Unknown · CVSS Not scored
The communications protocol for the Report Review Agent (RRA), aka FND File Server (FNDFS) program, in Oracle E-Business Suite 10.7, 11.0, and 11.5.1 to 11.5.8 allows remote attackers to bypass authentication and obtain sensitive information from the Oracle Applications Concurrent Manager by spoofing requests to the TNS Listener.
Published Mar 12, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
SQL injection vulnerability in loginact.asp for Hummingbird CyberDOCS before 3.9 allows remote attackers to execute arbitrary SQL commands.
Published Mar 11, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The DHTML capability in Microsoft Windows Media Player (WMP) 6.4, 7.0, 7.1, and 9 may run certain URL commands from a security zone that is less trusted than the current zone, which allows attackers to bypass intended access restrictions.
Published Mar 11, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in IBM Tivoli Firewall Toolbox (TFST) 1.2 allows remote attackers to execute arbitrary code via unknown vectors.
Published Mar 11, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in rexec on HP-UX B.10.20, B.11.00, and B.11.04, when setuid root, may allow local users to gain privileges via a long -l option.
Published Mar 11, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The Session Initiation Protocol (SIP) implementation in Columbia SIP User Agent (sipc) 1.74 and other versions before sipc 2.0 build 2003-02-21 allows remote attackers to cause a denial of service or execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite.
Published Mar 11, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
BEA WebLogic Server 6.1, 7.0 and 7.0.0.1, when routing messages to a JMS target domain that is inaccessible, may leak the user's password when it throws a ResourceAllocationException.
Published Mar 10, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Unknown vulnerability in Internet Explorer 5.01 SP3 through 6.0 SP1 allows remote attackers to cause a denial of service (browser or Outlook Express crash) via HTML with certain input tags that are not properly rendered.
Published Mar 11, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Unknown vulnerability in the "Automatic File Content Type Recognition (AFCTR) Tool version of the file package before 3.41, related to "a memory allocation problem," has unknown impact.
Published Mar 10, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cross-site scripting (XSS) vulnerability in index.php for Zorum 3.4 and 3.5 allows remote attackers to inject arbitrary web script or HTML via the method parameter.
Published Mar 7, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The (1) instdbmsrv and (2) instlserver programs in SAP DB Development Tools 7.x trust the user-provided INSTROOT environment variable as a path when assigning setuid permissions to the lserver program, which allows local users to gain root privileges via a modified INSTROOT that points to a malicious dbmsrv or lserver program.
Published Mar 16, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in RealSystem Server 6.x, 7.x and 8.x, and RealSystem Proxy 8.x, related to URL error handling, allows remote attackers to cause a denial of service and possibly execute arbitrary code.
Published Mar 12, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Hummingbird CyberDOCS 3.5, 3.9, and 4.0, when running on IIS, uses insecure permissions for script source code files, which allows remote attackers to read the source code.
Published Mar 11, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The Cisco LEAP challenge/response authentication mechanism uses passwords in a way that is susceptible to dictionary attacks, which makes it easier for remote attackers to gain privileges via brute force password guessing attacks.
Published Mar 10, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
shar on HP-UX B.11.00, B.11.04, and B.11.11 creates temporary files with predictable names in /tmp, which allows local users to cause a denial of service and possibly execute arbitrary code via a symlink attack.
Published Mar 11, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The Xserver for HP-UX 11.22 was not properly built, which introduced a vulnerability that allows local users to gain privileges.
Published Mar 11, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Hummingbird CyberDOCS 3.5.1, 3.9, and 4.0 allows remote attackers to obtain the full path of the DM Web Server via invalid login credentials, which reveals the path in an error message.
Published Mar 11, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The RPM installation of SAP DB 7.x creates the (1) dbmsrv or (2) lserver programs with world-writable permissions, which allows local users to gain privileges by modifying those programs.
Published Mar 16, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
kmod in the Linux kernel does not set its uid, suid, gid, or sgid to 0, which allows local users to cause a denial of service (crash) by sending certain signals to kmod.
Published Mar 23, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Multiple buffer overflows in the AGate component for SAP Internet Transaction Server (ITS) allow remote attackers to execute arbitrary code via long (1) ~command, (2) ~runtimemode, or (3) ~session parameters, or (4) a long HTTP Content-Type header.
Published Mar 16, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
AppleFileServer (AFS) in Apple Mac OS X 10.2.8 and 10.3.2 does not properly handle certain malformed requests, with unknown impact.
Published Mar 10, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Format string vulnerability in the WGate component for SAP Internet Transaction Server (ITS) allows remote attackers to execute arbitrary code via a high "trace level."
Published Mar 16, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Directory Services in Apple Mac OS X 10.0.2, 10.0.3, 10.2.8, 10.3.2 and Apple Mac OS X Server 10.2 through 10.3.2 accepts authentication server information from unknown LDAP or NetInfo sources as provided by a malicious DHCP server, which allows remote attackers to gain privileges.
Published Mar 10, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The default installation of SAP R/3 46C/D allows remote attackers to bypass account locking by using the RFC API instead of the SAPGUI to conduct a brute force password guessing attack, which does not lock out the account like the SAPGUI does.
Published Mar 16, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Apple Mac OS X 10.0 through 10.2.8 allows local users with a USB keyboard to gain unauthorized access by holding down the CTRL and C keys when the system is booting, which crashes the init process and leaves the user in a root shell.
Published Mar 10, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The AGate component for SAP Internet Transaction Server (ITS) allows remote attackers to obtain sensitive information via a ~command parameter with an AgateInstallCheck value, which provides a list of installed DLLs and full pathnames.
Published Mar 16, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Multiple buffer overflows in the mySAP.com architecture for SAP allow remote attackers to execute arbitrary code via a long HTTP Host header to (1) Message Server, (2) Web Dispatcher, or (3) Application Server.
Published Mar 16, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in cd9660.util in Apple Mac OS X 10.0 through 10.3.2 and Apple Mac OS X Server 10.0 through 10.3.2 may allow local users to execute arbitrary code via a long command line parameter.
Published Mar 10, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Unknown vulnerability in Mac OS X 10.2.8 and 10.3.2 allows local users to bypass the screen saver login window and write a text clipping to the desktop or another application.
Published Mar 10, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Multiple integer overflows in the 32bit emulation for AMD64 architectures in Linux 2.4 kernel before 2.4.21 allows attackers to cause a denial of service or gain root privileges via unspecified vectors that trigger copy_from_user function calls with improper length arguments.
Published Mar 2, 2006 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Format string vulnerability in enq command in AIX 4.3, 5.1, and 5.2 allows local users with rintq group privileges to gain privileges via unknown attack vectors.
Published Mar 10, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Unknown vulnerability in fs_usage in Mac OS X 10.2.8 and 10.3.2 and Mac OS X Server 10.2.8 and 10.3.2 allows local users to gain privileges via unknown attack vectors.
Published Mar 10, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in freesweep in Debian GNU/Linux 3.0 allows local users to gain "games" group privileges when processing environment variables.
Published Mar 10, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Multiple buffer overflows in ecartis before 1.0.0 allow attackers to cause a denial of service and possibly execute arbitrary code.
Published Mar 25, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Unknown vulnerability in rpc.mountd in SGI IRIX 6.5 through 6.5.22 allows remote attackers to cause a denial of service (process death) via unknown attack vectors.
Published Mar 10, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Unknown vulnerability in ecartis before 1.0.0 does not properly validate user input, which allows attackers to obtain mailing list passwords.
Published Mar 25, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Unknown vulnerability in rpc.mountd SGI IRIX 6.5.18 through 6.5.22 allows remote attackers to mount from unprivileged ports even with the -n option disabled.
Published Mar 10, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Workgroup Manager in Apple Mac OS X Server 10.2 through 10.2.6 does not disable a password for a new account before it is saved for the first time, which allows remote attackers to gain unauthorized access via the new account before it is saved.
Published Mar 10, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Multiple buffer overflows in main.c for Crafty 19.3 allow local users to gain group "games" privileges via long command line arguments to crafty.bin.
Published Mar 10, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Mozilla allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Mozilla to send the cookie outside the specified URL subsets, e.g. to a vulnerable application that runs on the same server as the target application.
Published Mar 16, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Konqueror in KDE 3.1.3 and earlier (kdelibs) allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Konqueror to send the cookie outside the specified URL subsets, e.g. to a vulnerable application that runs on the same server as the target application.
Published Mar 16, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Multiple vulnerabilities in suidperl 5.6.1 and earlier allow a local user to obtain sensitive information about files for which the user does not have appropriate permissions.
Published Mar 25, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in xconq 7.4.1 allows local users to become part of the "games" group via the (1) USER or (2) DISPLAY environment variables.
Published Mar 10, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Opera allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Opera to send the cookie outside the specified URL subsets, e.g. to a vulnerable application that runs on the same server as the target application.
Published Mar 16, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Microsoft Internet Explorer allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Internet Explorer to send the cookie outside the specified URL subsets, e.g. to a vulnerable application that runs on the same server as the target application.
Published Mar 16, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Apple Safari allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Safari to send the cookie outside the specified URL subsets, e.g. to a vulnerable application that runs on the same server as the target application.
Published Mar 16, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Heap-based buffer overflow in GTKSee 0.5 and 0.5.1 allows remote attackers to execute arbitrary code via a PNG image of certain color depths.
Published Mar 10, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Format string vulnerability in the printer capability for IBM AIX .3, 5.1, and 5.2 allows local users to gain printq or root privileges.
Published Mar 16, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Multiple vulnerabilities in NetPBM 9.20 and earlier, and possibly other versions, may allow remote attackers to cause a denial of service or execute arbitrary code via "maths overflow errors" such as (1) integer signedness errors or (2) integer overflows, which lead to buffer overflows.
Published Mar 18, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Format string vulnerability in Eye Of Gnome (EOG) allows attackers to execute arbitrary code via format string specifiers in a command line argument for the file to display.
Published Mar 29, 2003 · Updated Aug 8, 2024