Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-12-31 | CVE-2003-1104 | Buffer Overflow vulnerability in IBM Tivoli Firewall Toolbox 1.2 Buffer overflow in IBM Tivoli Firewall Toolbox (TFST) 1.2 allows remote attackers to execute arbitrary code via unknown vectors. | 10.0 |
| 2003-12-31 | CVE-2003-1103 | SQL Injection vulnerability in Hummingbird Cyberdocs 3.1/3.5.1 SQL injection vulnerability in loginact.asp for Hummingbird CyberDOCS before 3.9 allows remote attackers to execute arbitrary SQL commands. | 7.5 |
| 2003-12-31 | CVE-2003-1102 | Remote Security vulnerability in Hummingbird CyberDOCS Hummingbird CyberDOCS 3.5, 3.9, and 4.0, when running on IIS, uses insecure permissions for script source code files, which allows remote attackers to read the source code. | 5.0 |
| 2003-12-31 | CVE-2003-1101 | Path Disclosure vulnerability in Hummingbird Cyberdocs 3.5.1/3.9/4.0 Hummingbird CyberDOCS 3.5.1, 3.9, and 4.0 allows remote attackers to obtain the full path of the DM Web Server via invalid login credentials, which reveals the path in an error message. | 5.0 |
| 2003-12-31 | CVE-2003-1100 | Cross-Site Scripting vulnerability in Hummingbird Cyberdocs 3.5.1/3.9/4.0 Multiple cross-site scripting (XSS) vulnerabilities in Hummingbird CyberDOCS 3.5.1, 3.9, and 4.0 allow remote attackers to inject arbitrary web script or HTML via certain vectors. network hummingbird | 4.3 |
| 2003-12-31 | CVE-2003-1099 | shar on HP-UX B.11.00, B.11.04, and B.11.11 creates temporary files with predictable names in /tmp, which allows local users to cause a denial of service and possibly execute arbitrary code via a symlink attack. | 2.1 |
| 2003-12-31 | CVE-2003-1098 | Privilege Escalation vulnerability in HP Hp-Ux 11.22 The Xserver for HP-UX 11.22 was not properly built, which introduced a vulnerability that allows local users to gain privileges. | 7.2 |
| 2003-12-31 | CVE-2003-1097 | Remote Username Flag Local Buffer Overrun vulnerability in HP-UX RExec Buffer overflow in rexec on HP-UX B.10.20, B.11.00, and B.11.04, when setuid root, may allow local users to gain privileges via a long -l option. | 7.2 |
| 2003-12-31 | CVE-2003-1096 | Unspecified vulnerability in Cisco Leap The Cisco LEAP challenge/response authentication mechanism uses passwords in a way that is susceptible to dictionary attacks, which makes it easier for remote attackers to gain privileges via brute force password guessing attacks. | 10.0 |
| 2003-12-31 | CVE-2003-1094 | Unspecified vulnerability in BEA Weblogic Server 7.0 BEA WebLogic Server and Express version 7.0 SP3 may follow certain code execution paths that result in an incorrect current user, such as in the frequent use of JNDI initial contexts, which could allow remote authenticated users to gain privileges. | 7.2 |