CVE-2002-1473

Public exploit
Multiple buffer overflows in lp subsystem for HP-UX 10.20 through 11.11 (11i) allow local users to cause a denial of service and possibly execute arbitrary code.
Max CVSS
4.6
EPSS Score
0.08%
Published
2003-04-22
Updated
2008-09-05

CVE-2003-0027

Public exploit
Directory traversal vulnerability in Sun Kodak Color Management System (KCMS) library service daemon (kcms_server) allows remote attackers to read arbitrary files via the KCS_OPEN_PROFILE procedure.
Max CVSS
5.0
EPSS Score
52.35%
Published
2003-02-07
Updated
2018-10-30

CVE-2003-0050

Public exploit
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to execute arbitrary code via shell metacharacters.
Max CVSS
7.5
EPSS Score
65.93%
Published
2003-03-07
Updated
2016-10-18

CVE-2003-0109

Public exploit
Buffer overflow in ntdll.dll on Microsoft Windows NT 4.0, Windows NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows remote attackers to execute arbitrary code, as demonstrated via a WebDAV request to IIS 5.0.
Max CVSS
7.5
EPSS Score
97.42%
Published
2003-03-31
Updated
2019-04-30

CVE-2003-0190

Public exploit
OpenSSH-portable (OpenSSH) 3.6.1p1 and earlier with PAM support enabled immediately sends an error message when a user does not exist, which allows remote attackers to determine valid usernames via a timing attack.
Max CVSS
5.0
EPSS Score
6.45%
Published
2003-05-12
Updated
2024-02-15

CVE-2003-0201

Public exploit
Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG before 0.3.2, allows remote attackers to execute arbitrary code.
Max CVSS
10.0
EPSS Score
97.04%
Published
2003-05-05
Updated
2018-10-30

CVE-2003-0213

Public exploit
ctrlpacket.c in PoPToP PPTP server before 1.1.4-b3 allows remote attackers to cause a denial of service via a length field of 0 or 1, which causes a negative value to be fed into a read operation, leading to a buffer overflow.
Max CVSS
7.5
EPSS Score
34.12%
Published
2003-05-12
Updated
2016-10-18

CVE-2003-0220

Public exploit
Buffer overflow in the administrator authentication process for Kerio Personal Firewall (KPF) 2.1.4 and earlier allows remote attackers to execute arbitrary code via a handshake packet.
Max CVSS
7.5
EPSS Score
52.61%
Published
2003-05-12
Updated
2016-10-18

CVE-2003-0264

Public exploit
Multiple buffer overflows in SLMail 5.1.0.4420 allows remote attackers to execute arbitrary code via (1) a long EHLO argument to slmail.exe, (2) a long XTRN argument to slmail.exe, (3) a long string to POPPASSWD, or (4) a long password to the POP3 server.
Max CVSS
7.5
EPSS Score
24.22%
Published
2003-05-27
Updated
2021-02-24

CVE-2003-0270

Public exploit
The administration capability for Apple AirPort 802.11 wireless access point devices uses weak encryption (XOR with a fixed key) for protecting authentication credentials, which could allow remote attackers to obtain administrative access via sniffing when the capability is available via Ethernet or non-WEP connections.
Max CVSS
7.6
EPSS Score
2.85%
Published
2003-06-16
Updated
2017-07-11

CVE-2003-0344

Public exploit
Buffer overflow in Microsoft Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to execute arbitrary code via / (slash) characters in the Type property of an Object tag in a web page.
Max CVSS
7.5
EPSS Score
97.07%
Published
2003-06-16
Updated
2021-07-23

CVE-2003-0349

Public exploit
Buffer overflow in the streaming media component for logging multicast requests in the ISAPI for the logging capability of Microsoft Windows Media Services (nsiislog.dll), as installed in IIS 5.0, allows remote attackers to execute arbitrary code via a large POST request to nsiislog.dll.
Max CVSS
7.5
EPSS Score
96.47%
Published
2003-07-24
Updated
2018-10-12

CVE-2003-0352

Public exploit
Buffer overflow in a certain DCOM interface for RPC in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a malformed message, as exploited by the Blaster/MSblast/LovSAN and Nachi/Welchia worms.
Max CVSS
7.5
EPSS Score
97.16%
Published
2003-08-18
Updated
2019-04-30

CVE-2003-0471

Public exploit
Buffer overflow in WebAdmin.exe for WebAdmin allows remote attackers to execute arbitrary code via an HTTP request to WebAdmin.dll with a long USER argument.
Max CVSS
7.5
EPSS Score
36.89%
Published
2003-08-07
Updated
2016-10-18

CVE-2003-0558

Public exploit
Buffer overflow in LeapFTP 2.7.3.600 allows remote FTP servers to execute arbitrary code via a long IP address response to a PASV request.
Max CVSS
7.5
EPSS Score
1.28%
Published
2003-08-18
Updated
2016-10-18

CVE-2003-0694

Public exploit
The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.
Max CVSS
10.0
EPSS Score
5.70%
Published
2003-10-06
Updated
2018-10-30

CVE-2003-0714

Public exploit
The Internet Mail Service in Exchange Server 5.5 and Exchange 2000 allows remote attackers to cause a denial of service (memory exhaustion) by directly connecting to the SMTP service and sending a certain extended verb request, possibly triggering a buffer overflow in Exchange 2000.
Max CVSS
7.5
EPSS Score
9.16%
Published
2003-11-17
Updated
2020-04-09

CVE-2003-0722

Public exploit
The default installation of sadmind on Solaris uses weak authentication (AUTH_SYS), which allows local and remote attackers to spoof Solstice AdminSuite clients and gain root privileges via a certain sequence of RPC packets.
Max CVSS
10.0
EPSS Score
97.03%
Published
2003-09-22
Updated
2017-10-11

CVE-2003-0727

Public exploit
Multiple buffer overflows in the XML Database (XDB) functionality for Oracle 9i Database Release 2 allow local users to cause a denial of service or hijack user sessions.
Max CVSS
2.1
EPSS Score
93.21%
Published
2003-10-20
Updated
2017-09-28

CVE-2003-0812

Public exploit
Stack-based buffer overflow in a logging function for Windows Workstation Service (WKSSVC.DLL) allows remote attackers to execute arbitrary code via RPC calls that cause long entries to be written to a debug log file ("NetSetup.LOG"), as demonstrated using the NetAddAlternateComputerName API.
Max CVSS
7.5
EPSS Score
96.96%
Published
2003-12-15
Updated
2019-04-30

CVE-2003-0822

Public exploit
Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request.
Max CVSS
7.5
EPSS Score
97.04%
Published
2003-12-15
Updated
2019-04-30

CVE-2003-1141

Public exploit
Buffer overflow in NIPrint 4.10 allows remote attackers to execute arbitrary code via a long string to TCP port 515.
Max CVSS
7.5
EPSS Score
84.05%
Published
2003-11-04
Updated
2017-07-11

CVE-2003-1192

Public exploit
Stack-based buffer overflow in IA WebMail Server 3.1.0 allows remote attackers to execute arbitrary code via a long GET request.
Max CVSS
10.0
EPSS Score
96.55%
Published
2003-11-03
Updated
2017-07-11

CVE-2003-1200

Public exploit
Stack-based buffer overflow in FORM2RAW.exe in Alt-N MDaemon 6.5.2 through 6.8.5 allows remote attackers to execute arbitrary code via a long From parameter to Form2Raw.cgi.
Max CVSS
7.5
EPSS Score
96.71%
Published
2003-12-29
Updated
2017-07-11

CVE-2003-1336

Public exploit
Buffer overflow in mIRC before 6.11 allows remote attackers to execute arbitrary code via a long irc:// URL.
Max CVSS
9.3
EPSS Score
80.53%
Published
2003-12-31
Updated
2017-07-29
25 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!