LiveActive security incident?Get immediate response
CVE archive

May 2003

Browse CVE records published in May 2003, with severity, affected products, CWE, KEV, and source-backed vulnerability context.

Showing 50 of 210 matching CVEs · Page 4 of 5.

Unknown · CVSS Not scored

CVE-2003-0309: Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to bypass security zone restrictions and execu...

Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to bypass security zone restrictions and execute arbitrary programs via a web document with a large number of duplicate file:// or other requests that point to the program and open multiple file download dialogs, which eventually cause Internet Explorer to execute the program, as demonstrated using a large number of FRAME or IFRAME tags, aka the "File Download Dialog Vulnerability."

Published May 17, 2003 · Updated Aug 8, 2024

Unknown · CVSS Not scored

CVE-2003-0266: Multiple buffer overflows in SLWebMail 3 on Windows systems allows remote attackers to cause a denial of se...

Multiple buffer overflows in SLWebMail 3 on Windows systems allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a long Language parameter to showlogin.dll, (2) a long CompanyID parameter to recman.dll, (3) a long CompanyID parameter to admin.dll, or (4) a long CompanyID parameter to globallogin.dll.

Published May 8, 2003 · Updated Aug 8, 2024

Unknown · CVSS Not scored

CVE-2003-0245: Vulnerability in the apr_psprintf function in the Apache Portable Runtime (APR) library for Apache 2.0.37 t...

Vulnerability in the apr_psprintf function in the Apache Portable Runtime (APR) library for Apache 2.0.37 through 2.0.45 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long strings, as demonstrated using XML objects to mod_dav, and possibly other vectors.

Published May 30, 2003 · Updated Aug 8, 2024

Unknown · CVSS Not scored

CVE-2003-0227: The logging capability for unicast and multicast transmissions in the ISAPI extension for Microsoft Windows...

The logging capability for unicast and multicast transmissions in the ISAPI extension for Microsoft Windows Media Services in Microsoft Windows NT 4.0 and 2000, nsiislog.dll, allows remote attackers to cause a denial of service in Internet Information Server (IIS) and execute arbitrary code via a certain network request.

Published May 30, 2003 · Updated Aug 8, 2024