Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-03-03 | CVE-2004-0082 | Unspecified vulnerability in Samba 3.0.0/3.0.1 The mksmbpasswd shell script (mksmbpasswd.sh) in Samba 3.0.0 and 3.0.1, when creating an account but marking it as disabled, may overwrite the user password with an uninitialized buffer, which could enable the account with a more easily guessable password. | 7.5 |
2004-03-03 | CVE-2004-0078 | Remote Buffer Overflow vulnerability in Mutt Menu Drawing Buffer overflow in the index menu code (menu_pad_string of menu.c) for Mutt 1.4.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via certain mail messages. | 7.5 |
2004-03-03 | CVE-2004-0077 | Local Privilege Escalation vulnerability in Linux Kernel do_mremap Function VMA Limit The do_mremap function for the mremap system call in Linux 2.2 to 2.2.25, 2.4 to 2.4.24, and 2.6 to 2.6.2, does not properly check the return value from the do_munmap function when the maximum number of VMA descriptors is exceeded, which allows local users to gain root privileges, a different vulnerability than CAN-2003-0985. | 7.2 |
2004-03-03 | CVE-2004-0010 | Local Privilege Escalation vulnerability in Linux Kernel NCPFS ncp_lookup() Stack-based buffer overflow in the ncp_lookup function for ncpfs in Linux kernel 2.4.x allows local users to gain privileges. | 7.2 |
2004-03-03 | CVE-2004-0009 | Unspecified vulnerability in Apache-Ssl Apache-SSL 1.3.28+1.52 and earlier, with SSLVerifyClient set to 1 or 3 and SSLFakeBasicAuth enabled, allows remote attackers to forge a client certificate by using basic authentication with the "one-line DN" of the target user. | 7.5 |
2004-03-03 | CVE-2004-0008 | Integer overflow in Gaim 0.74 and earlier, and Ultramagnetic before 0.81, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a directIM packet that triggers a heap-based buffer overflow. | 7.5 |
2004-03-03 | CVE-2004-0007 | Remote Boundary Condition Error vulnerability in Gaim Buffer overflow in the Extract Info Field Function for (1) MSN and (2) YMSG protocol handlers in Gaim 0.74 and earlier, and Ultramagnetic before 0.81, allows remote attackers to cause a denial of service and possibly execute arbitrary code. | 7.5 |
2004-03-03 | CVE-2004-0006 | Remote Boundary Condition Error vulnerability in Gaim Multiple buffer overflows in Gaim 0.75 and earlier, and Ultramagnetic before 0.81, allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) cookies in a Yahoo web connection, (2) a long name parameter in the Yahoo login web page, (3) a long value parameter in the Yahoo login page, (4) a YMSG packet, (5) the URL parser, and (6) HTTP proxy connect. | 7.5 |
2004-03-03 | CVE-2003-0818 | Unspecified vulnerability in Microsoft products Multiple integer overflows in Microsoft ASN.1 library (MSASN1.DLL), as used in LSASS.EXE, CRYPT32.DLL, and other Microsoft executables and libraries on Windows NT 4.0, 2000, and XP, allow remote attackers to execute arbitrary code via ASN.1 BER encodings with (1) very large length fields that cause arbitrary heap data to be overwritten, or (2) modified bit strings. | 7.5 |
2004-03-03 | CVE-2003-0441 | Buffer Overrun vulnerability in Orville-Write 2.53 Multiple buffer overflows in Orville Write (orville-write) 2.53 and earlier allow local users to gain privileges. | 7.2 |