Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-08-27 | CVE-2003-0616 | Unspecified vulnerability in Mcafee Epolicy Orchestrator 2.0/2.5/2.5.1 Format string vulnerability in ePO service for McAfee ePolicy Orchestrator 2.0, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code via a POST request with format strings in the computerlist parameter, which are used when logging a failed name resolution. | 7.5 |
| 2003-08-27 | CVE-2003-0615 | Cross-Site Scripting vulnerability in CGI.pm Start_Form Cross-site scripting (XSS) vulnerability in start_form() of CGI.pm allows remote attackers to insert web script via a URL that is fed into the form's action parameter. | 4.3 |
| 2003-08-27 | CVE-2003-0614 | Unspecified vulnerability in Gallery Project Gallery Cross-site scripting (XSS) vulnerability in search.php of Gallery 1.1 through 1.3.4 allows remote attackers to insert arbitrary web script via the searchstring parameter. network gallery-project | 4.3 |
| 2003-08-27 | CVE-2003-0613 | Local Security vulnerability in zblast Buffer overflow in zblast-svgalib of zblast 1.2.1 and earlier allows local users to execute arbitrary code via the high score file. | 4.6 |
| 2003-08-27 | CVE-2003-0611 | Buffer Overflow vulnerability in Xtokkaetama 1.0B6 Multiple buffer overflows in xtokkaetama 1.0 allow local users to gain privileges via a long (1) -display command line argument or (2) XTOKKAETAMADIR environment variable. | 4.6 |
| 2003-08-27 | CVE-2003-0610 | Unspecified vulnerability in Mcafee Epolicy Orchestrator 3.0 Directory traversal vulnerability in ePO agent for McAfee ePolicy Orchestrator 3.0 allows remote attackers to read arbitrary files via a certain HTTP request. | 5.0 |
| 2003-08-27 | CVE-2003-0609 | Unspecified vulnerability in SUN Solaris and Sunos Stack-based buffer overflow in the runtime linker, ld.so.1, on Solaris 2.6 through 9 allows local users to gain root privileges via a long LD_PRELOAD environment variable. | 7.2 |
| 2003-08-27 | CVE-2003-0606 | sup 1.8 and earlier does not properly create temporary files, which allows local users to overwrite arbitrary files. | 4.6 |
| 2003-08-27 | CVE-2003-0605 | Unspecified vulnerability in Microsoft Windows 2000 The RPC DCOM interface in Windows 2000 SP3 and SP4 allows remote attackers to cause a denial of service (crash), and local attackers to use the DoS to hijack the epmapper pipe to gain privileges, via certain messages to the __RemoteGetClassObject interface that cause a NULL pointer to be passed to the PerformScmStage function. | 7.5 |
| 2003-08-27 | CVE-2003-0603 | Unspecified vulnerability in Mozilla Bugzilla Bugzilla 2.16.x before 2.16.3, 2.17.x before 2.17.4, and earlier versions allows local users to overwrite arbitrary files via a symlink attack on temporary files that are created in directories with group-writable or world-writable permissions. | 2.1 |