|
347651
|
- |
|
foxweb
|
foxweb
|
Buffer overflow in (1) foxweb.dll and (2) foxweb.exe of Foxweb 2.5 allows remote attackers to execute arbitrary code via a long URL (PATH_INFO value).
|
NVD-CWE-Other
|
CVE-2003-0762
|
2008-09-11 04:20 |
2003-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347652
|
- |
|
sane
|
sane
sane-backend
|
saned in sane-backends 1.0.7 and earlier does not quickly handle connection drops, which allows remote attackers to cause a denial of service (segmentation fault) when invalid memory is accessed.
|
NVD-CWE-Other
|
CVE-2003-0774
|
2008-09-11 04:20 |
2003-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347653
|
- |
|
sane
|
sane
sane-backend
|
saned in sane-backends 1.0.7 and earlier calls malloc with an arbitrary size value if a connection is dropped before the size value has been sent, which allows remote attackers to cause a denial of s…
|
NVD-CWE-Other
|
CVE-2003-0775
|
2008-09-11 04:20 |
2003-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347654
|
- |
|
sane
|
sane
sane-backend
|
saned in sane-backends 1.0.7 and earlier does not properly "check the validity of the RPC numbers it gets before getting the parameters," with unknown consequences.
|
NVD-CWE-Other
|
CVE-2003-0776
|
2008-09-11 04:20 |
2003-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347655
|
- |
|
sane
|
sane
sane-backend
|
saned in sane-backends 1.0.7 and earlier, when debug messages are enabled, does not properly handle dropped connections, which can prevent strings from being null terminated and cause a denial of ser…
|
NVD-CWE-Other
|
CVE-2003-0777
|
2008-09-11 04:20 |
2003-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347656
|
- |
|
sane
|
sane
sane-backend
|
saned in sane-backends 1.0.7 and earlier, and possibly later versions, does not properly allocate memory in certain cases, which could allow attackers to cause a denial of service (memory consumption…
|
NVD-CWE-Other
|
CVE-2003-0778
|
2008-09-11 04:20 |
2003-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347657
|
- |
|
digium
|
asterisk
|
SQL injection vulnerability in the Call Detail Record (CDR) logging functionality for Asterisk allows remote attackers to execute arbitrary SQL via a CallerID string.
|
NVD-CWE-Other
|
CVE-2003-0779
|
2008-09-11 04:20 |
2003-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347658
|
- |
|
ibm
|
aix
|
Format string vulnerability in tsm for the bos.rte.security fileset on AIX 5.2 allows remote attackers to gain root privileges via login, and local users to gain privileges via login, su, or passwd, …
|
NVD-CWE-Other
|
CVE-2003-0784
|
2008-09-11 04:20 |
2003-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347659
|
- |
|
brian_bassett
|
ipmasq
|
ipmasq before 3.5.12, in certain configurations, may forward packets to the external interface even if the packets are not associated with an established connection, which could allow remote attacker…
|
NVD-CWE-Other
|
CVE-2003-0785
|
2008-09-11 04:20 |
2003-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347660
|
- |
|
openbsd
|
openssh
|
The SSH1 PAM challenge response authentication in OpenSSH 3.7.1 and 3.7.1p1, when Privilege Separation is disabled, does not check the result of the authentication attempt, which can allow remote att…
|
NVD-CWE-Other
|
CVE-2003-0786
|
2008-09-11 04:20 |
2003-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
