|
349131
|
- |
|
linux
|
linux_kernel
|
Integer overflow in the do_brk function for the brk system call in Linux kernel 2.4.22 and earlier allows local users to gain root privileges.
|
NVD-CWE-Other
|
CVE-2003-0961
|
2016-10-18 11:38 |
2003-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349132
|
- |
|
-
|
-
|
Stack-based buffer overflow in SMB_Logon_Server of the rlm_smb experimental module for FreeRADIUS 0.9.3 and earlier allows remote attackers to execute arbitrary code via a long User-Password attribut…
|
NVD-CWE-Other
|
CVE-2003-0968
|
2016-10-18 11:38 |
2003-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349133
|
- |
|
gnu
|
screen
|
Integer signedness error in ansi.c for GNU screen 4.0.1 and earlier, and 3.9.15 and earlier, allows local users to execute arbitrary code via a large number of ";" (semicolon) characters in escape se…
|
NVD-CWE-Other
|
CVE-2003-0972
|
2016-10-18 11:38 |
2003-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349134
|
- |
|
applied_watch_technologies
|
applied_watch_command_center
|
Applied Watch Command Center allows remote attackers to conduct unauthorized activities without authentication, such as (1) add new users to a console, as demonstrated using appliedsnatch.c, or (2) a…
|
NVD-CWE-Other
|
CVE-2003-0974
|
2016-10-18 11:38 |
2003-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349135
|
- |
|
freescripts
|
visitorbook
|
FreeScripts VisitorBook LE (visitorbook.pl) does not properly escape line breaks in input, which allows remote attackers to (1) use VisitorBook as an open mail relay, when $mailuser is 1, via extra h…
|
NVD-CWE-Other
|
CVE-2003-0979
|
2016-10-18 11:38 |
2004-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349136
|
- |
|
freescripts
|
visitorbook
|
Cross-site scripting (XSS) vulnerability in FreeScripts VisitorBook LE (visitorbook.pl) allows remote attackers to inject arbitrary HTML or web script via (1) the "do" parameter, (2) via the "user" p…
|
NVD-CWE-Other
|
CVE-2003-0980
|
2016-10-18 11:38 |
2004-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349137
|
- |
|
symantec
|
norton_antivirus
norton_internet_security
norton_system_works
windows_liveupdate
|
The GUI functionality for an interactive session in Symantec LiveUpdate 1.70.x through 1.90.x, as used in Norton Internet Security 2001 through 2004, SystemWorks 2001 through 2004, and AntiVirus and …
|
NVD-CWE-Other
|
CVE-2003-0994
|
2016-10-18 11:38 |
2004-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349138
|
- |
|
phpwebsite
|
phpwebsite
|
Multiple cross-site scripting (XSS) vulnerabilities in phpWebSite 0.9.x and earlier allow remote attackers to execute arbitrary web script via (1) the day parameter in the calendar module, (2) the fa…
|
NVD-CWE-Other
|
CVE-2003-0736
|
2016-10-18 11:37 |
2003-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349139
|
- |
|
phpwebsite
|
phpwebsite
|
The calendar module in phpWebSite 0.9.x and earlier allows remote attackers to obtain the full pathname of phpWebSite via an invalid year, which generates an error from localtime() in TimeZone.php of…
|
NVD-CWE-Other
|
CVE-2003-0737
|
2016-10-18 11:37 |
2003-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349140
|
- |
|
phpwebsite
|
phpwebsite
|
The calendar module in phpWebSite 0.9.x and earlier allows remote attackers to cause a denial of service (crash) via a long year parameter.
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2003-0738
|
2016-10-18 11:37 |
2003-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
