2.0 allows remote attackers to list and read files in the EZshopper data directory by inserting a "/" in front of the target filename in the "file" parameter. ...
6 years ago

CVE-2001-1092 - msgchk in Digital UNIX 4.0G and earlier allows a local user to read the first line of arbitrary files via a symlink attack on the .mh_profile file. ...
6 years ago

CVE-2009-1092 - Use-after-free vulnerability in the LIVEAUDIO.LiveAudioCtrl.1 ActiveX control in LIVEAU~1.OCX 7.0 for GeoVision DVR systems allows remote attackers to execute arbitrary code by calling the GetAudioPlayingTime method with certain arguments. ...
5 years ago

CVE-2007-1092 - Mozilla Firefox 1.5.0.9 and 2.0.0.1, and SeaMonkey before 1.0.8 allow remote attackers to execute arbitrary code via JavaScript onUnload handlers that modify the structure of a document, wich triggers memory corruption due to the lack of a finalize ...
5 years ago

CVE-2006-1092 - Unspecified vulnerability in the pagedata subsystem of the process file system (/proc) in Solaris 8 through 10 allows local users to cause a denial of service (system hang or panic) via unknown attack vectors that cause cause the kmem_oversize arena ...
5 years ago

CVE-2002-1092 - Cisco VPN 3000 Concentrator 3.6(Rel) and earlier, and 2.x.x, when configured to use internal authentication with group accounts and without any user accounts, allows remote VPN clients to log in using PPTP or IPSEC user authentication. ...
5 years ago

CVE-2011-1092 - Integer overflow in ext/shmop/shmop.c in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (crash) and possibly read sensitive memory via a large third argument to the shmop_read function. ...
5 years ago

Latest Cyber News

CVE-2024-37528 - 4 hours ago
CVE-2024-31897 - 4 hours ago
CVE-2024-38330 - 5 hours ago
CVE-2024-39723 - 6 hours ago
CVE-2024-5711 - 7 hours ago
CVE-2024-6539 - 8 hours ago
CVE-2024-6229 - 15 hours ago
CVE-2024-40614 - 16 hours ago
CVE-2024-40605 - 1 day ago
CVE-2024-40604 - 1 day ago
CVE-2024-40603 - 1 day ago
CVE-2024-40602 - 1 day ago
CVE-2024-40601 - 1 day ago
CVE-2024-40600 - 1 day ago
CVE-2024-40599 - 1 day ago
CVE-2024-40598 - 1 day ago
CVE-2024-40596 - 1 day ago
CVE-2024-40597 - 1 day ago
CVE-2024-6095 - 1 day ago
CVE-2024-37554 - 1 day ago

Cyber Trends (last 7 days)

Okta - 7 months ago
23andMe - 7 months ago
Kimsuky - 7 months ago
LogoFAIL - 7 months ago
Gh0st rat - 7 months ago

Trending Cyber News (last 7 days)

CVE-2024-5711 - 7 hours ago
CVE-2024-39723 - 6 hours ago
CVE-2024-38330 - 5 hours ago
CVE-2024-37528 - 4 hours ago
CVE-2024-31897 - 4 hours ago
CVE-2024-6539 - 8 hours ago
CVE-2024-6229 - 15 hours ago
CVE-2024-40614 - 16 hours ago
CVE-2024-40605 - 1 day ago
CVE-2024-40604 - 1 day ago
CVE-2024-40603 - 1 day ago
CVE-2024-40602 - 1 day ago
CVE-2024-40601 - 1 day ago
CVE-2024-40600 - 1 day ago
CVE-2024-40599 - 1 day ago
CVE-2024-40598 - 1 day ago
CVE-2024-40596 - 1 day ago
CVE-2024-40597 - 1 day ago
CVE-2024-6095 - 1 day ago
CVE-2024-37553 - 1 day ago