|
351811
|
- |
|
vignette
|
content_suite
storyserver
vignette
|
Vignette StoryServer 4 and 5, and Vignette V/5 and V/6, with the SSI EXEC feature enabled, allows remote attackers to execute arbitrary code via a text variable to a Vignette Application that is late…
|
NVD-CWE-Other
|
CVE-2003-0398
|
2016-10-18 11:33 |
2003-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351812
|
- |
|
vignette
|
content_suite
storyserver
vignette
|
Vignette StoryServer 4 and 5, Vignette V/5, and possibly other versions allows remote attackers to perform unauthorized SELECT queries by setting the vgn_creds cookie to an arbitrary value and direct…
|
NVD-CWE-Other
|
CVE-2003-0399
|
2016-10-18 11:33 |
2003-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351813
|
- |
|
vignette
|
content_suite
storyserver
vignette
|
Vignette StoryServer and Vignette V/5 does not properly calculate the size of text variables, which causes Vignette to return unauthorized portions of memory, as demonstrated using the "-->" string i…
|
NVD-CWE-Other
|
CVE-2003-0400
|
2016-10-18 11:33 |
2003-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351814
|
- |
|
vignette
|
content_suite
storyserver
vignette
|
Vignette StoryServer and Vignette V/5 allows remote attackers to obtain sensitive information via a request for the /vgn/style template.
|
NVD-CWE-Other
|
CVE-2003-0401
|
2016-10-18 11:33 |
2003-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351815
|
- |
|
vignette
|
content_suite
storyserver
vignette
|
The default login template (/vgn/login) in Vignette StoryServer 5 and Vignette V/5 generates different responses whether a user exists or not, which allows remote attackers to identify valid username…
|
NVD-CWE-Other
|
CVE-2003-0402
|
2016-10-18 11:33 |
2003-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351816
|
- |
|
vignette
|
content_suite
storyserver
vignette
|
Vignette StoryServer 5 and Vignette V/5 allows remote attackers to read and modify license information, and cause a denial of service (service halt) by directly accessing the /vgn/license template.
|
NVD-CWE-Other
|
CVE-2003-0403
|
2016-10-18 11:33 |
2003-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351817
|
- |
|
vignette
|
content_suite
storyserver
vignette
|
Multiple Cross Site Scripting (XSS) vulnerabilities in Vignette StoryServer 4 and 5, and Vignette V/5 and V/6, allow remote attackers to insert arbitrary HTML and script via text variables, as demons…
|
NVD-CWE-Other
|
CVE-2003-0404
|
2016-10-18 11:33 |
2003-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351818
|
- |
|
vignette
|
content_suite
storyserver
vignette
|
Vignette StoryServer 5 and Vignette V/6 allows remote attackers to execute arbitrary TCL code via (1) an HTTP query or cookie which is processed in the NEEDS command, or (2) an HTTP Referrer that is …
|
NVD-CWE-Other
|
CVE-2003-0405
|
2016-10-18 11:33 |
2003-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351819
|
- |
|
palmvnc
|
palmvnc
|
PalmVNC 1.40 and earlier stores passwords in plaintext in the PalmVNCDB, which is backed up to PCs that the Palm is synchronized with, which could allow attackers to gain privileges.
|
NVD-CWE-Other
|
CVE-2003-0406
|
2016-10-18 11:33 |
2003-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
351820
|
- |
|
gnome
|
batalla_naval
|
Buffer overflow in gbnserver for Gnome Batalla Naval 1.0.4 allows remote attackers to execute arbitrary code via a long connection string.
|
NVD-CWE-Other
|
CVE-2003-0407
|
2016-10-18 11:33 |
2003-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
