Total
29908 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2003-0453 | 1 Ehud Gavron | 1 Traceroute-nanog | 2026-06-16 | 10.0 HIGH | N/A |
| traceroute-nanog 6.1.1 allows local users to overwrite unauthorized memory and possibly execute arbitrary code via certain "nprobes" and "max_ttl" arguments that cause an integer overflow that is used when allocating memory, which leads to a buffer overflow. | |||||
| CVE-2003-0452 | 1 Gunnar Ritter | 1 Osh | 2026-06-16 | 4.6 MEDIUM | N/A |
| Buffer overflows in osh before 1.7-11 allow local users to execute arbitrary code and bypass shell restrictions via (1) long environment variables or (2) long "file redirections." | |||||
| CVE-2003-0451 | 1 Xblockout | 1 Xbl | 2026-06-16 | 4.6 MEDIUM | N/A |
| Multiple buffer overflows in xbl before 1.0k allow local users to gain privileges via certain long command line arguments. | |||||
| CVE-2003-0450 | 1 Cistron | 1 Radius Daemon | 2026-06-16 | 7.5 HIGH | N/A |
| Cistron RADIUS daemon (radiusd-cistron) 1.6.6 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large value in an NAS-Port attribute, which is interpreted as a negative number and causes a buffer overflow. | |||||
| CVE-2003-0449 | 1 Progress | 1 Database | 2026-06-16 | 4.6 MEDIUM | N/A |
| Progress Database 9.1 to 9.1D06 trusts user input to find and load libraries using dlopen, which allows local users to gain privileges via (1) a PATH environment variable that points to malicious libraries, as demonstrated using libjutil.so in_proapsv, or (2) the -installdir command line parameter, as demonstrated using librocket_r.so in _dbagent. | |||||
| CVE-2003-0448 | 1 Aboleo.net | 1 Portmon | 2026-06-16 | 3.6 LOW | N/A |
| Portmon 1.7 and possibly earlier versions allows local users to read and write arbitrary files via the (1) -c (host file) or (2) -l (log file) command line options. | |||||
| CVE-2003-0447 | 1 Microsoft | 1 Internet Explorer | 2026-06-16 | 5.1 MEDIUM | N/A |
| The Custom HTTP Errors capability in Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to execute script in the Local Zone via an argument to shdocvw.dll that causes a "javascript:" link to be generated. | |||||
| CVE-2003-0446 | 1 Microsoft | 1 Internet Explorer | 2026-06-16 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) in Internet Explorer 5.5 and 6.0, possibly in a component that is also used by other Microsoft products, allows remote attackers to insert arbitrary web script via an XML file that contains a parse error, which inserts the script in the resulting error message. | |||||
| CVE-2003-0445 | 1 Webfs | 1 Webfs | 2026-06-16 | 7.5 HIGH | N/A |
| Buffer overflow in webfs before 1.17.1 allows remote attackers to execute arbitrary code via an HTTP request with a long Request-URI. | |||||
| CVE-2003-0444 | 1 Gtksee | 1 Gtksee | 2026-06-16 | 7.5 HIGH | N/A |
| Heap-based buffer overflow in GTKSee 0.5 and 0.5.1 allows remote attackers to execute arbitrary code via a PNG image of certain color depths. | |||||
| CVE-2003-0442 | 2 Php, Redhat | 2 Php, Linux | 2026-06-16 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in the transparent SID support capability for PHP before 4.3.2 (session.use_trans_sid) allows remote attackers to insert arbitrary script via the PHPSESSID parameter. | |||||
| CVE-2003-0441 | 1 Orville-write | 1 Orville-write | 2026-06-16 | 7.2 HIGH | N/A |
| Multiple buffer overflows in Orville Write (orville-write) 2.53 and earlier allow local users to gain privileges. | |||||
| CVE-2003-0440 | 2 Debian, Semi | 2 Debian Linux, Semi | 2026-06-16 | 4.6 MEDIUM | N/A |
| The (1) semi MIME library 1.14.5 and earlier, and (2) wemi 1.14.0 and possibly other versions, allows local users to overwrite arbitrary files via a symlink attack on temporary files. | |||||
| CVE-2003-0438 | 1 Yuuichi Teranishi | 1 Eldav | 2026-06-16 | 1.2 LOW | N/A |
| eldav WebDAV client for Emacs, version 0.7.2 and earlier, allows local users to create or overwrite arbitrary files via a symlink attack on temporary files. | |||||
| CVE-2003-0437 | 1 Mnogosearch | 1 Mnogosearch | 2026-06-16 | 7.5 HIGH | N/A |
| Buffer overflow in search.cgi for mnoGoSearch 3.2.10 allows remote attackers to execute arbitrary code via a long tmplt parameter. | |||||
| CVE-2003-0436 | 1 Mnogosearch | 1 Mnogosearch | 2026-06-16 | 7.5 HIGH | N/A |
| Buffer overflow in search.cgi for mnoGoSearch 3.1.20 allows remote attackers to execute arbitrary code via a long ul parameter. | |||||
| CVE-2003-0435 | 1 Typespeed | 1 Typespeed | 2026-06-16 | 7.5 HIGH | N/A |
| Buffer overflow in net_swapscore for typespeed 0.4.1 and earlier allows remote attackers to execute arbitrary code. | |||||
| CVE-2003-0434 | 4 Adobe, Mandrakesoft, Redhat and 1 more | 7 Acrobat, Mandrake Linux, Mandrake Linux Corporate Server and 4 more | 2026-06-16 | 7.5 HIGH | N/A |
| Various PDF viewers including (1) Adobe Acrobat 5.06 and (2) Xpdf 1.01 allow remote attackers to execute arbitrary commands via shell metacharacters in an embedded hyperlink. | |||||
| CVE-2003-0433 | 1 Gnocatan-develop | 1 Gnocatan | 2026-06-16 | 7.5 HIGH | N/A |
| Multiple buffer overflows in gnocatan 0.6.1 and earlier allow attackers to execute arbitrary code. | |||||
| CVE-2003-0432 | 1 Ethereal Group | 1 Ethereal | 2026-06-16 | 10.0 HIGH | N/A |
| Ethereal 0.9.12 and earlier does not handle certain strings properly, with unknown consequences, in the (1) BGP, (2) WTP, (3) DNS, (4) 802.11, (5) ISAKMP, (6) WSP, (7) CLNP, (8) ISIS, and (9) RMI dissectors. | |||||