Microsoft : Security Vulnerabilities, CVEs, Published In July 2003

CVE-2003-0447

The Custom HTTP Errors capability in Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to execute script in the Local Zone via an argument to shdocvw.dll that causes a "javascript:" link to be generated.
Max CVSS
5.1
EPSS Score
5.93%
Published
2003-07-24
Updated
2021-07-23

CVE-2003-0446

Cross-site scripting (XSS) in Internet Explorer 5.5 and 6.0, possibly in a component that is also used by other Microsoft products, allows remote attackers to insert arbitrary web script via an XML file that contains a parse error, which inserts the script in the resulting error message.
Max CVSS
4.3
EPSS Score
2.18%
Published
2003-07-24
Updated
2021-07-23

CVE-2003-0349

Public exploit
Buffer overflow in the streaming media component for logging multicast requests in the ISAPI for the logging capability of Microsoft Windows Media Services (nsiislog.dll), as installed in IIS 5.0, allows remote attackers to execute arbitrary code via a large POST request to nsiislog.dll.
Max CVSS
7.5
EPSS Score
96.47%
Published
2003-07-24
Updated
2018-10-12

CVE-2003-0348

A certain Microsoft Windows Media Player 9 Series ActiveX control allows remote attackers to view and manipulate the Media Library on the local system via HTML script.
Max CVSS
6.4
EPSS Score
1.35%
Published
2003-07-24
Updated
2018-10-12
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close