Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-12-31 | CVE-2003-1434 | Improper Authentication vulnerability in Pete Werner Login Ldap 3.1/3.2 login_ldap 3.1 and 3.2 allows remote attackers to initiate unauthenticated bind requests if (1) bind_anon_dn is on, which allows a bind with no password provided, (2) bind_anon_cred is on, which allows a bind with no DN, or (3) bind_anon is on, which allows a bind with no DN or password. | 6.8 |
| 2003-12-31 | CVE-2003-1433 | Improper Authentication vulnerability in Epic Games Unreal Engine 226F/433/436 Epic Games Unreal Engine 226f through 436 does not validate the challenge key, which allows remote attackers to exhaust the player limit by joining the game multiple times. | 4.3 |
| 2003-12-31 | CVE-2003-1432 | Code Injection vulnerability in Epic Games Unreal Engine and Unreal Tournament 2003 Epic Games Unreal Engine 226f through 436 allows remote attackers to cause a denial of service (CPU consumption or crash) and possibly execute arbitrary code via (1) a packet with a negative size value, which is treated as a large positive number during memory allocation, or (2) a negative size value in a package file. | 10.0 |
| 2003-12-31 | CVE-2003-1431 | Buffer Errors vulnerability in Epic Games Unreal Engine 226F/433/436 Buffer overflow in Epic Games Unreal Engine 226f through 436 allows remote attackers to cause a denial of service (crash) via a long host string in the Unreal URL. | 7.1 |
| 2003-12-31 | CVE-2003-1430 | Path Traversal vulnerability in Epic Games Unreal Engine 226F/433/436 Directory traversal vulnerability in Unreal Tournament Server 436 and earlier allows remote attackers to access known files via a ".." (dot dot) in an unreal:// URL. | 5.0 |
| 2003-12-31 | CVE-2003-1429 | Buffer Errors vulnerability in Proxomitron Naoko 4.4 Buffer overflow in Proxomitron Naoko 4.4 allows remote attackers to execute arbitrary code via a long request. | 7.5 |
| 2003-12-31 | CVE-2003-1428 | Unspecified vulnerability in Bharat Mediratta Gallery 1.3.3 Gallery 1.3.3 creates directories with insecure permissions, which allows local users to read, modify, or delete photos. | 4.8 |
| 2003-12-31 | CVE-2003-1427 | Path Traversal vulnerability in Netgear Fm114P 1.4Betarelease17 Directory traversal vulnerability in the web configuration interface in Netgear FM114P 1.4 allows remote attackers to read arbitrary files, such as the netgear.cfg configuration file, via a hex-encoded (%2e%2e%2f) ../ (dot dot slash) in the port parameter. | 6.4 |
| 2003-12-31 | CVE-2003-1426 | Configuration vulnerability in Cpanel 5.0 Openwebmail in cPanel 5.0, when run using suid Perl, adds the directory in the SCRIPT_FILENAME environment variable to Perl's @INC include array, which allows local users to execute arbitrary code by modifying SCRIPT_FILENAME to reference a directory containing a malicious openwebmail-shared.pl executable. | 3.3 |
| 2003-12-31 | CVE-2003-1425 | Improper Input Validation vulnerability in Cpanel 5.0 guestbook.cgi in cPanel 5.0 allows remote attackers to execute arbitrary commands via the template parameter. | 10.0 |