Vulnerabilities
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2003-11-17 | CVE-2003-0831 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Proftpd Project Proftpd ProFTPD 1.2.7 through 1.2.9rc2 does not properly translate newline characters when transferring files in ASCII mode, which allows remote attackers to execute arbitrary code via a buffer overflow using certain files. | 9.0 |
2003-11-17 | CVE-2003-0830 | Unspecified vulnerability in Marbles 1.0.1 Buffer overflow in marbles 1.0.2 and earlier allows local users to gain privileges via a long HOME environment variable. | 4.6 |
2003-11-17 | CVE-2003-0809 | Unspecified vulnerability in Microsoft IE and Internet Explorer Internet Explorer 5.01 through 6.0 does not properly handle object tags returned from a Web server during XML data binding, which allows remote attackers to execute arbitrary code via an HTML e-mail message or web page. | 7.5 |
2003-11-17 | CVE-2003-0804 | The arplookup function in FreeBSD 5.1 and earlier, Mac OS X before 10.2.8, and possibly other BSD-based systems, allows remote attackers on a local subnet to cause a denial of service (resource starvation and panic) via a flood of spoofed ARP requests. | 5.0 |
2003-11-17 | CVE-2003-0794 | Local Denial Of Service vulnerability in Multiple GDM GDM 2.4.4.x before 2.4.4.4, and 2.4.1.x before 2.4.1.7, does not limit the number or duration of commands and uses a blocking socket connection, which allows attackers to cause a denial of service (resource exhaustion) by sending commands and not reading the results. | 2.1 |
2003-11-17 | CVE-2003-0793 | Local Denial Of Service vulnerability in Multiple GDM GDM 2.4.4.x before 2.4.4.4, and 2.4.1.x before 2.4.1.7, does not restrict the size of input, which allows attackers to cause a denial of service (memory consumption). | 2.1 |
2003-11-17 | CVE-2003-0792 | Resource Management Errors vulnerability in Fetchmail Fetchmail 6.2.4 and earlier does not properly allocate memory for long lines, which allows remote attackers to cause a denial of service (crash) via a certain email. | 5.0 |
2003-11-17 | CVE-2003-0787 | Unspecified vulnerability in Openbsd Openssh 3.7.1/3.7.1P1 The PAM conversation function in OpenSSH 3.7.1 and 3.7.1p1 interprets an array of structures as an array of pointers, which allows attackers to modify the stack and possibly gain privileges. | 7.5 |
2003-11-17 | CVE-2003-0786 | Unspecified vulnerability in Openbsd Openssh 3.7.1/3.7.1P1 The SSH1 PAM challenge response authentication in OpenSSH 3.7.1 and 3.7.1p1, when Privilege Separation is disabled, does not check the result of the authentication attempt, which can allow remote attackers to gain privileges. | 10.0 |
2003-11-17 | CVE-2003-0717 | Buffer Overrun vulnerability in Microsoft Windows Messenger Service The Messenger Service for Windows NT through Server 2003 does not properly verify the length of the message, which allows remote attackers to execute arbitrary code via a buffer overflow attack. | 7.5 |