LiveActive security incident?Get immediate response
CVE archive

April 2003

Browse CVE records published in April 2003, with severity, affected products, CWE, KEV, and source-backed vulnerability context.

Showing 28 of 78 matching CVEs · Page 2 of 2.

Unknown · CVSS Not scored

CVE-2003-0161: The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly hand...

The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misinterprets an input value as a special "NOCHAR" control value, allowing attackers to cause a denial of service and possibly execute arbitrary code via a buffer overflow attack using messages, a different vulnerability than CVE-2002-1337.

Published Apr 1, 2003 · Updated Aug 8, 2024

Unknown · CVSS Not scored

CVE-2003-0116: Microsoft Internet Explorer 5.01, 5.5 and 6.0 does not properly check the Cascading Style Sheet input param...

Microsoft Internet Explorer 5.01, 5.5 and 6.0 does not properly check the Cascading Style Sheet input parameter for Modal dialogs, which allows remote attackers to read files on the local system via a web page containing script that creates a dialog and then accesses the target files, aka "Modal Dialog script execution."

Published Apr 26, 2003 · Updated Aug 8, 2024