|
347801
|
- |
|
freescripts
|
visitorbook
|
FreeScripts VisitorBook LE (visitorbook.pl) does not properly escape line breaks in input, which allows remote attackers to (1) use VisitorBook as an open mail relay, when $mailuser is 1, via extra h…
|
NVD-CWE-Other
|
CVE-2003-0979
|
2016-10-18 11:38 |
2004-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347802
|
- |
|
freescripts
|
visitorbook
|
Cross-site scripting (XSS) vulnerability in FreeScripts VisitorBook LE (visitorbook.pl) allows remote attackers to inject arbitrary HTML or web script via (1) the "do" parameter, (2) via the "user" p…
|
NVD-CWE-Other
|
CVE-2003-0980
|
2016-10-18 11:38 |
2004-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347803
|
- |
|
symantec
|
norton_antivirus
norton_internet_security
norton_system_works
windows_liveupdate
|
The GUI functionality for an interactive session in Symantec LiveUpdate 1.70.x through 1.90.x, as used in Norton Internet Security 2001 through 2004, SystemWorks 2001 through 2004, and AntiVirus and …
|
NVD-CWE-Other
|
CVE-2003-0994
|
2016-10-18 11:38 |
2004-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347804
|
- |
|
phpwebsite
|
phpwebsite
|
Multiple cross-site scripting (XSS) vulnerabilities in phpWebSite 0.9.x and earlier allow remote attackers to execute arbitrary web script via (1) the day parameter in the calendar module, (2) the fa…
|
NVD-CWE-Other
|
CVE-2003-0736
|
2016-10-18 11:37 |
2003-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347805
|
- |
|
phpwebsite
|
phpwebsite
|
The calendar module in phpWebSite 0.9.x and earlier allows remote attackers to obtain the full pathname of phpWebSite via an invalid year, which generates an error from localtime() in TimeZone.php of…
|
NVD-CWE-Other
|
CVE-2003-0737
|
2016-10-18 11:37 |
2003-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347806
|
- |
|
phpwebsite
|
phpwebsite
|
The calendar module in phpWebSite 0.9.x and earlier allows remote attackers to cause a denial of service (crash) via a long year parameter.
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2003-0738
|
2016-10-18 11:37 |
2003-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347807
|
- |
|
vmware
|
workstation
|
VMware Workstation 4.0.1 for Linux, build 5289 and earlier, allows local users to delete arbitrary files via a symlink attack.
|
NVD-CWE-Other
|
CVE-2003-0739
|
2016-10-18 11:37 |
2003-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347808
|
- |
|
stunnel
|
stunnel
|
Stunnel 4.00, and 3.24 and earlier, leaks a privileged file descriptor returned by listen(), which allows local users to hijack the Stunnel server.
|
NVD-CWE-Other
|
CVE-2003-0740
|
2016-10-18 11:37 |
2003-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347809
|
- |
|
university_of_cambridge
|
exim
|
Heap-based buffer overflow in smtp_in.c for Exim 3 (exim3) before 3.36 and Exim 4 (exim4) before 4.21 may allow remote attackers to execute arbitrary code via an invalid (1) HELO or (2) EHLO argument…
|
NVD-CWE-Other
|
CVE-2003-0743
|
2016-10-18 11:37 |
2003-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347810
|
- |
|
leafnode
|
leafnode
|
The fetchnews NNTP client in leafnode 1.9.3 to 1.9.41 allows remote attackers to cause a denial of service (process hang and termination) via certain malformed Usenet news articles that cause fetchne…
|
NVD-CWE-Other
|
CVE-2003-0744
|
2016-10-18 11:37 |
2003-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
