Total
258583 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2003-0779 | 1 Digium | 1 Asterisk | 2008-09-10 | 7.5 HIGH | N/A |
| SQL injection vulnerability in the Call Detail Record (CDR) logging functionality for Asterisk allows remote attackers to execute arbitrary SQL via a CallerID string. | |||||
| CVE-2003-0778 | 1 Sane | 2 Sane, Sane-backend | 2008-09-10 | 5.0 MEDIUM | N/A |
| saned in sane-backends 1.0.7 and earlier, and possibly later versions, does not properly allocate memory in certain cases, which could allow attackers to cause a denial of service (memory consumption). | |||||
| CVE-2003-0777 | 1 Sane | 2 Sane, Sane-backend | 2008-09-10 | 5.0 MEDIUM | N/A |
| saned in sane-backends 1.0.7 and earlier, when debug messages are enabled, does not properly handle dropped connections, which can prevent strings from being null terminated and cause a denial of service (segmentation fault). | |||||
| CVE-2003-0776 | 1 Sane | 2 Sane, Sane-backend | 2008-09-10 | 7.5 HIGH | N/A |
| saned in sane-backends 1.0.7 and earlier does not properly "check the validity of the RPC numbers it gets before getting the parameters," with unknown consequences. | |||||
| CVE-2003-0775 | 1 Sane | 2 Sane, Sane-backend | 2008-09-10 | 5.0 MEDIUM | N/A |
| saned in sane-backends 1.0.7 and earlier calls malloc with an arbitrary size value if a connection is dropped before the size value has been sent, which allows remote attackers to cause a denial of service (memory consumption or crash). | |||||
| CVE-2003-0774 | 1 Sane | 2 Sane, Sane-backend | 2008-09-10 | 7.5 HIGH | N/A |
| saned in sane-backends 1.0.7 and earlier does not quickly handle connection drops, which allows remote attackers to cause a denial of service (segmentation fault) when invalid memory is accessed. | |||||
| CVE-2003-0762 | 1 Foxweb | 1 Foxweb | 2008-09-10 | 7.5 HIGH | N/A |
| Buffer overflow in (1) foxweb.dll and (2) foxweb.exe of Foxweb 2.5 allows remote attackers to execute arbitrary code via a long URL (PATH_INFO value). | |||||
| CVE-2003-0756 | 1 Sitebuilder | 1 Sitebuilder | 2008-09-10 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in sitebuilder.cgi in SiteBuilder 1.4 allows remote attackers to read arbitrary files via .. (dot dot) sequences in the selectedpage parameter. | |||||
| CVE-2003-0755 | 1 Gtkftpd | 1 Gtkftp | 2008-09-10 | 10.0 HIGH | N/A |
| Buffer overflow in sys_cmd.c for gtkftpd 1.0.4 and earlier allows remote attackers to execute arbitrary code by creating long directory names and listing them with a LIST command. | |||||
| CVE-2003-0754 | 1 Newsphp | 1 Newsphp | 2008-09-10 | 7.5 HIGH | N/A |
| nphpd.php in newsPHP 216 and earlier allows remote attackers to bypass authentication via an HTTP request with a modified nphp_users array, which is used for authentication. | |||||
| CVE-2003-0753 | 1 Newsphp | 1 Newsphp | 2008-09-10 | 5.0 MEDIUM | N/A |
| nphpd.php in newsPHP 216 and earlier allows remote attackers to read arbitrary files via a full pathname to the target file in the nphp_config[LangFile] parameter. | |||||
| CVE-2003-0751 | 1 Py-membres | 1 Py-membres | 2008-09-10 | 7.5 HIGH | N/A |
| SQL injection vulnerability in pass_done.php for PY-Membres 4.2 and earlier allows remote attackers to execute arbitrary SQL queries via the email parameter. | |||||
| CVE-2003-0750 | 1 Py-membres | 1 Py-membres | 2008-09-10 | 7.5 HIGH | N/A |
| secure.php in PY-Membres 4.2 and earlier allows remote attackers to bypass authentication by setting the adminpy parameter. | |||||
| CVE-2003-0745 | 1 Castle Rock Computing | 1 Snmpc | 2008-09-10 | 10.0 HIGH | N/A |
| SNMPc 6.0.8 and earlier performs authentication to the server on the client side, which allows remote attackers to gain privileges by decrypting the password that is returned by the server. | |||||
| CVE-2003-0734 | 1 Padl Software | 1 Pam Ldap | 2008-09-10 | 10.0 HIGH | N/A |
| Unknown vulnerability in the pam_filter mechanism in pam_ldap before version 162, when LDAP based authentication is being used, allows users to bypass host-based access restrictions and log onto the system. | |||||
| CVE-2003-0731 | 1 Cisco | 4 Ciscoworks Cd1, Ciscoworks Common Management Foundation, Resource Manager and 1 more | 2008-09-10 | 10.0 HIGH | N/A |
| CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to gain administrative privileges via a certain POST request to com.cisco.nm.cmf.servlet.CsAuthServlet, possibly involving the "cmd" parameter with a modifyUser value and a modified "priviledges" parameter. | |||||
| CVE-2003-0723 | 1 Gkrellm | 1 Gkrellm | 2008-09-10 | 7.5 HIGH | N/A |
| Buffer overflow in gkrellmd for gkrellm 2.1.x before 2.1.14 may allow remote attackers to execute arbitrary code. | |||||
| CVE-2003-0709 | 1 Whois | 1 Whois | 2008-09-10 | 7.5 HIGH | N/A |
| Buffer overflow in the whois client, which is not setuid but is sometimes called from within CGI programs, may allow remote attackers to execute arbitrary code via a long command line option. | |||||
| CVE-2003-0706 | 1 Nicolas Boullis | 1 Mah-jong | 2008-09-10 | 5.0 MEDIUM | N/A |
| Unknown vulnerability in mah-jong 1.5.6 and earlier allows remote attackers to cause a denial of service (tight loop). | |||||
| CVE-2003-0705 | 1 Nicolas Boullis | 1 Mah-jong | 2008-09-10 | 7.5 HIGH | N/A |
| Buffer overflow in mah-jong 1.5.6 and earlier allows remote attackers to execute arbitrary code. | |||||