CVE-2003-0859

This is an entry in the Common Vulnerability Index under number CVE-2003-0859. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2003-0859

Description: The getifaddrs function in GNU libc (glibc) 2.2.4 and earlier allows local users to cause a denial of service by sending spoofed messages as other users to the kernel netlink interface.

Continue Reading …

CVE-2003-0226

This is an entry in the Common Vulnerability Index under number CVE-2003-0226. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2003-0226

Description: Microsoft Internet Information Services (IIS) 5.0 and 5.1 allows remote attackers to cause a denial of service via a long WebDAV request with a (1) PROPFIND or (2) SEARCH method,

Continue Reading …

CVE-2003-1414

This is an entry in the Common Vulnerability Index under number CVE-2003-1414. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2003-1414

Description: Directory traversal vulnerability in parse_xml.cg Apple Darwin Streaming Server 4.1.2 and Apple Quicktime Streaming Server 4.1.1 allows remote attackers to read arbitrary files via a …

Continue Reading …

CVE-2003-0363

This is an entry in the Common Vulnerability Index under number CVE-2003-0363. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2003-0363

Description: Format string vulnerability in LICQ 1.2.6, 1.0.3 and possibly other versions allows remote attackers to perform unknown actions via format string specifiers.

Status: Candidate

Note for CVEs with status “Candidate”: Candidates must be reviewed and accepted by the CVE Editorial Board before they can be added to the official CVE list.Continue Reading …

CVE-2003-0122

This is an entry in the Common Vulnerability Index under number CVE-2003-0122. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2003-0122

Description: Buffer overflow in Notes server before Lotus Notes R4, R5 before 5.0.11, and early R6 allows remote attackers to execute arbitrary code via a long distinguished name (DN) during NotesRPC authentication and an outer field length that is less than that of the DN field.

Continue Reading …

CVE-2003-1447

This is an entry in the Common Vulnerability Index under number CVE-2003-1447. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2003-1447

Description: IBM WebSphere Advanced Server Edition 4.0.4 uses a weak encryption algorithm (XOR and base64 encoding), which allows local users to decrypt passwords when the configuration file is exported to XML.

Continue Reading …

CVE-2003-1031

This is an entry in the Common Vulnerability Index under number CVE-2003-1031. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2003-1031

Description: Cross-site scripting (XSS) vulnerability in register.php for vBulletin 3.0 Beta 2 allows remote attackers to inject arbitrary HTML or web script via optional fields such as (1) “Interests-Hobbies”,

Continue Reading …