Unknown · CVSS Not scored
Buffer overflow in the Client Detection Tool (CDT) plugin (npcdt.dll) for Netscape 7.02 allows remote attackers to execute arbitrary code via an attachment with a long filename.
Published Jul 15, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Certain versions of Internet Explorer 5 and 6, in certain Windows environments, allow remote attackers to cause a denial of service (freeze) via a URL to C:\aux (MS-DOS device name) and possibly other devices.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
ImageMagick 5.4.3.x and earlier allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a "%x" filename, possibly triggering a format string vulnerability.
Published Jul 15, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The screen saver in MacOS X allows users with physical access to cause the screen saver to crash and gain access to the underlying session via a large number of characters in the password field, possibly triggering a buffer overflow.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
mpg123 0.59r allows remote attackers to cause a denial of service and possibly execute arbitrary code via an MP3 file with a zero bitrate, which creates a negative frame size.
Published Jul 17, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Stack-based buffer overflow in Active Directory in Windows 2000 before SP4 allows remote attackers to cause a denial of service (reboot) and possibly execute arbitrary code via an LDAP version 3 search request with a large number of (1) "AND," (2) "OR," and possibly other statements, which causes LSASS.EXE to crash.
Published Jul 4, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Unknown vulnerability in the Virtual File System (VFS) capability for phpGroupWare 0.9.16preRC and versions before 0.9.14.004 with unknown implications, related to the VFS path being under the web document root.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
SQL injection vulnerability in the PostgreSQL authentication module (mod_sql_postgres) for ProFTPD before 1.2.9rc1 allows remote attackers to execute arbitrary SQL and gain privileges by bypassing authentication or stealing passwords via the USER name.
Published Jul 4, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Caché Database 5.x installs /cachesys/bin/cache with world-writable permissions, which allows local users to gain privileges by modifying cache and executing it via cuxs.
Published Jul 4, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
X Fontserver for Truetype fonts (xfstt) 1.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a (1) FS_QueryXExtents8 or (2) FS_QueryXBitmaps8 packet, and possibly other types of packets, with a large num_ranges value, which causes an out-of-bounds array access.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The /proc filesystem in Linux allows local users to obtain sensitive information by opening various entries in /proc/self before executing a setuid program, which causes the program to fail to change the ownership and permissions of those entries.
Published Jul 4, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
skk (Simple Kana to Kanji conversion program) 12.1 and earlier, and the ddskk package which is based on skk, creates temporary files insecurely, which allows local users to overwrite arbitrary files.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in the WWWLaunchNetscape function of Adobe Acrobat Reader (acroread) 5.0.7 and earlier allows remote attackers to execute arbitrary code via a .pdf file with a long mailto link.
Published Jul 4, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Qt in Knoppix 3.1 Live CD allows local users to overwrite arbitrary files via a symlink attack on the qt_plugins_3.0rc temporary file in the .qt directory.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cross-site scripting (XSS) vulnerability in cPanel 6.4.2 allows remote attackers to insert arbitrary HTML and possibly gain cPanel administrator privileges via script in a URL that is logged but not properly quoted when displayed via the (1) Error Log or (2) Latest Visitors screens.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Format string vulnerability in ezbounce 1.0 through 1.50 allows remote attackers to execute arbitrary code via the "sessions" command.
Published Jul 4, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Apple QuickTime / Darwin Streaming Server before 4.1.3g allows remote attackers to cause a denial of service (crash) via a .. (dot dot) sequence followed by an MS-DOS device name (e.g. AUX) in a request to HTTP port 1220, a different vulnerability than CVE-2003-0421.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The kernel strncpy function in Linux 2.4 and 2.5 does not %NUL pad the buffer on architectures other than x86, as opposed to the expected behavior of strncpy as implemented in libc, which could lead to information leaks.
Published Jul 15, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
/proc/tty/driver/serial in Linux 2.4.x reveals the exact number of characters used in serial links, which could allow local users to obtain potentially sensitive information such as the length of passwords.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Mantis 0.17.5 and earlier stores its database password in cleartext in a world-readable configuration file, which allows local users to perform unauthorized database operations.
Published Jul 4, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
VisNetic WebSite 3.5 allows remote attackers to obtain the full pathname of the server via a request containing a folder that does not exist, which leaks the pathname in an error message, as demonstrated using _vti_bin/fpcount.exe.
Published Jul 15, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The RPC code in Linux kernel 2.4 sets the reuse flag when sockets are created, which could allow local users to bind to UDP ports that are used by privileged services such as nfsd.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The imagemagick libmagick library 5.5 and earlier creates temporary files insecurely, which allows local users to create or overwrite arbitrary files.
Published Jul 4, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The rotatelogs program on Apache before 1.3.28, for Windows and OS/2 systems, does not properly ignore certain control characters that are received over the pipe, which could allow remote attackers to cause a denial of service.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
A race condition in the way env_start and env_end pointers are initialized in the execve system call and used in fs/proc/base.c on Linux 2.4 allows local users to cause a denial of service (crash).
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The (1) semi MIME library 1.14.5 and earlier, and (2) wemi 1.14.0 and possibly other versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The installation of Apple QuickTime / Darwin Streaming Server before 4.1.3f starts the administration server with a "Setup Assistant" page that allows remote attackers to set the administrator password and gain privileges before the real administrator.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Directory traversal vulnerability in Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to read arbitrary files via a ... (triple dot) in an HTTP request.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to obtain the source code for scripts by appending encoded space (%20) or . (%2e) characters to an HTTP request for the script, e.g. view_broadcast.cgi.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
parse_xml.cgi in Apple QuickTime / Darwin Streaming Server before 4.1.3g allows remote attackers to obtain the source code for parseable files via the filename parameter.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to cause a denial of service (crash) via an MS-DOS device name (e.g. AUX) in a request to HTTP port 1220, a different vulnerability than CVE-2003-0502.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Apple QuickTime / Darwin Streaming Server before 4.1.3f allows remote attackers to cause a denial of service (crash) via a request to view_broadcast.cgi that does not contain the required parameters.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Multiple integer overflows in a Microsoft Windows DirectX MIDI library (QUARTZ.DLL) allow remote attackers to execute arbitrary code via a MIDI (.mid) file with (1) large length for a Text or Copyright string, or (2) a large number of tracks, which leads to a heap-based buffer overflow.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in a certain DCOM interface for RPC in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a malformed message, as exploited by the Blaster/MSblast/LovSAN and Nachi/Welchia worms.
Published Jul 17, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in the SMB capability for Microsoft Windows XP, 2000, and NT allows remote attackers to cause a denial of service and possibly execute arbitrary code via an SMB packet that specifies a smaller buffer length than is required.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The control for listing accessibility options in the Accessibility Utility Manager on Windows 2000 (ListView) does not properly handle Windows messages, which allows local users to execute arbitrary code via a "Shatter" style message to the Utility Manager that references a user-controlled callback function.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The prefork MPM in Apache 2 before 2.0.47 does not properly handle certain errors from accept, which could lead to a denial of service.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Off-by-one error in the xlog function of mountd in the Linux NFS utils package (nfs-utils) before 1.0.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via certain RPC requests to mountd that do not contain newlines.
Published Jul 15, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Apache 2 before 2.0.47, when running on an IPv6 host, allows attackers to cause a denial of service (CPU consumption by infinite loop) when the FTP proxy server fails to create an IPv6 socket.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Apache 2 before 2.0.47, and certain versions of mod_ssl for Apache 1.3, do not properly handle "certain sequences of per-directory renegotiations and the SSLCipherSuite directive being used to upgrade from a weak ciphersuite to a strong one," which could cause Apache to use the weak ciphersuite.
Published Jul 10, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Microsoft SQL Server 7, 2000, and MSDE allows local users to gain privileges by hijacking a named pipe during the authentication of another user, aka the "Named Pipe Hijacking" vulnerability.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Microsoft SQL Server 7, 2000, and MSDE allows local or remote authenticated users to cause a denial of service (crash or hang) via a long request to a named pipe.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Microsoft SQL Server 7, 2000, and MSDE allows local users to execute arbitrary code via a certain request to the Local Procedure Calls (LPC) port that leads to a buffer overflow.
Published Jul 25, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Adobe Acrobat Reader (acroread) 6, under certain circumstances when running with the "Certified plug-ins only" option disabled, loads plug-ins with signatures used for older versions of Acrobat, which can allow attackers to cause Acrobat to enter Certified mode and run untrusted plugins by modifying the CTIsCertifiedMode function.
Published Jul 17, 2003 · Updated Aug 8, 2024