Latest CVE Feed
-
5.0
MEDIUMCVE-2003-0277
Directory traversal vulnerability in normal_html.cgi in Happycgi.com Happymall 4.3 and 4.4 allows remote attackers to read arbitrary files via .. (dot dot) sequences in the file parameter.... Read more
Affected Products : happymall- EPSS Score: %3.78
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
6.4
MEDIUMCVE-2003-0312
Directory traversal vulnerability in Snowblind Web Server 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP request.... Read more
Affected Products : snowblind_web_server- EPSS Score: %3.62
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2003-0298
The IMAP Client for Mozilla 1.3 and 1.4a allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large (1) literal and possibly (2) mailbox size values that cause either integer signedness errors o... Read more
Affected Products : mozilla- EPSS Score: %0.95
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
6.8
MEDIUMCVE-2003-0278
Cross-site scripting (XSS) vulnerability in normal_html.cgi in Happycgi.com Happymall 4.3 and 4.4 allows remote attackers to insert arbitrary web script via the file parameter.... Read more
Affected Products : happymall- EPSS Score: %0.57
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2003-0302
The IMAP Client for Eudora 5.2.1 allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large literal size values that cause either integer signedness errors or integer overflow errors.... Read more
Affected Products : eudora- EPSS Score: %0.86
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-2003-0374
Multiple unknown vulnerabilities in Nessus before 2.0.6, in libnessus and possibly libnasl, a different set of vulnerabilities than those identified by CVE-2003-0372 and CVE-2003-0373, aka "similar issues in other nasl functions as well as in libnessus."... Read more
Affected Products : nessus- EPSS Score: %0.47
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
4.6
MEDIUMCVE-2003-0365
ICQLite 2003a creates the ICQ Lite directory with an ACE for "Full Control" privileges for Interactive Users, which allows local users to gain privileges as other users by replacing the executables with malicious programs.... Read more
Affected Products : icqlite- EPSS Score: %0.17
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2003-0296
The IMAP Client for Evolution 1.2.4 allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large literal size values that cause either integer signedness errors or integer overflow errors.... Read more
Affected Products : evolution- EPSS Score: %0.95
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
7.2
HIGHCVE-2003-0289
Format string vulnerability in scsiopen.c of the cdrecord program in cdrtools 2.0 allows local users to gain privileges via format string specifiers in the dev parameter.... Read more
Affected Products : cdrecord- EPSS Score: %0.13
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
6.8
MEDIUMCVE-2003-0217
Cross-site scripting (XSS) vulnerability in Neoteris Instant Virtual Extranet (IVE) 3.01 and earlier allows remote attackers to insert arbitrary web script and bypass authentication via a certain CGI script.... Read more
Affected Products : instant_virtual_extranet- EPSS Score: %0.32
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-2003-0280
Multiple buffer overflows in the SMTP Service for ESMTP CMailServer 4.0.2003.03.27 allow remote attackers to execute arbitrary code via long (1) MAIL FROM or (2) RCPT TO commands.... Read more
Affected Products : cmailserver- EPSS Score: %11.16
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
5.1
MEDIUMCVE-2003-0275
SSI.php in YaBB SE 1.5.2 allows remote attackers to execute arbitrary PHP code by modifying the sourcedir parameter to reference a URL on a remote web server that contains the code.... Read more
Affected Products : yabb- EPSS Score: %0.75
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2003-0376
Buffer overflow in Eudora 5.2.1 allows remote attackers to cause a denial of service (crash and failed restart) and possibly execute arbitrary code via an Attachment Converted argument with a large number of . (dot) characters.... Read more
Affected Products : eudora- EPSS Score: %4.81
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
6.8
MEDIUMCVE-2003-0287
Cross-site scripting (XSS) vulnerability in Movable Type before 2.6, and possibly other versions including 2.63, allows remote attackers to insert arbitrary web script or HTML via the Name textbox, possibly when the "Allow HTML in comments?" option is ena... Read more
Affected Products : movable_type- EPSS Score: %1.24
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2003-0301
The IMAP Client for Outlook Express 6.00.2800.1106 allows remote malicious IMAP servers to cause a denial of service (crash) via certain large literal size values that cause either integer signedness errors or integer overflow errors.... Read more
Affected Products : outlook_express- EPSS Score: %4.28
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2003-0344
Buffer overflow in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to execute arbitrary code via / (slash) characters in the Type property of an Object tag in a web page.... Read more
- EPSS Score: %74.31
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2003-0371
Buffer overflow in Prishtina FTP client 1.x allows remote FTP servers to cause a denial of service (crash) and possibly execute arbitrary code via a long FTP banner.... Read more
Affected Products : prishtina_ftp- EPSS Score: %4.60
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
6.8
MEDIUMCVE-2003-0295
Cross-site scripting (XSS) vulnerability in private.php for vBulletin 3.0.0 Beta 2 allows remote attackers to inject arbitrary web script and HTML via the "Preview Message" capability.... Read more
Affected Products : vbulletin- EPSS Score: %0.42
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
4.3
MEDIUMCVE-2003-0375
Cross-site scripting (XSS) vulnerability in member.php of XMBforum XMB 1.8.x (aka Partagium) allows remote attackers to insert arbitrary HTML and web script via the "member" parameter.... Read more
Affected Products : xmb- EPSS Score: %0.56
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
7.6
HIGHCVE-2003-0270
The administration capability for Apple AirPort 802.11 wireless access point devices uses weak encryption (XOR with a fixed key) for protecting authentication credentials, which could allow remote attackers to obtain administrative access via sniffing whe... Read more
Affected Products : 802.11n- EPSS Score: %22.10
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025