Vulnerabilities (CVE)

Filtered by NVD-CWE-Other
Total 29927 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2003-0643 1 Linux 1 Linux Kernel 2026-06-16 2.1 LOW N/A
Integer signedness error in the Linux Socket Filter implementation (filter.c) in Linux 2.4.3-pre3 to 2.4.22-pre10 allows attackers to cause a denial of service (crash).
CVE-2003-0642 1 Watchguard 1 Serverlock 2026-06-16 2.1 LOW N/A
WatchGuard ServerLock for Windows 2000 before SL 2.0.4 allows local users to access kernel memory via a symlink attack on \Device\PhysicalMemory.
CVE-2003-0641 1 Watchguard 1 Serverlock 2026-06-16 4.6 MEDIUM N/A
WatchGuard ServerLock for Windows 2000 before SL 2.0.3 allows local users to load arbitrary modules via the OpenProcess() function, as demonstrated using (1) a DLL injection attack, (2) ZwSetSystemInformation, and (3) API hooking in OpenProcess.
CVE-2003-0640 1 Bea 1 Weblogic Server 2026-06-16 10.0 HIGH N/A
BEA WebLogic Server and Express, when using NodeManager to start servers, provides Operator users with privileges to overwrite usernames and passwords, which may allow Operators to gain Admin privileges.
CVE-2003-0639 1 Novell 1 Ichain 2026-06-16 5.0 MEDIUM N/A
Unknown vulnerability in Novell iChain 2.2 before Support Pack 1 allows users to access restricted or secure pages without authentication.
CVE-2003-0638 1 Novell 1 Ichain 2026-06-16 7.5 HIGH N/A
Multiple buffer overflows in Novell iChain 2.1 before Field Patch 3, and iChain 2.2 before Field Patch 1a, allow attackers to cause a denial of service (ABEND) and possibly execute arbitrary code via (1) a long user name or (2) an unknown attack related to a "special script against login."
CVE-2003-0636 1 Novell 1 Ichain 2026-06-16 7.5 HIGH N/A
Novell iChain 2.2 before Support Pack 1 does not properly verify that URL redirects match the DNS name of an accelerator, which allows attackers to redirect URLs to malicious web sites.
CVE-2003-0635 1 Novell 1 Ichain 2026-06-16 5.0 MEDIUM N/A
Unknown vulnerability or vulnerabilities in Novell iChain 2.2 before Support Pack 1, with unknown impact, possibly related to unauthorized access to (1) NCPIP.NLM and (2) JSTCP.NLM.
CVE-2003-0634 1 Oracle 2 Oracle8i, Oracle9i 2026-06-16 7.5 HIGH N/A
Stack-based buffer overflow in the PL/SQL EXTPROC functionality for Oracle9i Database Release 2 and 1, and Oracle 8i, allows authenticated database users, and arbitrary database users in some cases, to execute arbitrary code via a long library name.
CVE-2003-0633 1 Oracle 2 Applications, E-business Suite 2026-06-16 5.0 MEDIUM N/A
Multiple vulnerabilities in aoljtest.jsp of Oracle Applications AOL/J Setup Test Suite in Oracle E-Business Suite 11.5.1 through 11.5.8 allow a remote attacker to obtain sensitive information without authentication, such as the GUEST user password and the application server security key.
CVE-2003-0632 1 Oracle 2 Applications, E-business Suite 2026-06-16 7.5 HIGH N/A
Buffer overflow in the Oracle Applications Web Report Review (FNDWRR) CGI program (FNDWRR.exe) of Oracle E-Business Suite 11.0 and 11.5.1 through 11.5.8 may allow remote attackers to execute arbitrary code via a long URL.
CVE-2003-0631 1 Vmware 2 Gsx Server, Workstation 2026-06-16 7.2 HIGH N/A
VMware GSX Server 2.5.1 build 4968 and earlier, and Workstation 4.0 and earlier, allows local users to gain root privileges via certain enivronment variables that are used when launching a virtual machine session.
CVE-2003-0630 1 Atari800 1 Atari800 2026-06-16 7.2 HIGH N/A
Multiple buffer overflows in the atari800.svgalib setuid program of the Atari 800 emulator (atari800) before 1.2.2 allow local users to gain privileges via long command line arguments, as demonstrated with the -osa_rom argument.
CVE-2003-0629 1 Peoplesoft 1 Peopletools 2026-06-16 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in PeopleSoft IScript environment for PeopleTools 8.43 and earlier allows remote attackers to insert arbitrary web script via a certain HTTP request to IScript.
CVE-2003-0628 1 Peoplesoft 1 Peopletools 2026-06-16 5.0 MEDIUM N/A
PeopleSoft Gateway Administration servlet (gateway.administration) in PeopleTools 8.43 and earlier allows remote attackers to obtain the full pathnames for server-side include (SSI) files via an HTTP request with an invalid value.
CVE-2003-0627 1 Peoplesoft 1 Peopletools 2026-06-16 5.0 MEDIUM N/A
psdoccgi.exe in PeopleSoft PeopleTools 8.4 through 8.43 allows remote attackers to cause a denial of service (application crash), possibly via the headername and footername arguments.
CVE-2003-0626 1 Peoplesoft 1 Peopletools 2026-06-16 5.0 MEDIUM N/A
psdoccgi.exe in PeopleSoft PeopleTools 8.4 through 8.43 allows remote attackers to read arbitrary files via the (1) headername or (2) footername arguments.
CVE-2003-0623 1 Bea 2 Tuxedo, Weblogic Server 2026-06-16 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in the Administration Console for BEA Tuxedo 8.1 and earlier allows remote attackers to inject arbitrary web script via the INIFILE argument.
CVE-2003-0622 1 Bea 2 Tuxedo, Weblogic Server 2026-06-16 5.0 MEDIUM N/A
The Administration Console for BEA Tuxedo 8.1 and earlier allows remote attackers to cause a denial of service (hang) via pathname arguments that contain MS-DOS device names such as CON and AUX.
CVE-2003-0621 1 Bea 2 Tuxedo, Weblogic Server 2026-06-16 5.0 MEDIUM N/A
The Administration Console for BEA Tuxedo 8.1 and earlier allows remote attackers to determine the existence of files outside the web root via modified paths in the INIFILE argument.