Security Vulnerabilities, CVEs, Published In May 2003 (Denial of service)
BitchX IRC client 1.0c20cvs and earlier allows attackers to cause a denial of service (core dump) via certain channel mode changes that are not properly handled in names.c.
Max CVSS
2.1
EPSS Score
0.06%
Published
2003-05-10
Updated
2017-07-11
Multiple buffer overflows in SLWebMail 3 on Windows systems allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a long Language parameter to showlogin.dll, (2) a long CompanyID parameter to recman.dll, (3) a long CompanyID parameter to admin.dll, or (4) a long CompanyID parameter to globallogin.dll.
Max CVSS
7.5
EPSS Score
8.11%
Published
2003-05-27
Updated
2016-10-18
Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client 2.x.x through 3.6.7A allow remote attackers to cause a denial of service (slowdown and possibly reload) via a flood of malformed ICMP packets.
Max CVSS
5.0
EPSS Score
0.75%
Published
2003-05-27
Updated
2018-10-30
Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client 2.x.x through 3.6.7 allows remote attackers to cause a denial of service (reload) via a malformed SSH initialization packet.
Max CVSS
5.0
EPSS Score
0.75%
Published
2003-05-27
Updated
2018-10-30
The route cache implementation in Linux 2.4, and the Netfilter IP conntrack module, allows remote attackers to cause a denial of service (CPU consumption) via packets with forged source addresses that cause a large number of hash table collisions.
Max CVSS
5.0
EPSS Score
12.29%
Published
2003-05-27
Updated
2017-10-11
icqateimg32.dll parsing/rendering library in Mirabilis ICQ Pro 2003a allows remote attackers to cause a denial of service via malformed GIF89a headers that do not contain a GCT (Global Color Table) or an LCT (Local Color Table) after an Image Descriptor.
Max CVSS
5.0
EPSS Score
1.52%
Published
2003-05-27
Updated
2017-07-11
The Message Session window in Mirabilis ICQ Pro 2003a allows remote attackers to cause a denial of service (CPU consumption) by spoofing the address of an ADS server and sending HTML with a -1 width in a table tag.
Max CVSS
5.0
EPSS Score
1.52%
Published
2003-05-27
Updated
2017-07-11
CVE-2003-0213
Public exploit
ctrlpacket.c in PoPToP PPTP server before 1.1.4-b3 allows remote attackers to cause a denial of service via a length field of 0 or 1, which causes a negative value to be fed into a read operation, leading to a buffer overflow.
Max CVSS
7.5
EPSS Score
34.12%
Published
2003-05-12
Updated
2016-10-18
handleAccept in rinetd before 0.62 does not properly resize the connection list when it becomes full and sets an array index incorrectly, which allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large number of connections.
Max CVSS
7.5
EPSS Score
0.83%
Published
2003-05-12
Updated
2016-10-18
Memory leak in xinetd 2.3.10 allows remote attackers to cause a denial of service (memory consumption) via a large number of rejected connections.
Max CVSS
5.0
EPSS Score
8.18%
Published
2003-05-05
Updated
2017-10-11
Buffer overflow in the administration service (CSAdmin) for Cisco Secure ACS before 3.1.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long user parameter to port 2002.
Max CVSS
7.5
EPSS Score
2.52%
Published
2003-05-12
Updated
2016-10-18
gkrellm-newsticker gkrellm plugin before 0.3-3.1 allows remote attackers to cause a denial of service (crash) via (1) link or (2) title elements that contain multiple lines.
Max CVSS
5.0
EPSS Score
0.25%
Published
2003-05-12
Updated
2016-10-18
Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service, as discovered by the Samba team and a different vulnerability than CVE-2003-0201.
Max CVSS
10.0
EPSS Score
4.49%
Published
2003-05-05
Updated
2018-10-30
decrypt_msg for the Gaim-Encryption GAIM plugin 1.15 and earlier does not properly validate a message length parameter, which allows remote attackers to cause a denial of service (crash) via a negative length, which overwrites arbitrary heap memory with a zero byte.
Max CVSS
5.0
EPSS Score
0.67%
Published
2003-05-05
Updated
2016-10-18
GtkHTML, as included in Evolution before 1.2.4, allows remote attackers to cause a denial of service (crash) via certain malformed messages.
Max CVSS
5.0
EPSS Score
0.94%
Published
2003-05-05
Updated
2017-10-11
The Winsock Proxy service in Microsoft Proxy Server 2.0 and the Microsoft Firewall service in Internet Security and Acceleration (ISA) Server 2000 allow remote attackers to cause a denial of service (CPU consumption or packet storm) via a spoofed, malformed packet to UDP port 1745.
Max CVSS
5.0
EPSS Score
1.34%
Published
2003-05-05
Updated
2018-10-12
stunnel 4.0.3 and earlier allows attackers to cause a denial of service (crash) via SIGCHLD signal handler race conditions that cause an inconsistency in the child counter.
Max CVSS
1.2
EPSS Score
0.06%
Published
2003-05-12
Updated
2016-10-18
17 vulnerabilities found