Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2003-12-15 | CVE-2003-0795 | Improper Input Validation vulnerability in multiple products The vty layer in Quagga before 0.96.4, and Zebra 0.93b and earlier, does not verify that sub-negotiation is taking place when processing the SE marker, which allows remote attackers to cause a denial of service (crash) via a malformed telnet command to the telnet CLI port, which may trigger a null dereference. | 5.0 |
2003-12-15 | CVE-2003-0629 | Unspecified vulnerability in Peoplesoft Peopletools Cross-site scripting (XSS) vulnerability in PeopleSoft IScript environment for PeopleTools 8.43 and earlier allows remote attackers to insert arbitrary web script via a certain HTTP request to IScript. network peoplesoft | 4.3 |
2003-12-15 | CVE-2003-0628 | Unspecified vulnerability in Peoplesoft Peopletools PeopleSoft Gateway Administration servlet (gateway.administration) in PeopleTools 8.43 and earlier allows remote attackers to obtain the full pathnames for server-side include (SSI) files via an HTTP request with an invalid value. | 5.0 |
2003-12-15 | CVE-2003-0327 | Unspecified vulnerability in Sybase Adaptive Server Enterprise 12.5 Sybase Adaptive Server Enterprise (ASE) 12.5 allows remote attackers to cause a denial of service (hang) via a remote password array with an invalid length, which triggers a heap-based buffer overflow. | 5.0 |
2003-12-15 | CVE-2003-0089 | Local Buffer Overrun vulnerability in HP-UX Software Distributor Lang Environment Variable Buffer overflow in the Software Distributor utilities for HP-UX B.11.00 and B.11.11 allows local users to execute arbitrary code via a long LANG environment variable to setuid programs such as (1) swinstall and (2) swmodify. | 7.2 |
2003-12-11 | CVE-2003-1056 | Unspecified vulnerability in SUN Solaris and Sunos The ed editor for Sun Solaris 2.6, 7, and 8 allows local users to create or overwrite arbitrary files via a symlink attack on temporary files. | 7.2 |
2003-12-08 | CVE-2003-1057 | Buffer Overflow vulnerability in CDE DTPrintInfo Home Environment Variable Unknown vulnerability in CDE Print Viewer (dtprintinfo) for Sun Solaris 2.6 through 9 may allow local users to execute arbitrary code. | 7.2 |
2003-12-03 | CVE-2003-1058 | Unspecified vulnerability in SUN Solaris and Sunos The Xsun server for Sun Solaris 2.6 through 9, when running in Direct Graphics Access (DGA) mode, allows local users to cause a denial of service (Xsun crash) or to create or overwrite arbitrary files on the system, probably via a symlink attack on temporary server files. | 3.7 |
2003-12-01 | CVE-2003-0935 | Unspecified vulnerability in Net-Snmp Net-SNMP before 5.0.9 allows a user or community to access data in MIB objects, even if that data is not allowed to be viewed. | 6.4 |
2003-12-01 | CVE-2003-0934 | Unspecified vulnerability in Symbol Technologies PDT 8100 Symbol Access Portable Data Terminal (PDT) 8100 does not hide the default WEP keys if they are not changed, which could allow attackers to retrieve the keys and gain access to the wireless network. | 4.6 |