Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-07-02 | CVE-2003-0397 | Buffer Overflow vulnerability in Sharman Networks Kazaa V2.0.2 Buffer overflow in FastTrack (FT) network code, as used in Kazaa 2.0.2 and possibly other versions and products, allows remote attackers to execute arbitrary code via a packet containing a large list of supernodes, aka "Packet 0' death." | 7.5 |
| 2003-07-02 | CVE-2003-0394 | Remote File Include vulnerability in Blnews 2.1.3 objects.inc.php4 in BLNews 2.1.3 allows remote attackers to execute arbitrary PHP code via a Server[path] parameter that points to malicious code on an attacker-controlled web site. | 7.5 |
| 2003-07-02 | CVE-2003-0391 | Denial-Of-Service vulnerability in Magic Winmail Server Format string vulnerability in Magic WinMail Server 2.3, and possibly other 2.x versions, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in the PASS command. | 7.5 |
| 2003-07-02 | CVE-2003-0386 | Unspecified vulnerability in Openbsd Openssh 3.6.1 OpenSSH 3.6.1 and earlier, when restricting host access by numeric IP addresses and with VerifyReverseMapping disabled, allows remote attackers to bypass "from=" and "user@host" address restrictions by connecting to a host from a system whose reverse DNS hostname contains the numeric IP address. | 7.5 |
| 2003-07-02 | CVE-2003-0385 | Local Security vulnerability in Linux 3.0.18/3.0.23 Buffer overflow in xaos 3.0-23 and earlier, when running setuid, allows local users to gain root privileges via a long -language option. | 7.2 |
| 2003-07-02 | CVE-2003-0380 | Unspecified vulnerability in Atftpd 0.6.0/0.6.1.1 Buffer overflow in atftp daemon (atftpd) 0.6.1 and earlier, and possibly later versions, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long filename. | 7.5 |
| 2003-06-30 | CVE-2003-0414 | Unspecified vulnerability in SUN ONE Application Server 7.0 The installation of Sun ONE Application Server 7.0 for Windows 2000/XP creates a statefile with world-readable permissions, which allows local users to gain privileges by reading a plaintext password in the statefile. | 7.2 |
| 2003-06-30 | CVE-2003-0411 | Improper Handling of Case Sensitivity vulnerability in Oracle SUN ONE Application Server 7.0 Sun ONE Application Server 7.0 for Windows 2000/XP allows remote attackers to obtain JSP source code via a request that uses the uppercase ".JSP" extension instead of the lowercase .jsp extension. | 7.5 |
| 2003-06-30 | CVE-2003-0408 | Buffer Overflow vulnerability in the Uptimes Project Upclient 5.0B7 Buffer overflow in Uptime Client (UpClient) 5.0b7, and possibly other versions, allows local users to gain privileges via a long -p argument. | 7.2 |
| 2003-06-30 | CVE-2003-0406 | Unspecified vulnerability in Palmvnc 1.40 PalmVNC 1.40 and earlier stores passwords in plaintext in the PalmVNCDB, which is backed up to PCs that the Palm is synchronized with, which could allow attackers to gain privileges. | 7.2 |