Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2003-08-18 | CVE-2003-0558 | Remote Security vulnerability in Leapware Leapftp 2.7.3.600 Buffer overflow in LeapFTP 2.7.3.600 allows remote FTP servers to execute arbitrary code via a long IP address response to a PASV request. | 7.5 |
2003-08-18 | CVE-2003-0557 | Unspecified vulnerability in Lagarde Storefront SQL injection vulnerability in login.asp for StoreFront 6.0, and possibly earlier versions, allows remote attackers to obtain sensitive user information via SQL statements in the password field. | 7.5 |
2003-08-18 | CVE-2003-0555 | Denial-Of-Service vulnerability in Imagemagick 5.4.3 ImageMagick 5.4.3.x and earlier allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a "%x" filename, possibly triggering a format string vulnerability. | 7.5 |
2003-08-18 | CVE-2003-0553 | Remote Security vulnerability in Netscape Navigator 7.0.2 Buffer overflow in the Client Detection Tool (CDT) plugin (npcdt.dll) for Netscape 7.02 allows remote attackers to execute arbitrary code via an attachment with a long filename. | 7.5 |
2003-08-18 | CVE-2003-0538 | Remote Security vulnerability in Mozart 1.2.3/1.2.5 The mailcap file for mozart 1.2.5 and earlier causes Oz applications to be passed to the Oz interpreter, which allows remote attackers to execute arbitrary Oz programs in a MIME-aware client program. | 7.5 |
2003-08-18 | CVE-2003-0535 | Unspecified vulnerability in Xblockout XBL 1.0I/1.0K/1.1 Buffer overflow in xbl 1.0k and earlier allows local users to gain privileges via a long -display command line option. | 7.2 |
2003-08-18 | CVE-2003-0516 | Remote Security vulnerability in mgetty cnd.c in mgetty 1.1.28 and earlier does not properly filter non-printable characters and quotes, which may allow remote attackers to execute arbitrary commands via shell metacharacters in (1) caller ID or (2) caller name strings. | 7.5 |
2003-08-18 | CVE-2003-0515 | Unspecified vulnerability in Teapop 0.3.4/0.3.5 SQL injection vulnerabilities in the (1) PostgreSQL or (2) MySQL authentication modules for teapop 0.3.5 and earlier allow attackers to execute arbitrary SQL and possibly gain privileges. | 7.5 |
2003-08-18 | CVE-2003-0496 | Unspecified vulnerability in Microsoft Windows 2000 and Windows 2000 Terminal Services Microsoft SQL Server before Windows 2000 SP4 allows local users to gain privileges as the SQL Server user by calling the xp_fileexist extended stored procedure with a named pipe as an argument instead of a normal file. | 7.2 |
2003-08-18 | CVE-2003-0352 | Buffer Overrun vulnerability in Microsoft Windows DCOM RPC Interface Buffer overflow in a certain DCOM interface for RPC in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a malformed message, as exploited by the Blaster/MSblast/LovSAN and Nachi/Welchia worms. | 7.5 |