Aviram Jenik

#13163of 53,632
20Total CVSS
Vulnerabilities · 4
Medium
4
PT-2004-2939
5.0
2004-05-01
Firebird · Firebird Database · CVE-2004-2043
**Name of the Vulnerable Software and Affected Versions** Firebird Database versions 1.0 through 1.5 **Description** A buffer overflow issue in the ibserver component allows remote attackers to cause a denial of service by crashing the system with a long database name. This can be demonstrated using the gsec command. **Recommendations** For Firebird Database versions 1.0 through 1.5, update to version 1.5 or later to resolve the issue.
PT-2004-1449
5.0
2004-03-18
Unknown · Broker Ftp · CVE-2004-0295
**Name of the Vulnerable Software and Affected Versions** Broker FTP version 6.1.0.0 **Description** The issue allows remote attackers to cause a denial of service, specifically CPU consumption, via an open idle connection. **Recommendations** For Broker FTP version 6.1.0.0, consider implementing a timeout for idle connections to prevent CPU consumption.
PT-2004-1450
5.0
2004-03-18
Unknown · Broker Ftp · CVE-2004-0296
**Name of the Vulnerable Software and Affected Versions** Broker FTP version 6.1.0.0 **Description** The issue allows remote attackers to cause the TsFtpSrv.exe service to exit with an exception. This can be achieved by opening and immediately closing a connection to the service. **Recommendations** For Broker FTP version 6.1.0.0, consider restricting access to the TsFtpSrv.exe service until a patch is available to prevent remote attackers from exploiting this issue.
PT-2003-1929
5.0
2003-10-25
Deskpro · Deskpro · CVE-2003-0874
**Name of the Vulnerable Software and Affected Versions** DeskPRO versions 1.1.0 and earlier **Description** The issue allows remote attackers to insert arbitrary SQL and conduct unauthorized activities. This can be achieved via several parameters: the `cat` parameter in "faq.php", the `article` parameter in "faq.php", the `tickedid` parameter in "view.php", and the `Password` entry on the logon screen. **Recommendations** For DeskPRO versions 1.1.0 and earlier, as a temporary workaround, consider restricting access to the "faq.php" and "view.php" files until a patch is available. Avoid using the `cat`, `article`, and `tickedid` parameters in their respective files, and restrict the `Password` entry on the logon screen to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.