Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-12-31 | CVE-2003-1174 | Unspecified vulnerability in Nullsoft Shoutcast Server 1.9.2 Buffer overflow in NullSoft Shoutcast Server 1.9.2 allows local users to cause a denial of service via (1) icy-name followed by a long server name or (2) icy-url followed by a long URL. | 2.1 |
| 2003-12-31 | CVE-2003-1173 | Centrinity FirstClass 7.1 allows remote attackers to access sensitive information by appending search to the end of the URL and checking all of the search option checkboxes and leaving the text field blank, which will return all files in the searched directory. | 5.0 |
| 2003-12-31 | CVE-2003-1172 | Directory Traversal vulnerability in Apache Cocoon 2.1/2.1.2/2.2 Directory traversal vulnerability in the view-source sample file in Apache Software Foundation Cocoon 2.1 and 2.2 allows remote attackers to access arbitrary files via a .. | 5.0 |
| 2003-12-31 | CVE-2003-1171 | Unspecified vulnerability in MOD Security MOD Security 1.7/1.7.1 Heap-based buffer overflow in the sec_filter_out function in mod_security 1.7RC1 through 1.7.1 in Apache 2 allows remote attackers to execute arbitrary code via a server side script that sends a large amount of data. | 7.5 |
| 2003-12-31 | CVE-2003-1170 | Local Arguments Format String vulnerability in Gernot Stocker Kpopup 0.9.1/0.9.5Pre2 Format string vulnerability in main.cpp in kpopup 0.9.1 and 0.9.5pre2 allows local users to cause a denial of service (segmentation fault) and possibly execute arbitrary code via format string specifiers in command line arguments. | 7.2 |
| 2003-12-31 | CVE-2003-1169 | Unspecified vulnerability in Datev Nutzungskontrolle 2.1/2.2 DATEV Nutzungskontrolle 2.1 and 2.2 has insecure write permissions for critical registry keys, which allows local users to bypass access restrictions by importing NukoInfo values in certain DATEV keys, which disables Nutzungskontrolle. | 4.6 |
| 2003-12-31 | CVE-2003-1168 | Path Disclosure vulnerability in HTTP Commander HTTP Commander 4.0 allows remote attackers to obtain sensitive information via an HTTP request that contains a . | 5.0 |
| 2003-12-31 | CVE-2003-1167 | Unspecified vulnerability in Gernot Stocker Kpopup 0.9.1/0.9.5Pre2 misc.cpp in KPopup 0.9.1 trusts the PATH variable when executing killall, which allows local users to elevate their privileges by modifying the PATH variable to reference a malicious killall program. | 7.2 |
| 2003-12-31 | CVE-2003-1166 | Directory Traversal vulnerability in Http Commander Http Commander 4.0 Directory traversal vulnerability in (1) Openfile.aspx and (2) Html.aspx in HTTP Commander 4.0 allows remote attackers to view arbitrary files via a .. | 5.0 |
| 2003-12-31 | CVE-2003-1165 | Remote Denial of Service vulnerability in BRS WebWeaver httpd `User-Agent` Buffer overflow in BRS WebWeaver 1.06 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an HTTP request with a long User-Agent header. | 5.0 |