|
354031
|
- |
|
phpwebsite
|
phpwebsite
|
The calendar module in phpWebSite 0.9.x and earlier allows remote attackers to obtain the full pathname of phpWebSite via an invalid year, which generates an error from localtime() in TimeZone.php of…
|
NVD-CWE-Other
|
CVE-2003-0737
|
2016-10-18 11:37 |
2003-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354032
|
- |
|
phpwebsite
|
phpwebsite
|
The calendar module in phpWebSite 0.9.x and earlier allows remote attackers to cause a denial of service (crash) via a long year parameter.
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2003-0738
|
2016-10-18 11:37 |
2003-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354033
|
- |
|
vmware
|
workstation
|
VMware Workstation 4.0.1 for Linux, build 5289 and earlier, allows local users to delete arbitrary files via a symlink attack.
|
NVD-CWE-Other
|
CVE-2003-0739
|
2016-10-18 11:37 |
2003-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354034
|
- |
|
stunnel
|
stunnel
|
Stunnel 4.00, and 3.24 and earlier, leaks a privileged file descriptor returned by listen(), which allows local users to hijack the Stunnel server.
|
NVD-CWE-Other
|
CVE-2003-0740
|
2016-10-18 11:37 |
2003-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354035
|
- |
|
university_of_cambridge
|
exim
|
Heap-based buffer overflow in smtp_in.c for Exim 3 (exim3) before 3.36 and Exim 4 (exim4) before 4.21 may allow remote attackers to execute arbitrary code via an invalid (1) HELO or (2) EHLO argument…
|
NVD-CWE-Other
|
CVE-2003-0743
|
2016-10-18 11:37 |
2003-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354036
|
- |
|
leafnode
|
leafnode
|
The fetchnews NNTP client in leafnode 1.9.3 to 1.9.41 allows remote attackers to cause a denial of service (process hang and termination) via certain malformed Usenet news articles that cause fetchne…
|
NVD-CWE-Other
|
CVE-2003-0744
|
2016-10-18 11:37 |
2003-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354037
|
- |
|
ibm
|
db2_universal_database
|
Buffer overflow in db2licm in IBM DB2 Universal Data Base 7.2 before Fixpak 10a allows local users to gain root privileges via a long command line argument.
|
NVD-CWE-Other
|
CVE-2003-0759
|
2016-10-18 11:37 |
2003-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354038
|
- |
|
squished_mosquito
|
escapade
|
Cross-site scripting (XSS) vulnerability in Escapade Scripting Engine (ESP) allows remote attackers to inject arbitrary script via the method parameter, as demonstrated using the PAGE parameter.
|
NVD-CWE-Other
|
CVE-2003-0763
|
2016-10-18 11:37 |
2003-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354039
|
- |
|
squished_mosquito
|
escapade
|
Escapade Scripting Engine (ESP) allows remote attackers to obtain sensitive path information via a malformed request, which leaks the information in an error message, as demonstrated using the PAGE p…
|
NVD-CWE-Other
|
CVE-2003-0764
|
2016-10-18 11:37 |
2003-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
354040
|
- |
|
nullsoft
|
winamp
|
The IN_MIDI.DLL plugin 3.01 and earlier, as used in Winamp 2.91, allows remote attackers to execute arbitrary code via a MIDI file with a large "Track data size" value.
|
NVD-CWE-Other
|
CVE-2003-0765
|
2016-10-18 11:37 |
2003-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
