Latest CVE Feed
-
5.0
MEDIUMCVE-2003-1032
Pi3Web web server 2.0.2 Beta 1, when the Directory Index is configured to use the "Name" column and sort using the column title as a hyperlink, allows remote attackers to cause a denial of service (crash) via a malformed URL to the web server, possibly in... Read more
Affected Products : pi3web- EPSS Score: %4.82
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
6.8
MEDIUMCVE-2004-0049
Helix Universal Server/Proxy 9 and Mobile Server 10 allow remote attackers to cause a denial of service via certain HTTP POST messages to the Administration System port.... Read more
- EPSS Score: %0.78
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-2003-0903
Buffer overflow in a component of Microsoft Data Access Components (MDAC) 2.5 through 2.8 allows remote attackers to execute arbitrary code via a malformed UDP response to a broadcast request.... Read more
Affected Products : data_access_components- EPSS Score: %69.00
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2003-0966
Buffer overflow in the frm command in elm 2.5.6 and earlier, and possibly later versions, allows remote attackers to execute arbitrary code via a long Subject line.... Read more
Affected Products : elm- EPSS Score: %4.10
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
3.7
LOWCVE-2003-0924
netpbm 9.25 and earlier does not properly create temporary files, which allows local users to overwrite arbitrary files.... Read more
Affected Products : netpbm- EPSS Score: %0.10
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2003-1029
The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (infinite loop and memory consumption) via a packet with invalid data to UDP port 1701, which causes l2tp_avp_print to use a bad length value when c... Read more
Affected Products : tcpdump- EPSS Score: %21.38
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
6.8
MEDIUMCVE-2003-0965
Cross-site scripting (XSS) vulnerability in the admin CGI script for Mailman before 2.1.4 allows remote attackers to steal session cookies and conduct unauthorized activities.... Read more
Affected Products : mailman- EPSS Score: %3.14
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
7.2
HIGHCVE-2004-0001
Unknown vulnerability in the eflags checking in the 32-bit ptrace emulation for the Linux kernel on AMD64 systems allows local users to gain privileges.... Read more
Affected Products : linux_kernel- EPSS Score: %0.08
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2004-0056
Multiple vulnerabilities in the H.323 protocol implementation for Nortel Networks Business Communications Manager (BCM), Succession 1000 IP Trunk and IP Peer Networking, and 802.11 Wireless IP Gateway allow remote attackers to cause a denial of service an... Read more
- EPSS Score: %6.26
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2004-0068
PHP remote file inclusion vulnerability in config.php for PhpDig 1.6.5 and earlier allows remote attackers to execute arbitrary PHP code by modifying the $relative_script_path parameter to reference a URL on a remote web server that contains the code.... Read more
Affected Products : phpdig- EPSS Score: %0.87
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2004-0055
The print_attr_string function in print-radius.c for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (segmentation fault) via a RADIUS attribute with a large length value.... Read more
Affected Products : tcpdump- EPSS Score: %31.32
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
4.3
MEDIUMCVE-2003-0992
Cross-site scripting (XSS) vulnerability in the create CGI script for Mailman before 2.1.3 allows remote attackers to steal cookies of other users.... Read more
Affected Products : mailman- EPSS Score: %0.52
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2003-1030
Buffer overflow in DameWare Mini Remote Control before 3.73 allows remote attackers to execute arbitrary code via a long pre-authentication request to TCP port 6129.... Read more
Affected Products : mini_remote_control_server- EPSS Score: %46.05
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2004-0064
The SuSEconfig.gnome-filesystem script for YaST in SuSE 9.0 allows local users to overwrite arbitrary files via a symlink attack on files within the tmp.SuSEconfig.gnome-filesystem.$RANDOM temporary directory.... Read more
Affected Products : suse_linux- EPSS Score: %0.17
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2004-0072
Directory traversal vulnerability in Accipiter Direct Server 6.0 allows remote attackers to read arbitrary files via encoded \.. (backslash .., "%5c%2e%2e") sequences in an HTTP request.... Read more
Affected Products : accipiter_direct_server- EPSS Score: %4.66
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2004-0058
Antivir / Linux 2.0.9-9, and possibly earlier versions, allows local users to overwrite arbitrary files via a symlink attack on the .pid_antivir_$$ temporary file.... Read more
Affected Products : linux_kernel- EPSS Score: %0.11
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2004-0066
phpGedView before 2.65 allows remote attackers to obtain the absolute path of the web server via malformed parameters to (1) indilist.php, (2) famlist.php, (3) placelist.php, (4) imageview.php, (5) timeline.php, (6) clippings.php, (7) login.php, and (8) g... Read more
Affected Products : phpgedview- EPSS Score: %0.35
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2004-0062
Integer overflow in the rnd arithmetic rounding function for various versions of FishCart before 3.1 allows remote attackers to "cause negative totals" via an order with a large quantity.... Read more
Affected Products : fishcart- EPSS Score: %0.64
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2004-0065
Multiple SQL injection vulnerabilities in phpGedView before 2.65 allow remote attackers to execute arbitrary SQL via (1) timeline.php and (2) placelist.php.... Read more
Affected Products : phpgedview- EPSS Score: %0.49
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2003-0988
Buffer overflow in the VCF file information reader for KDE Personal Information Management (kdepim) suite in KDE 3.1.0 through 3.1.4 allows attackers to execute arbitrary code via a VCF file.... Read more
- EPSS Score: %7.32
- Published: Feb. 17, 2004
- Modified: Apr. 03, 2025