LiveActive security incident?Get immediate response
CVE archive

May 2003

Browse CVE records published in May 2003, with severity, affected products, CWE, KEV, and source-backed vulnerability context.

Showing 50 of 210 matching CVEs · Page 3 of 5.

Unknown · CVSS Not scored

CVE-2003-0321: Multiple buffer overflows in BitchX IRC client 1.0-0c19 and earlier allow remote malicious IRC servers to c...

Multiple buffer overflows in BitchX IRC client 1.0-0c19 and earlier allow remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via long hostnames, nicknames, or channel names, which are not properly handled by the functions (1) send_ctcp, (2) cannot_join_channel, (3) cluster, (4) BX_compress_modes, (5) handle_oper_vision, and (6) ban_it.

Published May 22, 2003 · Updated Aug 8, 2024

Unknown · CVSS Not scored

CVE-2003-0333: Multiple buffer overflows in kermit in HP-UX 10.20 and 11.00 (C-Kermit 6.0.192 and possibly other versions...

Multiple buffer overflows in kermit in HP-UX 10.20 and 11.00 (C-Kermit 6.0.192 and possibly other versions before 8.0) allow local users to gain privileges via long arguments to (1) ask, (2) askq, (3) define, (4) assign, and (5) getc, some of which may share the same underlying function "doask," a different vulnerability than CVE-2001-0085.

Published May 23, 2003 · Updated Aug 8, 2024

Unknown · CVSS Not scored

CVE-2003-0356: Multiple off-by-one vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial...

Multiple off-by-one vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) AIM, (2) GIOP Gryphon, (3) OSPF, (4) PPTP, (5) Quake, (6) Quake2, (7) Quake3, (8) Rsync, (9) SMB, (10) SMPP, and (11) TSP dissectors, which do not properly use the tvb_get_nstringz and tvb_get_nstringz0 functions.

Published May 30, 2003 · Updated Aug 8, 2024

Unknown · CVSS Not scored

CVE-2003-0323: Multiple buffer overflows in ircII 20020912 allows remote malicious IRC servers to cause a denial of servic...

Multiple buffer overflows in ircII 20020912 allows remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via responses that are not properly fed to the my_strcat function by (1) ctcp_buffer, (2) cannot_join_channel, (3) status_make_printable for Statusbar drawing, (4) create_server_list, and possibly other functions.

Published May 22, 2003 · Updated Aug 8, 2024

Unknown · CVSS Not scored

CVE-2003-0270: The administration capability for Apple AirPort 802.11 wireless access point devices uses weak encryption (...

The administration capability for Apple AirPort 802.11 wireless access point devices uses weak encryption (XOR with a fixed key) for protecting authentication credentials, which could allow remote attackers to obtain administrative access via sniffing when the capability is available via Ethernet or non-WEP connections.

Published May 14, 2003 · Updated Aug 8, 2024