Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-08-27 | CVE-2003-0609 | Unspecified vulnerability in SUN Solaris and Sunos Stack-based buffer overflow in the runtime linker, ld.so.1, on Solaris 2.6 through 9 allows local users to gain root privileges via a long LD_PRELOAD environment variable. | 7.2 |
| 2003-08-27 | CVE-2003-0605 | Unspecified vulnerability in Microsoft Windows 2000 The RPC DCOM interface in Windows 2000 SP3 and SP4 allows remote attackers to cause a denial of service (crash), and local attackers to use the DoS to hijack the epmapper pipe to gain privileges, via certain messages to the __RemoteGetClassObject interface that cause a NULL pointer to be passed to the PerformScmStage function. | 7.5 |
| 2003-08-27 | CVE-2003-0597 | Unspecified vulnerability in SCO Openserver 5.0.6/5.0.7 Unknown vulnerability in display of Merge before 5.3.23a in UnixWare 7.1.x allows local users to gain root privileges. | 7.2 |
| 2003-08-27 | CVE-2003-0546 | Unspecified vulnerability in Redhat Up2Date 3.0.71/3.1.231 up2date 3.0.7 and 3.1.23 does not properly verify RPM GPG signatures, which could allow remote attackers to cause unsigned packages to be installed from the Red Hat Network, if that network is compromised. | 7.5 |
| 2003-08-27 | CVE-2003-0532 | Unspecified vulnerability in Microsoft IE and Internet Explorer Internet Explorer 5.01 SP3 through 6.0 SP1 does not properly determine object types that are returned by web servers, which could allow remote attackers to execute arbitrary code via an object tag with a data parameter to a malicious file hosted on a server that returns an unsafe Content-Type, aka the "Object Type" vulnerability. | 7.5 |
| 2003-08-27 | CVE-2003-0531 | Unspecified vulnerability in Microsoft IE and Internet Explorer Internet Explorer 5.01 SP3 through 6.0 SP1 allows remote attackers to access and execute script in the My Computer domain using the browser cache via crafted Content-Type and Content-Disposition headers, aka the "Browser Cache Script Execution in My Computer Zone" vulnerability. | 7.5 |
| 2003-08-27 | CVE-2003-0530 | Unspecified vulnerability in Microsoft IE and Internet Explorer Buffer overflow in the BR549.DLL ActiveX control for Internet Explorer 5.01 SP3 through 6.0 SP1 allows remote attackers to execute arbitrary code. | 7.5 |
| 2003-08-27 | CVE-2003-0353 | Buffer Overflow vulnerability in Microsoft Data Access Components ODBC Buffer overflow in a component of SQL-DMO for Microsoft Data Access Components (MDAC) 2.5 through 2.7 allows remote attackers to execute arbitrary code via a long response to a broadcast request to UDP port 1434. | 7.5 |
| 2003-08-27 | CVE-2003-0346 | Unspecified vulnerability in Microsoft Directx Multiple integer overflows in a Microsoft Windows DirectX MIDI library (QUARTZ.DLL) allow remote attackers to execute arbitrary code via a MIDI (.mid) file with (1) large length for a Text or Copyright string, or (2) a large number of tracks, which leads to a heap-based buffer overflow. | 7.5 |
| 2003-08-27 | CVE-2003-0232 | Unspecified vulnerability in Microsoft Data Engine and SQL Server Microsoft SQL Server 7, 2000, and MSDE allows local users to execute arbitrary code via a certain request to the Local Procedure Calls (LPC) port that leads to a buffer overflow. | 7.2 |