Security Vulnerabilities, CVEs, Published In 2003 (Denial of service) CVSS score >= 5
libxml2, possibly before 2.5.0, does not properly detect recursion during entity expansion, which allows context-dependent attackers to cause a denial of service (memory and CPU consumption) via a crafted XML document containing a large number of nested entity references, aka the "billion laughs attack."
Max CVSS
9.3
EPSS Score
0.37%
Published
2003-12-31
Updated
2024-02-02
Buffer overflow in httpd.c of fnord 1.6 allows remote attackers to create a denial of service (crash) and possibly execute arbitrary code via a long CGI request passed to the do_cgi function.
Max CVSS
5.0
EPSS Score
7.11%
Published
2003-12-31
Updated
2018-10-19
Unrestricted critical resource lock in Terminal Services for Windows 2000 before SP4 and Windows XP allows remote authenticated users to cause a denial of service (reboot) by obtaining a read lock on msgina.dll, which prevents msgina.dll from being loaded.
Max CVSS
6.8
EPSS Score
1.07%
Published
2003-12-31
Updated
2017-08-08
Adiscon WinSyslog 4.21 SP1 allows remote attackers to cause a denial of service (CPU consumption) via a long syslog message.
Max CVSS
7.8
EPSS Score
1.38%
Published
2003-12-31
Updated
2017-07-29
Origo ASR-8100 ADSL Router 3.21 has an administration service running on port 254 that does not require a password, which allows remote attackers to cause a denial of service by restoring the factory defaults.
Max CVSS
7.8
EPSS Score
0.78%
Published
2003-12-31
Updated
2017-07-29
eMule 0.29c allows remote attackers to cause a denial of service (crash) via a long password, possibly due to a buffer overflow.
Max CVSS
7.8
EPSS Score
0.96%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in mIRC 6.1 and 6.11 allows remote attackers to cause a denial of service (crash) via a long DCC SEND request.
Max CVSS
5.0
EPSS Score
4.02%
Published
2003-12-31
Updated
2008-09-05
TinyWeb 1.9 allows remote attackers to cause a denial of service (CPU consumption) via a ".%00." in an HTTP GET request to the cgi-bin directory.
Max CVSS
7.8
EPSS Score
0.72%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in the system log viewer of Linksys BEFSX41 1.44.3 allows remote attackers to cause a denial of service via an HTTP request with a long Log_Page_Num variable.
Max CVSS
6.3
EPSS Score
0.86%
Published
2003-12-31
Updated
2017-07-29
Unspecified vulnerability in the non-SSL web agent in various HP Management Agent products allows local users or remote attackers to gain privileges or cause a denial of service via unknown attack vectors.
Max CVSS
10.0
EPSS Score
0.40%
Published
2003-12-31
Updated
2017-07-29
Unspecified vulnerability in HP OpenView Network Node Manager (NNM) 6.2 and 6.4 allows remote attackers to cause a denial of service (CPU consumption) via a crafted TCP packet.
Max CVSS
5.0
EPSS Score
0.80%
Published
2003-12-31
Updated
2017-07-29
Memory leak in HP OpenView Network Node Manager (NNM) 6.2 and 6.4 allows remote attackers to cause a denial of service (memory exhaustion) via crafted TCP packets.
Max CVSS
5.0
EPSS Score
0.87%
Published
2003-12-31
Updated
2017-07-29
SonicWall Pro running firmware 6.4.0.1 allows remote attackers to cause a denial of service (device reset) via a long HTTP POST to the internal interface, possibly due to a buffer overflow.
Max CVSS
7.8
EPSS Score
1.21%
Published
2003-12-31
Updated
2017-07-29
MAILsweeper for SMTP 4.3.6 and 4.3.7 allows remote attackers to cause a denial of service (CPU consumption) via a PowerPoint attachment that either (1) is corrupt or (2) contains "embedded objects."
Max CVSS
7.8
EPSS Score
1.14%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in 3D-FTP client 4.0 allows remote FTP servers to cause a denial of service (crash) and possibly execute arbitrary code via a long banner.
Max CVSS
5.0
EPSS Score
0.77%
Published
2003-12-31
Updated
2017-07-29
MDaemon POP server 6.0.7 and earlier allows remote authenticated users to cause a denial of service (crash) via a (1) DELE or (2) UIDL with a negative number.
Max CVSS
6.3
EPSS Score
4.12%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in IMAP service in MDaemon 6.7.5 and earlier allows remote authenticated users to cause a denial of service (crash) and execute arbitrary code via a CREATE command with a long mailbox name.
Max CVSS
9.0
EPSS Score
1.67%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in Siemens 45 series mobile phones allows remote attackers to cause a denial of service (disconnect and unavailable inbox) via a Short Message Service (SMS) message with a long image name.
Max CVSS
7.8
EPSS Score
0.91%
Published
2003-12-31
Updated
2017-07-29
mod_survey 3.0.0 through 3.0.15-pre6 does not check whether a survey exists before creating a subdirectory for it, which allows remote attackers to cause a denial of service (disk consumption and possible crash).
Max CVSS
5.0
EPSS Score
1.49%
Published
2003-12-31
Updated
2017-07-29
BitchX 75p3 and 1.0c16 through 1.0c20cvs allows remote attackers to cause a denial of service (segmentation fault) via a malformed RPL_NAMREPLY numeric 353 message.
Max CVSS
5.0
EPSS Score
4.96%
Published
2003-12-31
Updated
2017-07-29
Memory leak in the Windows 2000 kernel allows remote attackers to cause a denial of service (SMB request hang) via a NetBIOS continuation packet.
Max CVSS
7.8
EPSS Score
12.38%
Published
2003-12-31
Updated
2019-04-30
Epic Games Unreal Engine 226f through 436 allows remote attackers to cause a denial of service (CPU consumption or crash) and possibly execute arbitrary code via (1) a packet with a negative size value, which is treated as a large positive number during memory allocation, or (2) a negative size value in a package file.
Max CVSS
10.0
EPSS Score
4.66%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in Epic Games Unreal Engine 226f through 436 allows remote attackers to cause a denial of service (crash) via a long host string in the Unreal URL.
Max CVSS
7.1
EPSS Score
1.79%
Published
2003-12-31
Updated
2017-07-29
Cisco IOS 12.0 through 12.2, when IP routing is disabled, accepts false ICMP redirect messages, which allows remote attackers to cause a denial of service (network routing modification).
Max CVSS
9.3
EPSS Score
0.56%
Published
2003-12-31
Updated
2017-07-29
Heap-based buffer overflow in Opera 6.05 through 7.10 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a filename with a long extension.
Max CVSS
6.8
EPSS Score
0.56%
Published
2003-12-31
Updated
2022-03-01