Unknown · CVSS Not scored
The DNS callbacks in nsd in SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, do not perform sufficient sanity checking, with unknown impact.
Published Aug 18, 2003 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Format string vulnerability in tcpflow, when used in a setuid context, allows local users to execute arbitrary code via the device name argument, as demonstrated in Sustworks IPNetSentryX and IPNetMonitorX the setuid program RunTCPFlow.
Published Aug 14, 2003 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Directory traversal vulnerability in Kai Blankenhorn Bitfolge simple and nice index file (aka snif) before 1.2.5 allows remote attackers to download files from locations above the snif directory.
Published Aug 23, 2007 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Cross-site scripting (XSS) vulnerability in Kai Blankenhorn Bitfolge simple and nice index file (aka snif) before 1.2.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Published Aug 23, 2007 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Buffer overflow in autorespond may allow remote attackers to execute arbitrary code as the autorespond user via qmail.
Published Aug 21, 2003 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Unspecified vulnerability in the Cache' Server Page (CSP) implementation in InterSystems Cache' 4.0.3 through 5.0.5 allows remote attackers to "gain complete control" of a server.
Published Aug 20, 2007 · Updated Sep 17, 2024
Unknown · CVSS Not scored
The Name Service Daemon (nsd), when running on an NIS master on SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, allows remote attackers to cause a denial of service (crash) via a UDP port scan.
Published Aug 18, 2003 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Sustworks IPNetSentryX and IPNetMonitorX allow local users to sniff network packets via the setuid helper applications (1) RunTCPDump, which calls tcpdump, and (2) RunTCPFlow, which calls tcpflow.
Published Aug 14, 2003 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Format string vulnerability in pam-pgsql 0.5.2 and earlier allows remote attackers to execute arbitrary code via the username that isp rovided during authentication, which is not properly handled when recording a log message.
Published Aug 14, 2003 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Cisco CSS 11000 routers on the CS800 chassis allow remote attackers to cause a denial of service (CPU consumption or reboot) via a large number of TCP SYN packets to the circuit IP address, aka "ONDM Ping failure."
Published Aug 14, 2003 · Updated Sep 17, 2024
Unknown · CVSS Not scored
Buffer overflow in zblast-svgalib of zblast 1.2.1 and earlier allows local users to execute arbitrary code via the high score file.
Published Aug 14, 2003 · Updated Sep 17, 2024
Unknown · CVSS Not scored
The OSI networking kernel (sys/netiso) in NetBSD 1.6.1 and earlier does not use a BSD-required "PKTHDR" mbuf when sending certain error responses to the sender of an OSI packet, which allows remote attackers to cause a denial of service (kernel panic or crash) via certain OSI packets.
Published Aug 5, 2003 · Updated Sep 16, 2024
Unknown · CVSS Not scored
sup 1.8 and earlier does not properly create temporary files, which allows local users to overwrite arbitrary files.
Published Aug 1, 2003 · Updated Sep 16, 2024
Unknown · CVSS Not scored
Unknown vulnerability in the libcpr library for the Checkpoint/Restart (cpr) system on SGI IRIX 6.5.21f and earlier allows local users to truncate or overwrite certain files.
Published Aug 15, 2003 · Updated Sep 16, 2024
Unknown · CVSS Not scored
Unknown vulnerability in SGI IRIX 6.5.x through 6.5.20, and possibly earlier versions, allows local users to cause a core dump in scheme and possibly gain privileges via certain environment variables, a different vulnerability than CVE-2001-0797 and CVE-1999-0028.
Published Aug 18, 2003 · Updated Sep 16, 2024
Unknown · CVSS Not scored
sshd in OpenSSH 3.6.1p2 and earlier, when PermitRootLogin is disabled and using PAM keyboard-interactive authentication, does not insert a delay after a root login attempt with the correct password, which makes it easier for remote attackers to use timing differences to determine if the password step of a multi-step authentication is successful, a different vulnerability than CVE-2003-0190.
Published Aug 4, 2008 · Updated Sep 16, 2024
Unknown · CVSS Not scored
Buffer overflow in the HTTP server for Cisco IOS 12.2 and earlier allows remote attackers to execute arbitrary code via an extremely long (2GB) HTTP GET request.
Published Aug 5, 2003 · Updated Sep 16, 2024
Unknown · CVSS Not scored
Buffer overflow in the mylo_log logging function for mod_mylo 0.2.1 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request.
Published Aug 5, 2003 · Updated Sep 16, 2024
Unknown · CVSS Not scored
SGI IRIX 6.5.x through 6.5.20f, and possibly earlier versions, does not follow "-" entries in the /etc/group file, which may cause subsequent group membership entries to be processed inadvertently.
Published Aug 18, 2003 · Updated Sep 16, 2024
Unknown · CVSS Not scored
Sun Cluster 2.2 through 3.2 for Oracle Parallel Server / Real Application Clusters (OPS/RAC) allows local users to cause a denial of service (cluster node panic or abort) by launching a daemon listening on a TCP port that would otherwise be used by the Distributed Lock Manager (DLM), possibly involving this daemon responding in a manner that spoofs a cluster reconfiguration.
Published Aug 18, 2008 · Updated Sep 16, 2024
Unknown · CVSS Not scored
Multiple SQL injection vulnerabilities in the infolog module for phpgroupware 0.9.14 and earlier could allow remote attackers to conduct unauthorized database actions.
Published Aug 14, 2003 · Updated Sep 16, 2024
Unknown · CVSS Not scored
Microsoft Internet Explorer allows remote attackers to cause a denial of service (resource consumption) via a Javascript src attribute that recursively loads the current web page.
Published Aug 30, 2006 · Updated Sep 16, 2024
Unknown · CVSS Not scored
curl 7.x before 7.10.7 sends CONNECT proxy credentials to the remote server.
Published Aug 23, 2018 · Updated Aug 8, 2024
Unknown · CVSS Not scored
GE Healthcare Discovery VH has a default password of (1) interfile for the ftpclient user of the Interfile server or (2) "2" for the LOCAL user of the FTP server for the Codonics printer, which has unspecified impact and attack vectors.
Published Aug 4, 2015 · Updated Aug 8, 2024
Unknown · CVSS Not scored
TikiWiki 1.6.1 allows remote attackers to bypass authentication by entering a valid username with an arbitrary password, possibly related to the Internet Explorer "Remember Me" feature. NOTE: some of these details are obtained from third party information.
Published Aug 24, 2009 · Updated Aug 8, 2024
Unknown · CVSS Not scored
BEA WebLogic Express and Server 7.0 through 8.1 SP 1, under certain circumstances when a request to use T3 over SSL (t3s) is made to the insecure T3 port, may use a non-SSL connection for the communication, which could allow attackers to sniff sessions.
Published Aug 16, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The default CredentialMapper for BEA WebLogic Server and Express 7.0 and 7.0.0.1 stores passwords in cleartext on disk, which allows local users to extract passwords.
Published Aug 16, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in the prepare_reply function in request.c for Mathopd 1.2 through 1.5b13, and possibly earlier versions, allows remote attackers to cause a denial of service (server crash) and possibly execute arbitrary code via an HTTP request with a long path.
Published Aug 16, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
BEA WebLogic Server proxy plugin for BEA Weblogic Express and Server 6.1 through 8.1 SP 1 allows remote attackers to cause a denial of service (proxy plugin crash) via a malformed URL.
Published Aug 16, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
PHP remote file include vulnerability in index.php for Gallery 1.4 and 1.4-pl1, when running on Windows or in Configuration mode on Unix, allows remote attackers to inject arbitrary PHP code via a URL in the GALLERY_BASEDIR parameter, a different vulnerability than CVE-2002-1412. NOTE: this issue might be exploitable only during installation, or if the administrator has not run a security script after installation.
Published Aug 16, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
BEA Weblogic Express and Server 8.0 through 8.1 SP 1, when using a foreign Java Message Service (JMS) provider, echoes the password for the foreign provider to the console and stores it in cleartext in config.xml, which could allow attackers to obtain the password.
Published Aug 16, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The implementation of SYN cookies (syncookies) in FreeBSD 4.5 through 5.0-RELEASE-p3 uses only 32-bit internal keys when generating syncookies, which makes it easier for remote attackers to conduct brute force ISN guessing attacks and spoof legitimate traffic.
Published Aug 17, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Weblogic.admin for BEA WebLogic Server and Express 7.0 and 7.0.0.1 displays the JDBCConnectionPoolRuntimeMBean password to the screen in cleartext, which allows attackers to read a user's password by physically observing ("shoulder surfing") the screen.
Published Aug 16, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The Node Manager for BEA WebLogic Express and Server 6.1 through 8.1 SP 1 allows remote attackers to cause a denial of service (Node Manager crash) via malformed data to the Node Manager's port, as demonstrated by nmap.
Published Aug 16, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cross-site scripting (XSS) vulnerability in the tep_href_link function in html_output.php for osCommerce before 2.2-MS3 allows remote attackers to inject arbitrary web script or HTML via the osCsid parameter.
Published Aug 4, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
X509TrustManager in (1) Java Secure Socket Extension (JSSE) in SDK and JRE 1.4.0 through 1.4.0_01, (2) JSSE before 1.0.3, (3) Java Plug-in SDK and JRE 1.3.0 through 1.4.1, and (4) Java Web Start 1.0 through 1.2 incorrectly calls the isClientTrusted method when determining server trust, which results in improper validation of digital certificate and allows remote attackers to (1) falsely authenticate peers for SSL or (2) incorrectly validate signed JAR files.
Published Aug 17, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Cross-site scripting (XSS) vulnerability in index.php in ECW-Shop 5.5 allows remote attackers to inject arbitrary web script or HTML via the cat parameter.
Published Aug 19, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
BEA WebLogic Server and Express 7.0 and 7.0.0.1 stores certain secrets concerning password encryption insecurely in config.xml, filerealm.properties, and weblogic-rar.xml, which allows local users to learn those secrets and decrypt passwords.
Published Aug 16, 2005 · Updated Aug 8, 2024
Unknown · CVSS Not scored
IBM DB2 7.1 and 8.1 allow the bin user to gain root privileges by modifying the shared libraries that are used in setuid root programs.
Published Aug 20, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Multiple format string vulnerabilities in IBM DB2 Universal Database 8.1 may allow local users to execute arbitrary code via certain command line arguments to (1) db2start, (2) db2stop, or (3) db2govd.
Published Aug 20, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Multiple buffer overflows in IBM DB2 Universal Database 8.1 may allow local users to execute arbitrary code via long command line arguments to (1) db2start, (2) db2stop, or (3) db2govd.
Published Aug 20, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
IBM DB2 Universal Database 7 before FixPak 12 creates certain DMS directories with insecure permissions (777), which allows local users to modify or delete certain DB2 files.
Published Aug 20, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Clearswift MAILsweeper before 4.3.15 does not properly detect filenames in BinHex (HQX) encoded files, which allows remote attackers to bypass intended policy.
Published Aug 18, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Sygate Enforcer 4.0 earlier allows remote attackers to cause a denial of service (service hang) by replaying a malformed discovery packet to UDP port 39999.
Published Aug 18, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Clearswift MAILsweeper before 4.3.15 does not properly detect and filter ZIP 6.0 encoded files, which allows remote attackers to bypass intended policy.
Published Aug 18, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Clearswift MAILsweeper before 4.3.15 does not properly detect and filter RAR 3.20 encoded files, which allows remote attackers to bypass intended policy.
Published Aug 18, 2004 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in Internet Explorer 6 SP1 for certain languages that support double-byte encodings (e.g., Japanese) allows remote attackers to execute arbitrary code via the Type property of an Object tag, a variant of CVE-2003-0344.
Published Aug 22, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Directory traversal vulnerability in ViewLog for iPlanet Administration Server 5.1 (aka Sun ONE) allows remote attackers to read arbitrary files via "..%2f" (partially encoded dot dot) sequences.
Published Aug 14, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
The C-Media PCI sound driver in Linux before 2.4.21 does not use the get_user function to access userspace, which crosses security boundaries and may facilitate the exploitation of vulnerabilities, a different vulnerability than CVE-2003-0700.
Published Aug 22, 2003 · Updated Aug 8, 2024
Unknown · CVSS Not scored
Buffer overflow in Netris 0.52 and earlier, and possibly other versions, allows remote malicious Netris servers to execute arbitrary code on netris clients via a long server response.
Published Aug 15, 2003 · Updated Aug 8, 2024