Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-11-17 | CVE-2003-0543 | Unspecified vulnerability in Openssl 0.9.6/0.9.7 Integer overflow in OpenSSL 0.9.6 and 0.9.7 allows remote attackers to cause a denial of service (crash) via an SSL client certificate with certain ASN.1 tag values. | 5.0 |
| 2003-11-17 | CVE-2002-1568 | Unspecified vulnerability in Openssl 0.9.6E OpenSSL 0.9.6e uses assertions when detecting buffer overflow attacks instead of less severe mechanisms, which allows remote attackers to cause a denial of service (crash) via certain messages that cause OpenSSL to abort from a failed assertion, as demonstrated using SSLv2 CLIENT_MASTER_KEY messages, which are not properly handled in s2_srvr.c. | 5.0 |
| 2003-11-13 | CVE-2003-0626 | Directory Traversal vulnerability in PeopleSoft PeopleBooks psdoccgi.exe psdoccgi.exe in PeopleSoft PeopleTools 8.4 through 8.43 allows remote attackers to read arbitrary files via the (1) headername or (2) footername arguments. | 5.0 |
| 2003-11-03 | CVE-2003-1190 | Cross-Site Scripting/HTML Injection vulnerability in PHPRecipeBook Cross-site scripting (XSS) vulnerability in PHPRecipeBook 1.24 through 2.17 allows remote attackers to inject arbitrary web script or HTML via a recipe. network phprecipebook | 4.3 |
| 2003-11-03 | CVE-2003-1184 | Cross-Site Scripting vulnerability in ThWboard Multiple cross-site scripting (XSS) vulnerabilities in ThWboard Beta 2.8 and 2.81 allow remote attackers to inject arbitrary web script or HTML via (1) time in board.php, (2) the profile Homepage-Feld, (3) pictures, and (4) other "Diverse XSS Bugs." network thwboard | 4.3 |
| 2003-11-03 | CVE-2003-1182 | Cross-Site Scripting vulnerability in MPM Guestbook 1.2 Cross-site scripting (XSS) vulnerability in MPM Guestbook 1.2 allows remote attackers to inject arbitrary web script or HTML via the lng parameter. network mpm | 6.8 |
| 2003-11-03 | CVE-2003-1145 | Cross-Site Scripting vulnerability in OpenAutoClassifieds Listing Parameter Cross-site scripting (XSS) vulnerability in friendmail.php in OpenAutoClassifieds 1.0 allows remote attackers to inject arbitrary web script or HTML via the listing parameter. network openautoclassifieds | 6.8 |
| 2003-11-03 | CVE-2003-0895 | Buffer Overrun vulnerability in MacOS X Long Argv Value Kernel Buffer overflow in the Mac OS X kernel 10.2.8 and earlier allows local users, and possibly remote attackers, to cause a denial of service (crash), access portions of memory, and possibly execute arbitrary code via a long command line argument (argv[]). | 4.6 |
| 2003-11-03 | CVE-2003-0883 | Local Security vulnerability in Apple mac OS X 10.3 The System Preferences capability in Mac OS X before 10.3 allows local users to access secure Preference Panes for a short period after an administrator has authenticated to the system. | 4.6 |
| 2003-11-03 | CVE-2003-0882 | Remote Security vulnerability in Mac OS X Mac OS X before 10.3 initializes the TCP timestamp with a constant number, which allows remote attackers to determine the system's uptime via the ID field in a TCP packet. | 5.0 |