Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-03-03 | CVE-2004-0089 | Local Buffer Overflow vulnerability in Apple mac OS X 10.2.8/10.3.9 Buffer overflow in TruBlueEnvironment in Mac OS X 10.3.x and 10.2.x allows local users to gain privileges via a long environment variable. | 4.6 |
| 2004-03-03 | CVE-2004-0086 | Unspecified vulnerability in Apple mac OS X 10.3.2 Unknown vulnerability in the Mail application for Mac OS X 10.3.2 has unknown impact and attack vectors, a different vulnerability than CVE-2004-0085. | 5.0 |
| 2004-03-03 | CVE-2004-0085 | Unspecified vulnerability in Apple mac OS X 10.1.5/10.2.8 Unknown vulnerability in the Mail application for Mac OS X 10.1.5 and 10.2.8 with unknown impact, a different vulnerability than CVE-2004-0086. | 5.0 |
| 2004-03-03 | CVE-2004-0080 | Unspecified vulnerability in Andries Brouwer Util-Linux The login program in util-linux 2.11 and earlier uses a pointer after it has been freed and reallocated, which could cause login to leak sensitive data. | 5.0 |
| 2004-03-03 | CVE-2004-0047 | Privilege Escalation vulnerability in Yamamoto Hirotaka Trr19 1.0 Multiple programs in trr19 1.0 do not properly drop privileges before executing a system command, which could allow local users to gain privileges. | 4.6 |
| 2004-03-03 | CVE-2004-0003 | Privilege Escalation vulnerability in Linux Kernel R128 Device Driver Unknown vulnerability in Linux kernel before 2.4.22 allows local users to gain privileges, related to "R128 DRI limits checking." | 4.6 |
| 2004-03-03 | CVE-2003-0991 | Remote Denial Of Service vulnerability in GNU Mailman Malformed Message Unknown vulnerability in the mail command handler in Mailman before 2.0.14 allows remote attackers to cause a denial of service (crash) via malformed e-mail commands. | 5.0 |
| 2004-03-03 | CVE-2002-1575 | Unspecified vulnerability in MIT Cgiemail 1.6 cgiemail allows remote attackers to use cgiemail as a spam proxy via CRLF injection of encoded newline (%0a) characters in parameters such as "required-subject," which can be used to modify the CC, BCC, and other header fields in the generated email message. | 5.0 |
| 2004-03-03 | CVE-2002-1574 | Unspecified vulnerability in Linux Kernel Buffer overflow in the ixj telephony card driver in Linux before 2.4.20 has unknown impact and attack vectors. | 4.6 |
| 2004-02-28 | CVE-2004-0944 | The web management interface for Mitel 3300 Integrated Communications Platform (ICP) before 4.2.2.11 generates easily predictable web session IDs, which allows remote attackers to hijack other sessions via the parentsessionid cookie. | 5.0 |