Latest CVE Feed
-
2.1
LOWCVE-2004-2136
dm-crypt on Linux kernel 2.6.x, when used on certain file systems with a block size 1024 or greater, has certain "IV computation" weaknesses that allow watermarked files to be detected without decryption.... Read more
Affected Products : linux_kernel- EPSS Score: %0.07
- Published: Feb. 19, 2004
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2004-0062
Integer overflow in the rnd arithmetic rounding function for various versions of FishCart before 3.1 allows remote attackers to "cause negative totals" via an order with a large quantity.... Read more
Affected Products : fishcart- EPSS Score: %0.64
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2004-0070
PHP remote file inclusion vulnerability in module.php for ezContents allows remote attackers to execute arbitrary PHP code by modifying the link parameter to reference a URL on a remote web server that contains the code.... Read more
Affected Products : ezcontents- EPSS Score: %1.90
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2004-0063
The SPP_VerifyPVV function in nCipher payShield SPP library 1.3.12, 1.5.18 and 1.6.18 returns a Status_OK value even if the HSM returns a different status code, which could cause applications to make incorrect security-critical decisions, e.g. by acceptin... Read more
Affected Products : payshield_spp_library- EPSS Score: %0.60
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2004-0056
Multiple vulnerabilities in the H.323 protocol implementation for Nortel Networks Business Communications Manager (BCM), Succession 1000 IP Trunk and IP Peer Networking, and 802.11 Wireless IP Gateway allow remote attackers to cause a denial of service an... Read more
- EPSS Score: %6.26
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2004-0068
PHP remote file inclusion vulnerability in config.php for PhpDig 1.6.5 and earlier allows remote attackers to execute arbitrary PHP code by modifying the $relative_script_path parameter to reference a URL on a remote web server that contains the code.... Read more
Affected Products : phpdig- EPSS Score: %0.87
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
7.2
HIGHCVE-2004-0001
Unknown vulnerability in the eflags checking in the 32-bit ptrace emulation for the Linux kernel on AMD64 systems allows local users to gain privileges.... Read more
Affected Products : linux_kernel- EPSS Score: %0.08
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2004-0055
The print_attr_string function in print-radius.c for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (segmentation fault) via a RADIUS attribute with a large length value.... Read more
Affected Products : tcpdump- EPSS Score: %31.32
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
4.3
MEDIUMCVE-2003-0992
Cross-site scripting (XSS) vulnerability in the create CGI script for Mailman before 2.1.3 allows remote attackers to steal cookies of other users.... Read more
Affected Products : mailman- EPSS Score: %0.52
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2003-0966
Buffer overflow in the frm command in elm 2.5.6 and earlier, and possibly later versions, allows remote attackers to execute arbitrary code via a long Subject line.... Read more
Affected Products : elm- EPSS Score: %4.10
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-2003-0903
Buffer overflow in a component of Microsoft Data Access Components (MDAC) 2.5 through 2.8 allows remote attackers to execute arbitrary code via a malformed UDP response to a broadcast request.... Read more
Affected Products : data_access_components- EPSS Score: %69.00
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2003-1030
Buffer overflow in DameWare Mini Remote Control before 3.73 allows remote attackers to execute arbitrary code via a long pre-authentication request to TCP port 6129.... Read more
Affected Products : mini_remote_control_server- EPSS Score: %46.05
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
4.6
MEDIUMCVE-2004-0074
Multiple buffer overflows in xsok 1.02 allows local users to gain privileges via (1) a long LANG environment variable, or (2) a long -xsokdir command line argument, a different vulnerability than CVE-2003-0949.... Read more
Affected Products : xsok- EPSS Score: %0.18
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
4.3
MEDIUMCVE-2004-0091
NOTE: this issue has been disputed by the vendor. Cross-site scripting (XSS) vulnerability in register.php for unknown versions of vBulletin allows remote attackers to inject arbitrary HTML or web script via the reg_site (or possibly regsite) parameter. ... Read more
Affected Products : vbulletin- EPSS Score: %0.43
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
3.7
LOWCVE-2003-0924
netpbm 9.25 and earlier does not properly create temporary files, which allows local users to overwrite arbitrary files.... Read more
Affected Products : netpbm- EPSS Score: %0.10
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2003-1029
The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (infinite loop and memory consumption) via a packet with invalid data to UDP port 1701, which causes l2tp_avp_print to use a bad length value when c... Read more
Affected Products : tcpdump- EPSS Score: %21.38
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
6.8
MEDIUMCVE-2003-0965
Cross-site scripting (XSS) vulnerability in the admin CGI script for Mailman before 2.1.4 allows remote attackers to steal session cookies and conduct unauthorized activities.... Read more
Affected Products : mailman- EPSS Score: %3.14
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
4.3
MEDIUMCVE-2004-0067
Multiple cross-site scripting (XSS) vulnerabilities in phpGedView before 2.65 allow remote attackers to inject arbitrary HTML or web script via (1) descendancy.php, (2) index.php, (3) individual.php, (4) login.php, (5) relationship.php, (6) source.php, (7... Read more
Affected Products : phpgedview- EPSS Score: %1.65
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2004-0060
WWW File Share Pro 2.42 and earlier allows remote attackers to cause a denial of service (crash) via a large POST request.... Read more
Affected Products : www_file_share_pro- EPSS Score: %0.66
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
6.8
MEDIUMCVE-2004-0049
Helix Universal Server/Proxy 9 and Mobile Server 10 allow remote attackers to cause a denial of service via certain HTTP POST messages to the Administration System port.... Read more
- EPSS Score: %0.78
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025