Vulnerabilities (CVE)

Filtered by NVD-CWE-Other
Total 29925 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2003-0564 1 Hitachi 2 Groupmax Mail - Security Option, Pki Runtime Library 2026-06-16 5.0 MEDIUM N/A
Multiple vulnerabilities in multiple vendor implementations of the Secure/Multipurpose Internet Mail Extensions (S/MIME) protocol allow remote attackers to cause a denial of service and possibly execute arbitrary code via an S/MIME email message containing certain unexpected ASN.1 constructs, as demonstrated using the NISSC test suite.
CVE-2003-0562 1 Novell 1 Netware 2026-06-16 5.0 MEDIUM N/A
Buffer overflow in the CGI2PERL.NLM PERL handler in Novell Netware 5.1 and 6.0 allows remote attackers to cause a denial of service (ABEND) via a long input string.
CVE-2003-0561 1 Iglooftp 1 Iglooftp Pro 2026-06-16 7.5 HIGH N/A
Multiple buffer overflows in IglooFTP PRO 3.8 allow remote FTP servers to execute arbitrary code via (1) a long FTP banner, or long responses to the client commands (2) USER, (3) PASS, (4) ACCT, and possibly other commands.
CVE-2003-0560 1 Virtual Programming 1 Vp-asp 2026-06-16 10.0 HIGH N/A
SQL injection vulnerability in shopexd.asp for VP-ASP allows remote attackers to gain administrator privileges via the id parameter.
CVE-2003-0559 1 Phpforum 1 Phpforum 2026-06-16 7.5 HIGH N/A
mainfile.php in phpforum 2 RC-1, and possibly earlier versions, allows remote attackers to execute arbitrary PHP code by modifying the MAIN_PATH parameter to reference a URL on a remote web server that contains the code.
CVE-2003-0558 1 Leapware 1 Leapftp 2026-06-16 7.5 HIGH N/A
Buffer overflow in LeapFTP 2.7.3.600 allows remote FTP servers to execute arbitrary code via a long IP address response to a PASV request.
CVE-2003-0557 1 Lagarde 1 Storefront 2026-06-16 7.5 HIGH N/A
SQL injection vulnerability in login.asp for StoreFront 6.0, and possibly earlier versions, allows remote attackers to obtain sensitive user information via SQL statements in the password field.
CVE-2003-0556 1 Polycom 3 Mgc-100, Mgc-25, Mgc-50 2026-06-16 5.0 MEDIUM N/A
Polycom MGC 25 allows remote attackers to cause a denial of service (crash) via a large number of "user" requests to the control port 5003, as demonstrated using the blast TCP stress tester.
CVE-2003-0555 1 Imagemagick 1 Imagemagick 2026-06-16 7.5 HIGH N/A
ImageMagick 5.4.3.x and earlier allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a "%x" filename, possibly triggering a format string vulnerability.
CVE-2003-0554 1 Neomodus 1 Direct Connect 2026-06-16 5.0 MEDIUM N/A
NeoModus Direct Connect 1.0 build 9, and possibly other versions, allows remote attackers to cause a denial of service (connection and possibly memory exhaustion) via a flood of ConnectToMe requests containing arbitrary IP addresses and ports.
CVE-2003-0553 1 Netscape 1 Navigator 2026-06-16 7.5 HIGH N/A
Buffer overflow in the Client Detection Tool (CDT) plugin (npcdt.dll) for Netscape 7.02 allows remote attackers to execute arbitrary code via an attachment with a long filename.
CVE-2003-0552 1 Redhat 1 Linux 2026-06-16 5.0 MEDIUM N/A
Linux 2.4.x allows remote attackers to spoof the bridge Forwarding table via forged packets whose source addresses are the same as the target.
CVE-2003-0551 1 Redhat 1 Linux 2026-06-16 5.0 MEDIUM N/A
The STP protocol implementation in Linux 2.4.x does not properly verify certain lengths, which could allow attackers to cause a denial of service.
CVE-2003-0550 1 Redhat 1 Linux 2026-06-16 5.0 MEDIUM N/A
The STP protocol, as enabled in Linux 2.4.x, does not provide sufficient security by design, which allows attackers to modify the bridge topology.
CVE-2003-0549 2 Gnome, Redhat 4 Gdm, Enterprise Linux, Kdebase and 1 more 2026-06-16 5.0 MEDIUM N/A
The X Display Manager Control Protocol (XDMCP) support for GDM before 2.4.1.6 allows attackers to cause a denial of service (daemon crash) via a short authorization key name.
CVE-2003-0548 2 Gnome, Redhat 4 Gdm, Enterprise Linux, Kdebase and 1 more 2026-06-16 5.0 MEDIUM N/A
The X Display Manager Control Protocol (XDMCP) support for GDM before 2.4.1.6 allows attackers to cause a denial of service (daemon crash) when a chosen host expires, a different issue than CVE-2003-0549.
CVE-2003-0547 2 Gnome, Redhat 2 Gdm, Kdebase 2026-06-16 2.1 LOW N/A
GDM before 2.4.1.6, when using the "examine session errors" feature, allows local users to read arbitrary files via a symlink attack on the ~/.xsession-errors file.
CVE-2003-0546 1 Redhat 1 Up2date 2026-06-16 7.5 HIGH N/A
up2date 3.0.7 and 3.1.23 does not properly verify RPM GPG signatures, which could allow remote attackers to cause unsigned packages to be installed from the Red Hat Network, if that network is compromised.
CVE-2003-0544 1 Openssl 1 Openssl 2026-06-16 5.0 MEDIUM N/A
OpenSSL 0.9.6 and 0.9.7 does not properly track the number of characters in certain ASN.1 inputs, which allows remote attackers to cause a denial of service (crash) via an SSL client certificate that causes OpenSSL to read past the end of a buffer when the long form is used.
CVE-2003-0543 1 Openssl 1 Openssl 2026-06-16 5.0 MEDIUM N/A
Integer overflow in OpenSSL 0.9.6 and 0.9.7 allows remote attackers to cause a denial of service (crash) via an SSL client certificate with certain ASN.1 tag values.