Buffer overflow in Internet Explorer 6 SP1 for certain languages that support double-byte encodings (e.g., Japanese) allows remote attackers to execute arbitrary code via the Type property of an Object tag, a variant of CVE-2003-0344.
Max CVSS
7.5
EPSS Score
7.72%
Published
2003-08-27
Updated
2021-07-23
Buffer overflow in Netris 0.52 and earlier, and possibly other versions, allows remote malicious Netris servers to execute arbitrary code on netris clients via a long server response.
Max CVSS
7.5
EPSS Score
0.42%
Published
2003-08-27
Updated
2016-10-18
Format string vulnerability in pam-pgsql 0.5.2 and earlier allows remote attackers to execute arbitrary code via the username that isp rovided during authentication, which is not properly handled when recording a log message.
Max CVSS
7.5
EPSS Score
0.38%
Published
2003-08-27
Updated
2008-09-10
Format string vulnerability in tcpflow, when used in a setuid context, allows local users to execute arbitrary code via the device name argument, as demonstrated in Sustworks IPNetSentryX and IPNetMonitorX the setuid program RunTCPFlow.
Max CVSS
7.2
EPSS Score
0.04%
Published
2003-08-27
Updated
2008-09-10
Buffer overflow in autorespond may allow remote attackers to execute arbitrary code as the autorespond user via qmail.
Max CVSS
7.5
EPSS Score
0.40%
Published
2003-08-27
Updated
2008-09-10
Buffer overflow in the mylo_log logging function for mod_mylo 0.2.1 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request.
Max CVSS
7.5
EPSS Score
1.04%
Published
2003-08-27
Updated
2008-09-05
Directory traversal vulnerability in GSAPAK.EXE for GameSpy Arcade, possibly versions before 1.3e, allows remote attackers to overwrite arbitrary files and execute arbitrary code via .. (dot dot) sequences in filenames in a .APK (Zip) file.
Max CVSS
7.5
EPSS Score
4.33%
Published
2003-08-27
Updated
2016-10-18
Buffer overflow in xpcd-svga for xpcd 2.08 and earlier allows local users to execute arbitrary code via a long HOME environment variable.
Max CVSS
7.2
EPSS Score
0.04%
Published
2003-08-27
Updated
2008-09-10
Buffer overflow in the HTTP server for Cisco IOS 12.2 and earlier allows remote attackers to execute arbitrary code via an extremely long (2GB) HTTP GET request.
Max CVSS
7.5
EPSS Score
2.35%
Published
2003-08-27
Updated
2008-09-10
Multiple buffer overflows in ActiveX controls used by Trend Micro HouseCall 5.5 and 5.7, and Damage Cleanup Server 1.0, allow remote attackers to execute arbitrary code via long parameter strings.
Max CVSS
7.5
EPSS Score
2.42%
Published
2003-08-27
Updated
2008-09-10
Multiple buffer overflows in Novell iChain 2.1 before Field Patch 3, and iChain 2.2 before Field Patch 1a, allow attackers to cause a denial of service (ABEND) and possibly execute arbitrary code via (1) a long user name or (2) an unknown attack related to a "special script against login."
Max CVSS
7.5
EPSS Score
0.82%
Published
2003-08-27
Updated
2016-10-18
Stack-based buffer overflow in the PL/SQL EXTPROC functionality for Oracle9i Database Release 2 and 1, and Oracle 8i, allows authenticated database users, and arbitrary database users in some cases, to execute arbitrary code via a long library name.
Max CVSS
7.5
EPSS Score
1.44%
Published
2003-08-27
Updated
2017-07-11
Buffer overflow in the Oracle Applications Web Report Review (FNDWRR) CGI program (FNDWRR.exe) of Oracle E-Business Suite 11.0 and 11.5.1 through 11.5.8 may allow remote attackers to execute arbitrary code via a long URL.
Max CVSS
7.5
EPSS Score
1.37%
Published
2003-08-27
Updated
2016-10-18
Format string vulnerability in ePO service for McAfee ePolicy Orchestrator 2.0, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code via a POST request with format strings in the computerlist parameter, which are used when logging a failed name resolution.
Max CVSS
7.5
EPSS Score
1.72%
Published
2003-08-27
Updated
2013-07-23
Buffer overflow in zblast-svgalib of zblast 1.2.1 and earlier allows local users to execute arbitrary code via the high score file.
Max CVSS
4.6
EPSS Score
0.04%
Published
2003-08-27
Updated
2008-09-10
Buffer overflow in WiTango Application Server and Tango 2000 allows remote attackers to execute arbitrary code via a long cookie to Witango_UserReference.
Max CVSS
7.5
EPSS Score
2.64%
Published
2003-08-27
Updated
2024-02-09
Format string vulnerability in Backup and Restore Utility for Unix (BRU) 17.0 and earlier, when running setuid, allows local users to execute arbitrary code via format string specifiers in a command line argument.
Max CVSS
7.2
EPSS Score
0.06%
Published
2003-08-18
Updated
2016-10-18
Buffer overflow in Backup and Restore Utility for Unix (BRU) 17.0 and earlier, when running setuid, allows local users to execute arbitrary code via a long command line argument.
Max CVSS
7.2
EPSS Score
0.04%
Published
2003-08-18
Updated
2016-10-18
X Fontserver for Truetype fonts (xfstt) 1.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a (1) FS_QueryXExtents8 or (2) FS_QueryXBitmaps8 packet, and possibly other types of packets, with a large num_ranges value, which causes an out-of-bounds array access.
Max CVSS
7.5
EPSS Score
0.83%
Published
2003-08-18
Updated
2016-10-18
Buffer overflow in uvadmsh in IBM U2 UniVerse 10.0.0.9 and earlier allows the uvadm user to execute arbitrary code via a long -uv.install command line argument.
Max CVSS
7.2
EPSS Score
0.04%
Published
2003-08-18
Updated
2016-10-18
mpg123 0.59r allows remote attackers to cause a denial of service and possibly execute arbitrary code via an MP3 file with a zero bitrate, which creates a negative frame size.
Max CVSS
7.5
EPSS Score
9.10%
Published
2003-08-18
Updated
2008-09-10
Multiple buffer overflows in IglooFTP PRO 3.8 allow remote FTP servers to execute arbitrary code via (1) a long FTP banner, or long responses to the client commands (2) USER, (3) PASS, (4) ACCT, and possibly other commands.
Max CVSS
7.5
EPSS Score
0.37%
Published
2003-08-18
Updated
2016-10-18

CVE-2003-0558

Public exploit
Buffer overflow in LeapFTP 2.7.3.600 allows remote FTP servers to execute arbitrary code via a long IP address response to a PASV request.
Max CVSS
7.5
EPSS Score
1.28%
Published
2003-08-18
Updated
2016-10-18
ImageMagick 5.4.3.x and earlier allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a "%x" filename, possibly triggering a format string vulnerability.
Max CVSS
7.5
EPSS Score
0.34%
Published
2003-08-18
Updated
2016-10-18
Buffer overflow in the Client Detection Tool (CDT) plugin (npcdt.dll) for Netscape 7.02 allows remote attackers to execute arbitrary code via an attachment with a long filename.
Max CVSS
7.5
EPSS Score
43.51%
Published
2003-08-18
Updated
2016-10-18
53 vulnerabilities found
1 2 3
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!