Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2003-06-09 | CVE-2003-0360 | Denial-Of-Service vulnerability in Linux Multiple buffer overflows in gPS before 1.0.0 allow attackers to cause a denial of service and possibly execute arbitrary code. | 7.5 |
2003-06-09 | CVE-2003-0332 | Security Bypass vulnerability in BadBlue The ISAPI extension in BadBlue 1.7 through 2.2, and possibly earlier versions, modifies the first two letters of a filename extension after performing a security check, which allows remote attackers to bypass authentication via a filename with a .ats extension instead of a .hts extension. | 7.6 |
2003-06-09 | CVE-2003-0328 | Unspecified vulnerability in Epic Epic4 Pre2.002/Pre2.003 EPIC IRC Client (EPIC4) pre2.002, pre2.003, and possibly later versions, allows remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via a CTCP request from a large nickname, which causes an incorrect length calculation. | 7.5 |
2003-06-09 | CVE-2003-0324 | Buffer Overflow vulnerability in Epic Epic4 1.0.1 Buffer overflows in EPIC IRC Client (EPIC4) 1.0.1 allows remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via long replies that are not properly handled by the (1) userhost_cmd_returned function, or (2) Statusbar capability. | 7.5 |
2003-06-09 | CVE-2003-0323 | Unspecified vulnerability in Michael Sandrof Ircii 20020912 Multiple buffer overflows in ircII 20020912 allows remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via responses that are not properly fed to the my_strcat function by (1) ctcp_buffer, (2) cannot_join_channel, (3) status_make_printable for Statusbar drawing, (4) create_server_list, and possibly other functions. | 7.5 |
2003-06-09 | CVE-2003-0321 | Remote Cluster() Heap Corruption vulnerability in BitchX Multiple buffer overflows in BitchX IRC client 1.0-0c19 and earlier allow remote malicious IRC servers to cause a denial of service (crash) and possibly execute arbitrary code via long hostnames, nicknames, or channel names, which are not properly handled by the functions (1) send_ctcp, (2) cannot_join_channel, (3) cluster, (4) BX_compress_modes, (5) handle_oper_vision, and (6) ban_it. | 7.5 |
2003-06-09 | CVE-2003-0320 | Remote Security vulnerability in Ttcms header.php in ttCMS 2.3 and earlier allows remote attackers to inject arbitrary PHP code by setting the ttcms_user_admin parameter to "1" and modifying the admin_root parameter to point to a URL that contains a Trojan horse header.inc.php script. | 7.5 |
2003-06-09 | CVE-2003-0319 | Remote Security vulnerability in MailMax Buffer overflow in the IMAP server (IMAPMax) for SmartMax MailMax 5.0.10.8 and earlier allows remote authenticated users to execute arbitrary code via a long SELECT command. | 7.5 |
2003-06-09 | CVE-2003-0309 | Unspecified vulnerability in Microsoft Internet Explorer 6.0.2800 Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to bypass security zone restrictions and execute arbitrary programs via a web document with a large number of duplicate file:// or other requests that point to the program and open multiple file download dialogs, which eventually cause Internet Explorer to execute the program, as demonstrated using a large number of FRAME or IFRAME tags, aka the "File Download Dialog Vulnerability." | 7.5 |
2003-06-09 | CVE-2003-0307 | Remote Security vulnerability in Poster Version.Two Poster version.two allows remote authenticated users to gain administrative privileges by appending the "|" field separator and an "admin" value into the email address field. | 7.5 |