Hongzhen Zhou

Pesquisador deISS X-Force
#9967de 53,638
27.6CVSS total
Vulnerabilidades · 5
Baixa
1
Média
2
Alta
2
PT-2005-1169
7.5
2005-04-13
Microsoft · Windows · CVE-2005-0048
**Name of the Vulnerable Software and Affected Versions** Microsoft Windows versions prior to XP SP3, 2000 SP4, and Server 2003 **Description** The issue allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IP packets with malformed options. **Recommendations** For Microsoft Windows XP SP2 and earlier, 2000 SP3 and SP4, and Server 2003, update to a newer version to mitigate the risk. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2005-1610
7.5
2005-04-12
Microsoft · Msn Messenger · CVE-2005-0562
**Name of the Vulnerable Software and Affected Versions** MSN Messenger version 6.2 **Description** A GIF file validation error allows remote attackers in a user's contact list to execute arbitrary code via a GIF image with an improper height and width. **Recommendations** For MSN Messenger version 6.2, at the moment, there is no information about a newer version that contains a fix for this issue.
PT-2005-1697
5.0
2005-03-07
Gnu · Gimp · CVE-2005-0654
**Name of the Vulnerable Software and Affected Versions** GIMP versions 2.0.5, 2.2.3, and possibly 2.2.4 **Description** The issue allows remote attackers or local users to cause a denial of service, resulting in an application crash. This can be achieved by setting the `height` or `width` fields in the image descriptor to zero. **Recommendations** For GIMP version 2.0.5, update to a version where this issue is fixed. For GIMP version 2.2.3, update to a version where this issue is fixed. For GIMP version 2.2.4, if affected, update to a version where this issue is fixed.
PT-2005-1547
2.6
2005-02-21
Adobe · Acrobat Reader · CVE-2005-0492
**Name of the Vulnerable Software and Affected Versions** Adobe Acrobat Reader versions 6.0.3 and 7.0.0 **Description** The issue allows remote attackers to cause a denial of service, resulting in an application crash. This can be achieved by using a PDF file that contains a negative Count value in the root page node. **Recommendations** For Adobe Acrobat Reader version 6.0.3, update to a version that fixes this issue. For Adobe Acrobat Reader version 7.0.0, update to a version that fixes this issue.
PT-2004-2101
5.0
2004-12-08
Globalscape · Cuteftp Professional · CVE-2004-1136
Name of the Vulnerable Software and Affected Versions: CuteFTP Professional version 6.0 Description: A buffer overflow issue allows remote FTP servers to cause a denial of service, resulting in an application crash, by sending large replies to FTP commands. Recommendations: For CuteFTP Professional version 6.0, consider restricting access to untrusted FTP servers to minimize the risk of exploitation until a patch is available.