Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-12-31 | CVE-2003-1465 | Path Traversal vulnerability in Phorum 3.4/3.4.1/3.4.2 Directory traversal vulnerability in download.php in Phorum 3.4 through 3.4.2 allows remote attackers to read arbitrary files. | 5.0 |
| 2003-12-31 | CVE-2003-1464 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Siemens M45 and S45 Buffer overflow in Siemens 45 series mobile phones allows remote attackers to cause a denial of service (disconnect and unavailable inbox) via a Short Message Service (SMS) message with a long image name. | 7.8 |
| 2003-12-31 | CVE-2003-1463 | Improper Input Validation vulnerability in Alt-N Webadmin 2.0.0/2.0.1/2.0.2 Absolute path traversal vulnerability in Alt-N Technologies WebAdmin 2.0.0 through 2.0.2 allows remote attackers with administrator privileges to (1) determine the installation path by reading the contents of the Name parameter in a link, and (2) read arbitrary files via an absolute path in the Name parameter. | 3.5 |
| 2003-12-31 | CVE-2003-1462 | Denial of Service vulnerability in Mod_Survey SYSBASE Disk Resource Consumption mod_survey 3.0.0 through 3.0.15-pre6 does not check whether a survey exists before creating a subdirectory for it, which allows remote attackers to cause a denial of service (disk consumption and possible crash). | 5.0 |
| 2003-12-31 | CVE-2003-1461 | Buffer Errors vulnerability in HP Hp-Ux 11.00 Buffer overflow in rwrite for HP-UX 11.0 could allow local users to execute arbitrary code via a long argument. | 7.2 |
| 2003-12-31 | CVE-2003-1460 | Permissions, Privileges, and Access Controls vulnerability in Ralf Hoffmann Worker Filemanager Worker Filemanager 1.0 through 2.7 sets the permissions on the destination directory to world-readable and executable while copying data, which could allow local users to obtain sensitive information. | 3.6 |
| 2003-12-31 | CVE-2003-1459 | Code Injection vulnerability in Ttcms and Ttforum Multiple PHP remote file inclusion vulnerabilities in ttCMS 2.2 and ttForum allow remote attackers to execute arbitrary PHP code via the (1) template parameter in News.php or (2) installdir parameter in install.php. | 6.8 |
| 2003-12-31 | CVE-2003-1458 | SQL Injection vulnerability in Ttcms and Ttforum SQL injection vulnerability in Profile.php in ttCMS 2.2 and ttForum allows remote attackers to execute arbitrary SQL commands via the member name. | 7.5 |
| 2003-12-31 | CVE-2003-1457 | Configuration vulnerability in Auerswald Comsuite CTI Controlcenter 3.1 Auerswald COMsuite CTI ControlCenter 3.1 creates a default "runasositron" user account with an easily guessable password, which allows local users or remote attackers to gain access. | 4.6 |
| 2003-12-31 | CVE-2003-1455 | Buffer Errors vulnerability in Poptop Pptp Server 1.1.4B1/1.1.4B2/1.1.4B3 Multiple buffer overflows in the launch_bcrelay function in pptpctrl.c in PoPToP 1.1.4-b1 through PoPToP 1.1.4-b3 allow local users to execute arbitrary code. | 7.2 |