Latest CVE Feed
-
5.0
MEDIUMCVE-2003-0276
Buffer overflow in Pi3Web 2.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a GET request with a large number of / characters.... Read more
Affected Products : pi3web- EPSS Score: %16.12
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
7.2
HIGHCVE-2002-1155
Buffer overflow in KON kon2 0.3.9b and earlier allows local users to execute arbitrary code via a long -Coding command line argument.... Read more
Affected Products : linux- EPSS Score: %0.13
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
4.6
MEDIUMCVE-2003-0372
Signed integer vulnerability in libnasl in Nessus before 2.0.6 allows local users with plugin upload privileges to cause a denial of service (core dump) and possibly execute arbitrary code by causing a negative argument to be provided to the insstr functi... Read more
Affected Products : nessus- EPSS Score: %0.17
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
4.4
MEDIUMCVE-2003-0373
Multiple buffer overflows in libnasl in Nessus before 2.0.6 allow local users with plugin upload privileges to cause a denial of service (core dump) and possibly execute arbitrary code via (1) a long proto argument to the scanner_add_port function, (2) a ... Read more
Affected Products : nessus- EPSS Score: %0.09
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
6.8
MEDIUMCVE-2003-0283
Cross-site scripting (XSS) vulnerability in Phorum before 3.4.3 allows remote attackers to inject arbitrary web script and HTML tags via a message with a "<<" before a tag name in the (1) subject, (2) author's name, or (3) author's e-mail.... Read more
Affected Products : phorum- EPSS Score: %0.72
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2003-0285
IBM AIX 5.2 and earlier distributes Sendmail with a configuration file (sendmail.cf) with the (1) promiscuous_relay, (2) accept_unresolvable_domains, and (3) accept_unqualified_senders features enabled, which allows Sendmail to be used as an open mail rel... Read more
Affected Products : aix- EPSS Score: %1.18
- Published: Jun. 16, 2003
- Modified: Apr. 03, 2025
-
4.6
MEDIUMCVE-2003-0420
Information leak in dsimportexport for Apple Macintosh OS X Server 10.2.6 allows local users to obtain the username and password of the account running the tool.... Read more
Affected Products : mac_os_x_server- EPSS Score: %0.08
- Published: Jun. 13, 2003
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2003-0355
Safari 1.0 Beta 2 (v73) and earlier does not validate the Common Name (CN) field for X.509 Certificates, which could allow remote attackers to spoof certificates.... Read more
- EPSS Score: %0.35
- Published: Jun. 09, 2003
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2003-0241
FrontRange GoldMine mail agent 5.70 and 6.00 before 30503 directly sends HTML to the default browser without setting its security zone or otherwise labeling it untrusted, which allows remote attackers to execute arbitrary code via a message that is render... Read more
Affected Products : goldmine- EPSS Score: %2.72
- Published: Jun. 09, 2003
- Modified: Apr. 03, 2025
-
4.6
MEDIUMCVE-2003-0325
Buffer overflow in Maelstrom 3.0.6, 3.0.5, and earlier allows local users to execute arbitrary code via a long -server command line argument.... Read more
Affected Products : maelstrom- EPSS Score: %0.16
- Published: Jun. 09, 2003
- Modified: Apr. 03, 2025
-
10.0
HIGHCVE-2003-0240
The web-based administration capability for various Axis Network Camera products allows remote attackers to bypass access restrictions and modify configuration via an HTTP request to the admin/admin.shtml containing a leading // (double slash).... Read more
- EPSS Score: %22.36
- Published: Jun. 09, 2003
- Modified: Apr. 03, 2025
-
7.2
HIGHCVE-2003-0306
Buffer overflow in EXPLORER.EXE on Windows XP allows attackers to execute arbitrary code as the XP user via a desktop.ini file with a long .ShellClassInfo parameter.... Read more
Affected Products : windows_xp- EPSS Score: %2.48
- Published: Jun. 09, 2003
- Modified: Apr. 03, 2025
-
4.6
MEDIUMCVE-2003-0194
tcpdump does not properly drop privileges to the pcap user when starting up.... Read more
- EPSS Score: %0.07
- Published: Jun. 09, 2003
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2003-0360
Multiple buffer overflows in gPS before 1.0.0 allow attackers to cause a denial of service and possibly execute arbitrary code.... Read more
Affected Products : debian_linux- EPSS Score: %0.92
- Published: Jun. 09, 2003
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2003-0303
SQL injection vulnerability in one||zero (aka One or Zero) Helpdesk 1.4 rc4 allows remote attackers to modify arbitrary ticket number descriptions via the sg parameter.... Read more
Affected Products : oneorzero_helpdesk- EPSS Score: %0.33
- Published: Jun. 09, 2003
- Modified: Apr. 03, 2025
-
4.3
MEDIUMCVE-2003-0318
Cross-site scripting (XSS) vulnerability in the Statistics module for PHP-Nuke 6.0 and earlier allows remote attackers to insert arbitrary web script via the year parameter.... Read more
Affected Products : php-nuke- EPSS Score: %0.02
- Published: Jun. 09, 2003
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2003-0305
The Service Assurance Agent (SAA) in Cisco IOS 12.0 through 12.2, aka Response Time Reporter (RTR), allows remote attackers to cause a denial of service (crash) via malformed RTR packets to port 1967.... Read more
Affected Products : ios- EPSS Score: %0.66
- Published: Jun. 09, 2003
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2003-0324
Buffer overflows in EPIC IRC Client (EPIC4) 1.0.1 allows remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via long replies that are not properly handled by the (1) userhost_cmd_returned function, or (2)... Read more
Affected Products : epic4- EPSS Score: %0.93
- Published: Jun. 09, 2003
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2003-0362
Buffer overflow in gPS before 0.10.2 may allow local users to cause a denial of service (SIGSEGV) in rgpsp via long command lines.... Read more
Affected Products : debian_linux- EPSS Score: %0.45
- Published: Jun. 09, 2003
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2003-0225
The ASP function Response.AddHeader in Microsoft Internet Information Server (IIS) 4.0 and 5.0 does not limit memory requests when constructing headers, which allow remote attackers to generate a large header to cause a denial of service (memory consumpti... Read more
- EPSS Score: %29.22
- Published: Jun. 09, 2003
- Modified: Apr. 03, 2025