Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2004-03-03 CVE-2004-0115 Privilege Escalation vulnerability in Microsoft Virtual PC 6.0/6.1/6.2
VirtualPC_Services in Microsoft Virtual PC for Mac 6.0 through 6.1 allows local attackers to truncate and overwrite arbitrary files, and execute arbitrary code, via a symlink attack on the VPCServices_Log temporary file.
local
low complexity
microsoft
4.6
2004-03-03 CVE-2004-0114 Privilege Escalation vulnerability in BSD Kernel SHMAT System Call
The shmat system call in the System V Shared Memory interface for FreeBSD 5.2 and earlier, NetBSD 1.3 and earlier, and OpenBSD 2.6 and earlier, does not properly decrement a shared memory segment's reference count when the vm_map_find function fails, which could allow local users to gain read or write access to a portion of kernel memory and gain privileges.
local
low complexity
freebsd netbsd openbsd
4.6
2004-03-03 CVE-2004-0103 Local Buffer Overflow vulnerability in Linley Henzell Dungeon Crawl
crawl before 4.0.0 beta23 does not properly "apply a size check" when copying a certain environment variable, which may allow local users to gain privileges, possibly as a result of a buffer overflow.
local
low complexity
linley-henzell
4.6
2004-03-03 CVE-2004-0099 Unspecified vulnerability in Freebsd 5.1/5.2.1
mksnap_ffs in FreeBSD 5.1 and 5.2 only sets the snapshot flag when creating a snapshot for a file system, which causes default values for other flags to be used, possibly disabling security-critical settings and allowing a local user to bypass intended access restrictions.
local
low complexity
freebsd
4.6
2004-03-03 CVE-2004-0096 Unspecified vulnerability in Apache MOD Python 2.7.9
Unknown vulnerability in mod_python 2.7.9 allows remote attackers to cause a denial of service (httpd crash) via a certain query string, a variant of CAN-2003-0973.
network
low complexity
apache
5.0
2004-03-03 CVE-2004-0089 Local Buffer Overflow vulnerability in Apple mac OS X 10.2.8/10.3.9
Buffer overflow in TruBlueEnvironment in Mac OS X 10.3.x and 10.2.x allows local users to gain privileges via a long environment variable.
local
low complexity
apple
4.6
2004-03-03 CVE-2004-0086 Unspecified vulnerability in Apple mac OS X 10.3.2
Unknown vulnerability in the Mail application for Mac OS X 10.3.2 has unknown impact and attack vectors, a different vulnerability than CVE-2004-0085.
network
low complexity
apple
5.0
2004-03-03 CVE-2004-0085 Unspecified vulnerability in Apple mac OS X 10.1.5/10.2.8
Unknown vulnerability in the Mail application for Mac OS X 10.1.5 and 10.2.8 with unknown impact, a different vulnerability than CVE-2004-0086.
network
low complexity
apple
5.0
2004-03-03 CVE-2004-0080 Unspecified vulnerability in Andries Brouwer Util-Linux
The login program in util-linux 2.11 and earlier uses a pointer after it has been freed and reallocated, which could cause login to leak sensitive data.
network
low complexity
andries-brouwer
5.0
2004-03-03 CVE-2004-0047 Privilege Escalation vulnerability in Yamamoto Hirotaka Trr19 1.0
Multiple programs in trr19 1.0 do not properly drop privileges before executing a system command, which could allow local users to gain privileges.
local
low complexity
yamamoto-hirotaka
4.6