Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-12-01 | CVE-2003-0565 | Multiple vulnerabilities in multiple vendor implementations of the X.400 protocol allow remote attackers to cause a denial of service and possibly execute arbitrary code via an X.400 message containing certain unexpected ASN.1 constructs, as demonstrated using the NISSC test suite. network low complexity | 5.0 |
| 2003-12-01 | CVE-2003-0564 | Denial of Service vulnerability in Hitachi products Multiple vulnerabilities in multiple vendor implementations of the Secure/Multipurpose Internet Mail Extensions (S/MIME) protocol allow remote attackers to cause a denial of service and possibly execute arbitrary code via an S/MIME email message containing certain unexpected ASN.1 constructs, as demonstrated using the NISSC test suite. | 5.0 |
| 2003-11-27 | CVE-2003-1216 | SQL Injection vulnerability in phpBB search.php SQL injection vulnerability in search.php for phpBB 2.0.6 and earlier allows remote attackers to execute arbitrary SQL and gain privileges via the search_id parameter. | 7.5 |
| 2003-11-24 | CVE-2003-1084 | Denial of Service vulnerability in Monit HTTP Content-Length Parameter Monit 1.4 to 4.1 allows remote attackers to cause a denial of service (daemon crash) via an HTTP POST request with a negative Content-Length field. | 5.0 |
| 2003-11-23 | CVE-2003-1195 | SQL-Injection vulnerability in VieBoard SQL injection vulnerability in getmember.asp in VieBoard 2.6 Beta 1 allows remote attackers to execute arbitrary SQL commands via the msn variable. | 7.5 |
| 2003-11-20 | CVE-2003-1059 | Privilege Escalation vulnerability in Sun Solaris PGX32 Libraries Unspecific Unknown vulnerability in the libraries for the PGX32 frame buffer in Solaris 2.5.1 and 2.6 through 9 allows local users to gain root access. | 7.2 |
| 2003-11-17 | CVE-2003-0898 | Local Security vulnerability in Db2 Universal Database 7.1/8.0 IBM DB2 7.2 before FixPak 10a, and earlier versions including 7.1, allows local users to overwrite arbitrary files and gain privileges via a symlink attack on (1) db2job and (2) db2job2. | 4.6 |
| 2003-11-17 | CVE-2003-0897 | Local Security vulnerability in Windows XP Gold "Shatter" vulnerability in CommCtl32.dll in Windows XP may allow local users to execute arbitrary code by sending (1) BCM_GETTEXTMARGIN or (2) BCM_SETTEXTMARGIN button control messages to privileged applications. | 4.6 |
| 2003-11-17 | CVE-2003-0896 | Unspecified vulnerability in SUN JRE 1.3.0/1.4.1 The loadClass method of the sun.applet.AppletClassLoader class in the Java Virtual Machine (JVM) in Sun SDK and JRE 1.4.1_03 and earlier allows remote attackers to bypass sandbox restrictions and execute arbitrary code via a loaded class name that contains "/" (slash) instead of "." (dot) characters, which bypasses a call to the Security Manager's checkPackageAccess method. | 7.5 |
| 2003-11-17 | CVE-2003-0894 | Local Buffer Overflow vulnerability in Oracle Database Server Oracle Binary Buffer overflow in the (1) oracle and (2) oracleO programs in Oracle 9i Database 9.0.x and 9.2.x before 9.2.0.4 allows local users to execute arbitrary code via a long command line argument. | 4.6 |