Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2003-12-31 | CVE-2003-1495 | Permissions, Privileges, and Access Controls vulnerability in HP products Unspecified vulnerability in the non-SSL web agent in various HP Management Agent products allows local users or remote attackers to gain privileges or cause a denial of service via unknown attack vectors. | 10.0 |
2003-12-31 | CVE-2003-1494 | Resource Management Errors vulnerability in HP Openview Network Node Manager 6.2/6.4 Unspecified vulnerability in HP OpenView Network Node Manager (NNM) 6.2 and 6.4 allows remote attackers to cause a denial of service (CPU consumption) via a crafted TCP packet. | 5.0 |
2003-12-31 | CVE-2003-1493 | Denial Of Service vulnerability in HP OpenView Network Node Manager Memory leak in HP OpenView Network Node Manager (NNM) 6.2 and 6.4 allows remote attackers to cause a denial of service (memory exhaustion) via crafted TCP packets. | 5.0 |
2003-12-31 | CVE-2003-1492 | Link Following vulnerability in multiple products Netscape Navigator 7.0.2 and Mozilla allows remote attackers to access cookie information in a different domain via an HTTP request for a domain with an extra . | 5.0 |
2003-12-31 | CVE-2003-1491 | Code Injection vulnerability in Kerio Personal Firewall 2.1.4 Kerio Personal Firewall (KPF) 2.1.4 has a default rule to accept incoming packets from DNS (UDP port 53), which allows remote attackers to bypass the firewall filters via packets with a source port of 53. | 7.5 |
2003-12-31 | CVE-2003-1490 | Improper Input Validation vulnerability in Sonicwall Pro100, Pro200 and Pro300 SonicWall Pro running firmware 6.4.0.1 allows remote attackers to cause a denial of service (device reset) via a long HTTP POST to the internal interface, possibly due to a buffer overflow. | 7.8 |
2003-12-31 | CVE-2003-1489 | Improper Authentication vulnerability in Truegalerie 1.0 upload.php in Truegalerie 1.0 allows remote attackers to read arbitrary files by specifying the target filename in the file cookie in form.php, then downloading the file from the image gallery. | 5.0 |
2003-12-31 | CVE-2003-1488 | Improper Input Validation vulnerability in Truelogik Truegalerie 1.0 The (1) verif_admin.php and (2) check_admin.php scripts in Truegalerie 1.0 allow remote attackers to gain administrator access via a request to admin.php without the connect parameter and with the loggedin parameter set to any value, such as 1. | 6.4 |
2003-12-31 | CVE-2003-1487 | Improper Input Validation vulnerability in Phorum 3.4/3.4.1/3.4.2 Multiple "command injection" vulnerabilities in Phorum 3.4 through 3.4.2 allow remote attackers to execute arbitrary commands and modify the Phorum configuration files via the (1) UserAdmin program, (2) Edit user profile, or (3) stats program. | 10.0 |
2003-12-31 | CVE-2003-1486 | Information Exposure vulnerability in Phorum 3.4/3.4.1/3.4.2 Phorum 3.4 through 3.4.2 allows remote attackers to obtain the full path of the web server via an incorrect HTTP request to (1) smileys.php, (2) quick_listrss.php, (3) purge.php, (4) news.php, (5) memberlist.php, (6) forum_listrss.php, (7) forum_list_rdf.php, (8) forum_list.php, or (9) move.php, which leaks the information in an error message. | 5.0 |