Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-02-03 | CVE-2003-0816 | Unspecified vulnerability in Microsoft IE and Internet Explorer Internet Explorer 6 SP1 and earlier allows remote attackers to bypass zone restrictions by (1) using the NavigateAndFind method to load a file: URL containing Javascript, as demonstrated by NAFfileJPU, (2) using the window.open method to load a file: URL containing Javascript, as demonstrated using WsOpenFileJPU, (3) setting the href property in the base tag for the _search window, as demonstrated using WsBASEjpu, (4) loading the search window into an Iframe, as demonstrated using WsFakeSrc, (5) caching a javascript: URL in the browser history, then accessing that URL in the same frame as the target domain, as demonstrated using WsOpenJpuInHistory, NAFjpuInHistory, BackMyParent, BackMyParent2, and RefBack, aka the "Script URLs Cross Domain" vulnerability. | 7.5 |
2004-02-03 | CVE-2003-0815 | Unspecified vulnerability in Microsoft IE and Internet Explorer Internet Explorer 6 SP1 and earlier allows remote attackers to bypass zone restrictions and read arbitrary files by (1) modifying the createTextRange method and using CreateLink, as demonstrated using LinkillerSaveRef, LinkillerJPU, and Linkiller, or (2) modifying the createRange method and using the FIND dialog to select text, as demonstrated using Findeath, aka the "Function Pointer Override Cross Domain" vulnerability. | 7.5 |
2004-02-03 | CVE-2003-0814 | Unspecified vulnerability in Microsoft IE and Internet Explorer Internet Explorer 6 SP1 and earlier allows remote attackers to bypass zone restrictions and execute Javascript by setting the window's "href" to the malicious Javascript, then calling execCommand("Refresh") to refresh the page, aka BodyRefreshLoadsJPU or the "ExecCommand Cross Domain" vulnerability. | 7.5 |
2004-02-03 | CVE-2003-0119 | Unspecified vulnerability in IBM AIX 4.3.3/5.1/5.2 The secldapclntd daemon in AIX 4.3, 5.1 and 5.2 uses an Internet socket when communicating with the loadmodule, which allows remote attackers to directly connect to the daemon and conduct unauthorized activities. | 7.5 |
2004-01-29 | CVE-2004-2034 | Remote Filename Buffer Overflow vulnerability in Wildtangent Webdriver 4.0 Buffer overflow in the (1) WTHoster and (2) WebDriver modules in WildTangent Web Driver 4.0 allows remote attackers to execute arbitrary code via a long filename. | 7.5 |
2004-01-27 | CVE-2004-2131 | Multiple vulnerability in IBM products Stack-based buffer overflow in ontape for IBM Informix Dynamic Server (IDS) 9.40.xC3 and earlier allows local users, with DSA privileges, to execute arbitrary code via a long ONCONFIG environment variable. | 7.2 |
2004-01-20 | CVE-2004-0037 | Local File Reference Command Execution vulnerability in Opentext Firstclass Desktop Client 7.1 FirstClass Desktop Client 7.1 allows remote attackers to execute arbitrary commands via hyperlinks in FirstClass RTF messages. | 7.5 |
2004-01-20 | CVE-2004-0035 | SQL Injection vulnerability in Phorum Registration Script hide_email SQL injection vulnerability in register.php for Phorum 3.4.5 and earlier allows remote attackers to execute arbitrary SQL commands via the hide_email parameter. | 7.5 |
2004-01-20 | CVE-2004-0031 | Denial-Of-Service vulnerability in PHPgedview 2.61 PHPGEDVIEW 2.61 allows remote attackers to reinstall the software and change the administrator password via a direct HTTP request to editconfig.php. | 7.5 |
2004-01-20 | CVE-2004-0014 | Buffer Overrun vulnerability in nd Multiple buffer overflows in the nd WebDAV interface 0.8.2 and earlier allows remote web servers to execute arbitrary code via certain long strings. | 7.5 |