Buffer overflow in httpd.c of fnord 1.6 allows remote attackers to create a denial of service (crash) and possibly execute arbitrary code via a long CGI request passed to the do_cgi function.
Max CVSS
5.0
EPSS Score
7.11%
Published
2003-12-31
Updated
2018-10-19
Off-by-one buffer overflow in spamc of SpamAssassin 2.40 through 2.43, when using BSMTP mode ("-B"), allows remote attackers to execute arbitrary code via email containing headers with leading "." characters.
Max CVSS
7.6
EPSS Score
7.38%
Published
2003-12-31
Updated
2018-10-19
Unrestricted file upload vulnerability in uploader.php in Uploader 1.1 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads/.
Max CVSS
6.8
EPSS Score
1.35%
Published
2003-12-31
Updated
2018-10-19
Buffer overflow in AOL Instant Messenger (AIM) 5.2.3292 allows remote attackers to execute arbitrary code via an aim:getfile URL with a long screen name.
Max CVSS
10.0
EPSS Score
5.22%
Published
2003-12-31
Updated
2017-07-29
PHP remote file inclusion vulnerability in _functions.php in cpCommerce 0.5f allows remote attackers to execute arbitrary code via the prefix parameter.
Max CVSS
6.8
EPSS Score
8.34%
Published
2003-12-31
Updated
2017-07-29
slashem-tty in the FreeBSD Ports Collection is installed with write permissions for the games group, which allows local users with group games privileges to modify slashem-tty and execute arbitrary code as other users, as demonstrated using a separate vulnerability in LTris.
Max CVSS
7.2
EPSS Score
0.04%
Published
2003-12-31
Updated
2008-09-05
Buffer overflow in LTris 1.0.1 of FreeBSD Ports Collection 2003-02-25 and earlier allows local users to execute arbitrary code with gid "games" permission via a long HOME environment variable.
Max CVSS
4.6
EPSS Score
0.04%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in 3D-FTP client 4.0 allows remote FTP servers to cause a denial of service (crash) and possibly execute arbitrary code via a long banner.
Max CVSS
5.0
EPSS Score
0.77%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in IMAP service in MDaemon 6.7.5 and earlier allows remote authenticated users to cause a denial of service (crash) and execute arbitrary code via a CREATE command with a long mailbox name.
Max CVSS
9.0
EPSS Score
1.67%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in rwrite for HP-UX 11.0 could allow local users to execute arbitrary code via a long argument. NOTE: the vendor was unable to reproduce the problem on a system that had been patched for an lp vulnerability (CVE-2002-1473).
Max CVSS
7.2
EPSS Score
0.05%
Published
2003-12-31
Updated
2017-10-11
Multiple buffer overflows in the launch_bcrelay function in pptpctrl.c in PoPToP 1.1.4-b1 through PoPToP 1.1.4-b3 allow local users to execute arbitrary code.
Max CVSS
7.2
EPSS Score
0.04%
Published
2003-12-31
Updated
2017-07-29
Untrusted search path vulnerability in Qualcomm qpopper 4.0 through 4.05 allows local users to execute arbitrary code by modifying the PATH environment variable to reference a malicious smbpasswd program.
Max CVSS
3.6
EPSS Score
0.06%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in Symantec Norton AntiVirus 2002 allows remote attackers to execute arbitrary code via an e-mail attachment with a compressed ZIP file that contains a file with a long filename.
Max CVSS
6.4
EPSS Score
0.82%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in the save_into_file function in save.c for Rogue 5.2-2 allows local users to execute arbitrary code with games group privileges by setting a long HOME environment variable and invoking the save game function with a ~ (tilde).
Max CVSS
4.9
EPSS Score
0.04%
Published
2003-12-31
Updated
2017-07-29
Stack-based buffer overflow in Far Manager 1.70beta1 and earlier allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long pathname.
Max CVSS
4.6
EPSS Score
0.04%
Published
2003-12-31
Updated
2017-07-29
Epic Games Unreal Engine 226f through 436 allows remote attackers to cause a denial of service (CPU consumption or crash) and possibly execute arbitrary code via (1) a packet with a negative size value, which is treated as a large positive number during memory allocation, or (2) a negative size value in a package file.
Max CVSS
10.0
EPSS Score
4.66%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in Proxomitron Naoko 4.4 allows remote attackers to execute arbitrary code via a long request.
Max CVSS
7.5
EPSS Score
3.72%
Published
2003-12-31
Updated
2017-07-29
Openwebmail in cPanel 5.0, when run using suid Perl, adds the directory in the SCRIPT_FILENAME environment variable to Perl's @INC include array, which allows local users to execute arbitrary code by modifying SCRIPT_FILENAME to reference a directory containing a malicious openwebmail-shared.pl executable.
Max CVSS
3.3
EPSS Score
0.04%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in cmd.exe in Windows NT 4.0 may allow local users to execute arbitrary code via a long pathname argument to the cd command.
Max CVSS
7.2
EPSS Score
0.05%
Published
2003-12-31
Updated
2017-07-29
Heap-based buffer overflow in Opera 6.05 through 7.10 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a filename with a long extension.
Max CVSS
6.8
EPSS Score
0.56%
Published
2003-12-31
Updated
2022-03-01
Buffer overflow in KaZaA Media Desktop 2.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a response to the ad server.
Max CVSS
9.0
EPSS Score
2.11%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in Gupta SQLBase 8.1.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long EXECUTE command.
Max CVSS
8.5
EPSS Score
2.84%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in Opera 6.05 and 6.06, and possibly other versions, allows remote attackers to execute arbitrary code via a URL with a long username.
Max CVSS
7.5
EPSS Score
4.01%
Published
2003-12-31
Updated
2022-03-01
Buffer overflow in ISMail 1.4.3 and earlier allow remote attackers to execute arbitrary code via long domain names in (1) MAIL FROM or (2) RCPT TO fields.
Max CVSS
7.5
EPSS Score
5.22%
Published
2003-12-31
Updated
2017-07-29
Buffer overflow in the reverse DNS lookup of Smart IRC Daemon (SIRCD) 0.4.0 and 0.4.4 allows remote attackers to execute arbitrary code via a client with a long hostname.
Max CVSS
8.3
EPSS Score
3.14%
Published
2003-12-31
Updated
2017-07-29
374 vulnerabilities found
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!