Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-12-31 | CVE-2003-1394 | Credentials Management vulnerability in Coffeecup Software Coffeecup Password Wizard CoffeeCup Software Password Wizard 4.0 stores sensitive information such as usernames and passwords in a .apw file under the web document root with insufficient access control, which allows remote attackers to obtain that information via a direct request for the file. | 5.0 |
| 2003-12-31 | CVE-2003-1393 | Buffer Errors vulnerability in Gupta Technologies Sqlbase 8.1.0 Buffer overflow in Gupta SQLBase 8.1.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long EXECUTE command. | 8.5 |
| 2003-12-31 | CVE-2003-1392 | Cryptographic Issues vulnerability in multiple products CryptoBuddy 1.0 and 1.2 does not use the user-supplied passphrase to encrypt data, which could allow local users to use their own passphrase to decrypt the data. | 6.6 |
| 2003-12-31 | CVE-2003-1391 | Cryptographic Issues vulnerability in Research Triangle Software Cryptobuddy 1.0/1.2 RTS CryptoBuddy 1.0 and 1.2 uses a weak encryption algorithm for the passphrase and generates predictable keys, which makes it easier for attackers to guess the passphrase. | 7.5 |
| 2003-12-31 | CVE-2003-1390 | Cryptographic Issues vulnerability in Research Triangle Software Cryptobuddy 1.0/1.2 RTS CryptoBuddy 1.2 and earlier stores bytes 53 through 55 of a 55-byte passphrase in plaintext, which makes it easier for local users to guess the passphrase. | 7.5 |
| 2003-12-31 | CVE-2003-1389 | Cryptographic Issues vulnerability in Research Triangle Software Cryptobuddy 1.0/1.2 RTS CryptoBuddy 1.2 and earlier truncates long passphrases without warning the user, which may make it easier to conduct certain brute force guessing attacks. | 7.5 |
| 2003-12-31 | CVE-2003-1388 | Classic Buffer Overflow vulnerability in Opera Browser 7.02 Buffer overflow in Opera 7.02 Build 2668 allows remote attackers to crash Opera via a long HTTP request ending in a .ZIP extension. | 9.3 |
| 2003-12-31 | CVE-2003-1387 | Classic Buffer Overflow vulnerability in Opera Browser 6.05/6.06/7.0 Buffer overflow in Opera 6.05 and 6.06, and possibly other versions, allows remote attackers to execute arbitrary code via a URL with a long username. | 7.5 |
| 2003-12-31 | CVE-2003-1386 | Permissions, Privileges, and Access Controls vulnerability in Axis 2400 Video Server and 2401 Video Server AXIS 2400 Video Server 2.00 through 2.33 allows remote attackers to obtain sensitive information via an HTTP request to /support/messages, which displays the server's /var/log/messages file. | 6.4 |
| 2003-12-31 | CVE-2003-1385 | Code Injection vulnerability in Invision Power Services Invision Power Board 1.1.1 ipchat.php in Invision Power Board 1.1.1 allows remote attackers to execute arbitrary PHP code, if register_globals is enabled, by modifying the root_path parameter to reference a URL on a remote web server that contains the code. | 6.8 |