LiveActive security incident?Get immediate response
CVE archive

July 2003

Browse CVE records published in July 2003, with severity, affected products, CWE, KEV, and source-backed vulnerability context.

Showing 44 of 94 matching CVEs · Page 2 of 2.

Unknown · CVSS Not scored

CVE-2003-0507: Stack-based buffer overflow in Active Directory in Windows 2000 before SP4 allows remote attackers to cause...

Stack-based buffer overflow in Active Directory in Windows 2000 before SP4 allows remote attackers to cause a denial of service (reboot) and possibly execute arbitrary code via an LDAP version 3 search request with a large number of (1) "AND," (2) "OR," and possibly other statements, which causes LSASS.EXE to crash.

Published Jul 4, 2003 · Updated Aug 8, 2024

Unknown · CVSS Not scored

CVE-2003-0581: X Fontserver for Truetype fonts (xfstt) 1.4 allows remote attackers to cause a denial of service and possib...

X Fontserver for Truetype fonts (xfstt) 1.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a (1) FS_QueryXExtents8 or (2) FS_QueryXBitmaps8 packet, and possibly other types of packets, with a large num_ranges value, which causes an out-of-bounds array access.

Published Jul 25, 2003 · Updated Aug 8, 2024

Unknown · CVSS Not scored

CVE-2003-0350: The control for listing accessibility options in the Accessibility Utility Manager on Windows 2000 (ListVie...

The control for listing accessibility options in the Accessibility Utility Manager on Windows 2000 (ListView) does not properly handle Windows messages, which allows local users to execute arbitrary code via a "Shatter" style message to the Utility Manager that references a user-controlled callback function.

Published Jul 10, 2003 · Updated Aug 8, 2024

Unknown · CVSS Not scored

CVE-2003-0142: Adobe Acrobat Reader (acroread) 6, under certain circumstances when running with the "Certified plug-ins on...

Adobe Acrobat Reader (acroread) 6, under certain circumstances when running with the "Certified plug-ins only" option disabled, loads plug-ins with signatures used for older versions of Acrobat, which can allow attackers to cause Acrobat to enter Certified mode and run untrusted plugins by modifying the CTIsCertifiedMode function.

Published Jul 17, 2003 · Updated Aug 8, 2024