|
345741
|
- |
|
kde
redhat
|
konqueror
konqueror_embedded
analog_real-time_synthesizer
kdebase
kdelibs
kdelibs_devel
kdelibs_sound
kdelibs_sound_devel
|
KDE Konqueror for KDE 3.1.2 and earlier does not remove authentication credentials from URLs of the "user:password@host" form in the HTTP-Referer header, which could allow remote web sites to steal t…
|
NVD-CWE-Other
|
CVE-2003-0459
|
2017-10-11 10:29 |
2003-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345742
|
- |
|
redhat
|
linux
|
/proc/tty/driver/serial in Linux 2.4.x reveals the exact number of characters used in serial links, which could allow local users to obtain potentially sensitive information such as the length of pas…
|
NVD-CWE-Other
|
CVE-2003-0461
|
2017-10-11 10:29 |
2003-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345743
|
- |
|
mandrakesoft
linux
|
mandrake_multi_network_firewall
linux_kernel
mandrake_linux
mandrake_linux_corporate_server
|
A race condition in the way env_start and env_end pointers are initialized in the execve system call and used in fs/proc/base.c on Linux 2.4 allows local users to cause a denial of service (crash).
|
NVD-CWE-Other
|
CVE-2003-0462
|
2017-10-11 10:29 |
2003-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345744
|
- |
|
linux
|
linux_kernel
|
The kernel strncpy function in Linux 2.4 and 2.5 does not %NUL pad the buffer on architectures other than x86, as opposed to the expected behavior of strncpy as implemented in libc, which could lead …
|
NVD-CWE-Other
|
CVE-2003-0465
|
2017-10-11 10:29 |
2003-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345745
|
- |
|
wietse_venema
conectiva
|
postfix
linux
|
Postfix 1.1.11 and earlier allows remote attackers to use Postfix to conduct "bounce scans" or DDos attacks of other hosts via an email address to the local host containing the target IP address and …
|
NVD-CWE-Other
|
CVE-2003-0468
|
2017-10-11 10:29 |
2003-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345746
|
- |
|
cisco
|
ios
|
The web server for Cisco Aironet AP1x00 Series Wireless devices running certain versions of IOS 12.2 allow remote attackers to cause a denial of service (reload) via a malformed URL.
|
NVD-CWE-Other
|
CVE-2003-0511
|
2017-10-11 10:29 |
2003-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345747
|
- |
|
cisco
|
ios
|
Cisco IOS 12.2 and earlier generates a "% Login invalid" message instead of prompting for a password when an invalid username is provided, which allows remote attackers to identify valid usernames on…
|
CWE-310
Cryptographic Issues
|
CVE-2003-0512
|
2017-10-11 10:29 |
2003-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345748
|
- |
|
ddskk
redhat
skk
|
ddskk
daredevil_skk
ddskk-xemacs
skk
|
skk (Simple Kana to Kanji conversion program) 12.1 and earlier, and the ddskk package which is based on skk, creates temporary files insecurely, which allows local users to overwrite arbitrary files.
|
NVD-CWE-Other
|
CVE-2003-0539
|
2017-10-11 10:29 |
2003-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345749
|
- |
|
wietse_venema
conectiva
|
postfix
linux
|
The address parser code in Postfix 1.1.12 and earlier allows remote attackers to cause a denial of service (lock) via (1) a malformed envelope address to a local host that would generate a bounce and…
|
NVD-CWE-Other
|
CVE-2003-0540
|
2017-10-11 10:29 |
2003-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
345750
|
- |
|
gnome
|
gtkhtml
|
gtkhtml before 1.1.10, as used in Evolution, allows remote attackers to cause a denial of service (crash) via a malformed message that causes a null pointer dereference.
|
NVD-CWE-Other
|
CVE-2003-0541
|
2017-10-11 10:29 |
2003-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
