Unknown · CVSS Not scored
Buffer overflow in WiTango Application Server and Tango 2000 allows remote attackers to execute arbitrary code via a long cookie to Witango_UserReference.
Published Jul 25, 2003 · Updated Sep 17, 2024
Unknown · CVSS Not scored
The liece Emacs IRC client 2.0+0.20030527 and earlier creates temporary files insecurely, which could allow local users to overwrite arbitrary files as other users.
Published Jul 10, 2003 · Updated Sep 17, 2024
Unknown · CVSS Not scored
SQL injection vulnerabilities in the (1) PostgreSQL or (2) MySQL authentication modules for teapop 0.3.5 and earlier allow attackers to execute arbitrary SQL and possibly gain privileges.
Published Jul 10, 2003 · Updated Sep 16, 2024
Unknown · CVSS Not scored
The mailcap file for mozart 1.2.5 and earlier causes Oz applications to be passed to the Oz interpreter, which allows remote attackers to execute arbitrary Oz programs in a MIME-aware client program.
Published Jul 10, 2003 · Updated Sep 16, 2024
Unknown · CVSS Not scored
Multiple buffer overflows in xgalaga 2.0.34 and earlier allow local users to gain privileges via a long HOME environment variable.
Published Jul 4, 2003 · Updated Sep 16, 2024
Unknown · CVSS Not scored
Unknown vulnerability in HP NonStop Server D40.00 through D48.03, and G01.00 through G06.20, allows local users to gain additional privileges.
Published Jul 17, 2003 · Updated Sep 16, 2024
Unknown · CVSS Not scored
Opera, probably before 7.50, sends Referer headers containing https:// URLs in requests for http:// URLs, which allows remote attackers to obtain potentially sensitive information by reading Referer log data.
Published Jul 14, 2008 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Netscape 4 sends Referer headers containing https:// URLs in requests for http:// URLs, which allows remote attackers to obtain potentially sensitive information by reading Referer log data.
Published Jul 14, 2008 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Microsoft Internet Explorer 5.22, and other 5 through 6 SP1 versions, sends Referer headers containing https:// URLs in requests for http:// URLs, which allows remote attackers to obtain potentially sensitive information by reading Referer log data.
Published Jul 14, 2008 · Updated Aug 8, 2024
Unknown · CVSS Not scored
EarlyImpact ProductCart 1.0 through 2.0 stores database/EIPC.mdb under the web root with insufficient access control, which allows remote attackers to obtain sensitive database information via a direct request.
Published Jul 13, 2006 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Double free vulnerability in mshtml.dll for certain versions of Internet Explorer 6.x allows remote attackers to cause a denial of service (application crash) via a malformed GIF image.
Published Jul 21, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
cci_dir in IBM U2 UniVerse 10.0.0.9 and earlier creates hard links and unlinks files as root, which allows local users to gain privileges by deleting and overwriting arbitrary files.
Published Jul 17, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in LeapFTP 2.7.3.600 allows remote FTP servers to execute arbitrary code via a long IP address response to a PASV request.
Published Jul 15, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Unknown vulnerability in display of Merge before 5.3.23a in UnixWare 7.1.x allows local users to gain root privileges.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
cnd.c in mgetty 1.1.28 and earlier does not properly filter non-printable characters and quotes, which may allow remote attackers to execute arbitrary commands via shell metacharacters in (1) caller ID or (2) caller name strings.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The STP protocol implementation in Linux 2.4.x does not properly verify certain lengths, which could allow attackers to cause a denial of service.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Trillian 1.0 Pro and 0.74 Freeware allows remote attackers to cause a denial of service (crash) via a TypingUser message in which the "TypingUser" string has been modified.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
SQL injection vulnerability in shopexd.asp for VP-ASP allows remote attackers to gain administrator privileges via the id parameter.
Published Jul 15, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
NeoModus Direct Connect 1.0 build 9, and possibly other versions, allows remote attackers to cause a denial of service (connection and possibly memory exhaustion) via a flood of ConnectToMe requests containing arbitrary IP addresses and ports.
Published Jul 15, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The STP protocol, as enabled in Linux 2.4.x, does not provide sufficient security by design, which allows attackers to modify the bridge topology.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
FDclone 2.00a, and other versions before 2.02a, creates temporary directories with predictable names and uses them if they already exist, which allows local users to read or modify files of other fdclone users by creating the directory ahead of time.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
SQL injection vulnerability in Cyberstrong eShop 4.2 and earlier allows remote attackers to steal authentication information and gain privileges via the ProductCode parameter in (1) 10expand.asp, (2) 10browse.asp, and (3) 20review.asp.
Published Jul 4, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Multiple cross-site scripting (XSS) vulnerabilities in Phpgroupware 0.9.14.003 (aka webdistro) allow remote attackers to insert arbitrary HTML or web script, as demonstrated with a request to index.php in the addressbook module.
Published Jul 4, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The RPC DCOM interface in Windows 2000 SP3 and SP4 allows remote attackers to cause a denial of service (crash), and local attackers to use the DoS to hijack the epmapper pipe to gain privileges, via certain messages to the __RemoteGetClassObject interface that cause a NULL pointer to be passed to the PerformScmStage function.
Published Jul 29, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Directory traversal vulnerability in phpSysInfo 2.1 and earlier allows attackers with write access to a local directory to read arbitrary files as the PHP user or cause a denial of service via .. (dot dot) sequences in the (1) template or (2) lng parameters.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cisco IOS 12.2 and earlier generates a "% Login invalid" message instead of prompting for a password when an invalid username is provided, which allows remote attackers to identify valid usernames on the system and conduct brute force password guessing, as reported for the Aironet Bridge.
Published Jul 29, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Windows Media Player (WMP) 7 and 8, as running on Internet Explorer and possibly other Microsoft products that process HTML, allows remote attackers to bypass zone restrictions and access or execute arbitrary files via an IFRAME tag pointing to an ASF file whose Content-location contains a File:// URL.
Published Jul 29, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Caché Database 5.x installs the /cachesys/csp directory with insecure permissions, which allows local users to execute arbitrary code by adding server-side scripts that are executed with root privileges.
Published Jul 4, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Microsoft NetMeeting 3.01 2000 before SP4 allows remote attackers to cause a denial of service (shutdown of NetMeeting conference) via malformed packets, as demonstrated via the chat conversation.
Published Jul 4, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in xbl 1.0k and earlier allows local users to gain privileges via a long -display command line option.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Microsoft SQL Server before Windows 2000 SP4 allows local users to gain privileges as the SQL Server user by calling the xp_fileexist extended stored procedure with a named pipe as an argument instead of a normal file.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
SQL injection vulnerability in login.asp for StoreFront 6.0, and possibly earlier versions, allows remote attackers to obtain sensitive user information via SQL statements in the password field.
Published Jul 15, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cross-site scripting (XSS) vulnerability in msg.asp for certain versions of ProductCart allow remote attackers to execute arbitrary web script via the message parameter.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Multiple buffer overflows in IglooFTP PRO 3.8 allow remote FTP servers to execute arbitrary code via (1) a long FTP banner, or long responses to the client commands (2) USER, (3) PASS, (4) ACCT, and possibly other commands.
Published Jul 15, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Multiple cross-site scripting vulnerabilities (XSS) in Bugzilla 2.16.x before 2.16.3 and 2.17.x before 2.17.4 allow remote attackers to insert arbitrary HTML or web script via (1) multiple default German and Russian HTML templates or (2) ALT and NAME attributes in AREA tags as used by the GraphViz graph generation feature for local dependency graphs.
Published Jul 29, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
faxrunqd.in in mgetty 1.1.28 and earlier allows local users to overwrite files via a symlink attack on JOB files.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Directory traversal vulnerability in Microsoft NetMeeting 3.01 2000 before SP4 allows remote attackers to read arbitrary files via "..\.." (dot dot) sequences in a file transfer request.
Published Jul 4, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in uvadmsh in IBM U2 UniVerse 10.0.0.9 and earlier allows the uvadm user to execute arbitrary code via a long -uv.install command line argument.
Published Jul 17, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The web server for Cisco Aironet AP1x00 Series Wireless devices running certain versions of IOS 12.2 allow remote attackers to cause a denial of service (reload) via a malformed URL.
Published Jul 29, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Linux 2.4.x allows remote attackers to spoof the bridge Forwarding table via forged packets whose source addresses are the same as the target.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Polycom MGC 25 allows remote attackers to cause a denial of service (crash) via a large number of "user" requests to the control port 5003, as demonstrated using the blast TCP stress tester.
Published Jul 15, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cisco IOS 11.x and 12.0 through 12.2 allows remote attackers to cause a denial of service (traffic block) by sending a particular sequence of IPv4 packets to an interface on the device, causing the input queue on that interface to be marked as full.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
uvadmsh in IBM U2 UniVerse 10.0.0.9 and earlier trusts the user-supplied -uv.install command line option to find and execute the uv.install program, which allows local users to gain privileges by providing a pathname that is under control of the user.
Published Jul 17, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cross-site scripting (XSS) vulnerability in Microsoft Internet Security and Acceleration (ISA) Server 2000 allows remote attackers to inject arbitrary web script via a URL containing the script in the domain name portion, which is not properly cleansed in the default error pages (1) 500.htm for "500 Internal Server error" or (2) 404.htm for "404 Not Found."
Published Jul 17, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Multiple SQL injection vulnerabilities in ProductCart 1.5 through 2 allow remote attackers to (1) gain access to the admin control panel via the idadmin parameter to login.asp or (2) gain other privileges via the Email parameter to Custva.asp.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in the ShellExecute API function of SHELL32.DLL in Windows 2000 before SP4 may allow attackers to cause a denial of service or execute arbitrary code via a long third argument.
Published Jul 4, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Bugzilla 2.16.x before 2.16.3, 2.17.x before 2.17.4, and earlier versions allows local users to overwrite arbitrary files via a symlink attack on temporary files that are created in directories with group-writable or world-writable permissions.
Published Jul 29, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
mainfile.php in phpforum 2 RC-1, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code by modifying the MAIN_PATH parameter to reference a URL on a remote web server that contains the code.
Published Jul 15, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in the CGI2PERL.NLM PERL handler in Novell Netware 5.1 and 6.0 allows remote attackers to cause a denial of service (ABEND) via a long input string.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The getCanonicalPath function in Windows NT 4.0 may free memory that it does not own and cause heap corruption, which allows attackers to cause a denial of service (crash) via requests that cause a long file name to be passed to getCanonicalPath, as demonstrated on the IBM JVM using a long string to the java.io.getCanonicalPath Java method.
Published Jul 25, 2003 · Updated Aug 8, 2024