CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register   Reset Password   Activate Account
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In 2003(Gain Privilege)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2003-1502 +Priv 2003-12-31 2008-09-05
4.6
None Local Low Not required Partial Partial Partial
mod_throttle 3.0 allows local users with Apache privileges to access shared memory that points to a file that is writable by the apache user, which could allow local users to gain privileges.
2 CVE-2003-1496 119 Overflow +Priv 2003-12-31 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
Unspecified vulnerability in CDE dtmailpr of HP Tru64 4.0F through 5.1B allows local users to gain privileges via unknown attack vectors. NOTE: due to lack of details in the vendor advisory, it is not clear whether this is the same issue as CVE-1999-0840.
3 CVE-2003-1495 264 DoS +Priv 2003-12-31 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
Unspecified vulnerability in the non-SSL web agent in various HP Management Agent products allows local users or remote attackers to gain privileges or cause a denial of service via unknown attack vectors.
4 CVE-2003-1422 16 +Priv 2003-12-31 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
Multiple unspecified vulnerabilities in the installer for SYSLINUX 2.01, when running setuid root, allow local users to gain privileges via unknown vectors.
5 CVE-2003-1361 +Priv 2003-12-31 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
Unknown vulnerability in VERITAS Bare Metal Restore (BMR) of Tivoli Storage Manager (TSM) 3.1.0 through 3.2.1 allows remote attackers to gain root privileges on the BMR Main Server.
6 CVE-2003-1359 119 Overflow +Priv 2003-12-31 2009-03-04
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in stmkfont utility of HP-UX 10.0 through 11.22 allows local users to gain privileges via a long command line argument.
7 CVE-2003-1358 264 +Priv 2003-12-31 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
rs.F300 for HP-UX 10.0 through 11.22 uses the PATH environment variable to find and execute programs such as rm while operating at raised privileges, which allows local users to gain privileges by modifying the path to point to a malicious rm program.
8 CVE-2003-1310 +Priv 2003-12-31 2008-09-05
4.6
None Local Low Not required Partial Partial Partial
The DeviceIoControl function in the Norton Device Driver (NAVAP.sys) in Symantec Norton AntiVirus 2002 allows local users to gain privileges by overwriting memory locations via certain control codes (aka "Device Driver Attack").
9 CVE-2003-1309 +Priv 2003-12-31 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
The DeviceIoControl function in the TrueVector Device Driver (VSDATANT) in ZoneAlarm before 3.7.211, Pro before 4.0.146.029, and Plus before 4.0.146.029 allows local users to gain privileges via certain signals (aka "Device Driver Attack").
10 CVE-2003-1264 +Priv 2003-12-31 2008-09-05
5.0
None Remote Low Not required Partial None None
TFTP server in Longshine Wireless Access Point (WAP) LCS-883R-AC-B, and in D-Link DI-614+ 2.0 which is based on it, allows remote attackers to obtain the WEP secret and gain administrator privileges by downloading the configuration file (config.img) and other files without authentication.
11 CVE-2003-1216 +Priv Sql 2003-11-27 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
SQL injection vulnerability in search.php for phpBB 2.0.6 and earlier allows remote attackers to execute arbitrary SQL and gain privileges via the search_id parameter.
12 CVE-2003-1160 +Priv Bypass 2003-10-30 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
FlexWATCH Network video server 132 allows remote attackers to bypass authentication and gain administrative privileges via an HTTP request to aindex.htm that contains double leading slashes (//).
13 CVE-2003-1142 +Priv 2003-11-03 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
Help in NIPrint LPD-LPR Print Server 4.10 and earlier executes Windows Explorer with SYSTEM privileges, which allows local users to gain privileges.
14 CVE-2003-1098 +Priv 2003-12-31 2009-03-04
7.2
Admin Local Low Not required Complete Complete Complete
The Xserver for HP-UX 11.22 was not properly built, which introduced a vulnerability that allows local users to gain privileges.
15 CVE-2003-1097 Overflow +Priv 2003-12-31 2009-03-04
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in rexec on HP-UX B.10.20, B.11.00, and B.11.04, when setuid root, may allow local users to gain privileges via a long -l option.
16 CVE-2003-1096 +Priv 2003-12-31 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
The Cisco LEAP challenge/response authentication mechanism uses passwords in a way that is susceptible to dictionary attacks, which makes it easier for remote attackers to gain privileges via brute force password guessing attacks.
17 CVE-2003-1094 Exec Code +Priv 2003-12-31 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
BEA WebLogic Server and Express version 7.0 SP3 may follow certain code execution paths that result in an incorrect current user, such as in the frequent use of JNDI initial contexts, which could allow remote authenticated users to gain privileges.
18 CVE-2003-1082 Overflow +Priv 2003-12-31 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in utmp_update for Solaris 2.6 through 9 allows local users to gain root privileges, as identified by Sun BugID 4705891, a different vulnerability than CVE-2003-1068.
19 CVE-2003-1076 DoS +Priv 2003-12-31 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
Unknown vulnerability in sendmail for Solaris 7, 8, and 9 allows local users to cause a denial of service (unknown impact) and possibly gain privileges via certain constructs in a .forward file.
20 CVE-2003-1074 +Priv 2003-03-28 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
Unknown vulnerability in newtask for Solaris 9 allows local users to gain root privileges.
21 CVE-2003-1068 Overflow +Priv 2003-06-06 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in utmp_update for Solaris 2.6 through 9 allows local users to gain root privileges, as identified by Sun BugID 4659277, a different vulnerability than CVE-2003-1082.
22 CVE-2003-1067 Overflow +Priv 2003-06-19 2014-01-16
7.2
Admin Local Low Not required Complete Complete Complete
Multiple buffer overflows in the (1) dbm_open function, as used in ndbm and dbm, and the (2) dbminit function in Solaris 2.6 through 9 allow local users to gain root privileges via long arguments to Xsun or other programs that use these functions.
23 CVE-2003-0961 Overflow +Priv 2003-12-15 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
Integer overflow in the do_brk function for the brk system call in Linux kernel 2.4.22 and earlier allows local users to gain root privileges.
24 CVE-2003-0959 DoS Overflow +Priv 2003-12-31 2009-04-08
10.0
Admin Remote Low Not required Complete Complete Complete
Multiple integer overflows in the 32bit emulation for AMD64 architectures in Linux 2.4 kernel before 2.4.21 allows attackers to cause a denial of service or gain root privileges via unspecified vectors that trigger copy_from_user function calls with improper length arguments.
25 CVE-2003-0954 Overflow +Priv 2003-12-31 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in rcp for AIX 4.3.3, 5.1 and 5.2 allows local users to gain privileges.
26 CVE-2003-0951 +Priv 2003-12-15 2009-03-04
7.5
User Remote Low Not required Partial Partial Partial
Partition Manager (parmgr) in HP-UX B.11.23 does not properly validate certificates that are provided by the cimserver, which allows attackers to obtain sensitive data or gain privileges.
27 CVE-2003-0938 +Priv 2003-12-15 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
vos24u.c in SAP database server (SAP DB) 7.4.03.27 and earlier allows local users to gain SYSTEM privileges via a malicious "NETAPI32.DLL" in the current working directory, which is found and loaded by SAP DB before the real DLL, as demonstrated using the SQLAT stored procedure.
28 CVE-2003-0936 +Priv 2003-12-15 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
Symantec PCAnywhere 10.x and 11, when started as a service, allows attackers to gain SYSTEM privileges via the help interface using AWHOST32.exe.
29 CVE-2003-0898 +Priv 2003-11-17 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
IBM DB2 7.2 before FixPak 10a, and earlier versions including 7.1, allows local users to overwrite arbitrary files and gain privileges via a symlink attack on (1) db2job and (2) db2job2.
30 CVE-2003-0881 +Priv 2003-11-03 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Mail in Mac OS X before 10.3, when configured to use MD5 Challenge Response, uses plaintext authentication if the CRAM-MD5 hashed login fails, which could allow remote attackers to gain privileges by sniffing the password.
31 CVE-2003-0848 Overflow +Priv 2003-11-17 2010-08-21
4.6
User Local Low Not required Partial Partial Partial
Heap-based buffer overflow in main.c of slocate 2.6, and possibly other versions, may allow local users to gain privileges via a modified slocate database that causes a negative "pathlen" value to be used.
32 CVE-2003-0840 Overflow +Priv 2003-11-17 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in dtprintinfo on HP-UX 11.00, and possibly other operating systems, allows local users to gain root privileges via a long DISPLAY environment variable.
33 CVE-2003-0830 Overflow +Priv 2003-11-17 2008-09-10
4.6
User Local Low Not required Partial Partial Partial
Buffer overflow in marbles 1.0.2 and earlier allows local users to gain privileges via a long HOME environment variable.
34 CVE-2003-0787 +Priv 2003-11-17 2008-09-10
7.5
User Remote Low Not required Partial Partial Partial
The PAM conversation function in OpenSSH 3.7.1 and 3.7.1p1 interprets an array of structures as an array of pointers, which allows attackers to modify the stack and possibly gain privileges.
35 CVE-2003-0786 +Priv 2003-11-17 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
The SSH1 PAM challenge response authentication in OpenSSH 3.7.1 and 3.7.1p1, when Privilege Separation is disabled, does not check the result of the authentication attempt, which can allow remote attackers to gain privileges.
36 CVE-2003-0784 +Priv 2003-10-06 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
Format string vulnerability in tsm for the bos.rte.security fileset on AIX 5.2 allows remote attackers to gain root privileges via login, and local users to gain privileges via login, su, or passwd, with a username that contains format string specifiers.
37 CVE-2003-0783 Overflow +Priv 2003-10-06 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Multiple buffer overflows in hztty 2.0 allow local users to gain root privileges.
38 CVE-2003-0759 Overflow +Priv 2003-10-06 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in db2licm in IBM DB2 Universal Data Base 7.2 before Fixpak 10a allows local users to gain root privileges via a long command line argument.
39 CVE-2003-0758 Overflow +Priv 2003-10-06 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in db2dart in IBM DB2 Universal Data Base 7.2 before Fixpak 10 allows local users to gain root privileges via a long command line argument.
40 CVE-2003-0745 +Priv 2003-10-20 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
SNMPc 6.0.8 and earlier performs authentication to the server on the client side, which allows remote attackers to gain privileges by decrypting the password that is returned by the server.
41 CVE-2003-0732 +Priv +Info 2003-10-20 2008-09-05
10.0
Admin Remote Low Not required Complete Complete Complete
CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to obtain restricted information and possibly gain administrative privileges by changing the "guest" user to the Admin user on the Modify or delete users pages.
42 CVE-2003-0731 +Priv 2003-10-20 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
CiscoWorks Common Management Foundation (CMF) 2.1 and earlier allows the guest user to gain administrative privileges via a certain POST request to com.cisco.nm.cmf.servlet.CsAuthServlet, possibly involving the "cmd" parameter with a modifyUser value and a modified "priviledges" parameter.
43 CVE-2003-0724 +Priv 2003-10-20 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
ssh on HP Tru64 UNIX 5.1B and 5.1A does not properly handle RSA signatures when digital certificates and RSA keys are used, which could allow local and remote attackers to gain privileges.
44 CVE-2003-0722 +Priv 2003-09-22 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
The default installation of sadmind on Solaris uses weak authentication (AUTH_SYS), which allows local and remote attackers to spoof Solstice AdminSuite clients and gain root privileges via a certain sequence of RPC packets.
45 CVE-2003-0704 +Priv 2003-09-17 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
KisMAC before 0.05d trusts user-supplied variables when chown'ing files or directories, which allows local users to gain privileges via the $DRIVER_KEXT environment variable in (1) viha_driver.sh, (2) macjack_load.sh, (3) airojack_load.sh, (4) setuid_enable.sh, (5) setuid_disable.sh, and using a "similar technique" for (6) viha_prep.sh and (7) viha_unprep.sh.
46 CVE-2003-0703 +Priv 2003-09-17 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
KisMAC before 0.05d trusts user-supplied variables to load arbitrary kernels or kernel modules, which allows local users to gain privileges via the $DRIVER_KEXT environment variable as used in (1) viha_driver.sh, (2) macjack_load.sh, or (3) airojack_load.sh, or (4) via "similar techniques" using exchangeKernel.sh.
47 CVE-2003-0697 DoS +Priv 2003-10-06 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
Format string vulnerability in lpd in the bos.rte.printers fileset for AIX 4.3 through 5.2, with debug enabled, allows local users to cause a denial of service (crash) or gain root privileges.
48 CVE-2003-0690 +Priv 2003-10-06 2008-09-10
10.0
Admin Remote Low Not required Complete Complete Complete
KDM in KDE 3.1.3 and earlier does not verify whether the pam_setcred function call succeeds, which may allow attackers to gain root privileges by triggering error conditions within PAM modules, as demonstrated in certain configurations of the MIT pam_krb5 module.
49 CVE-2003-0655 +Priv 2003-08-27 2008-09-10
7.2
Admin Local Low Not required Complete Complete Complete
rscsi in cdrtools 2.01 and earlier allows local users to overwrite arbitrary files and gain root privileges by specifying the target file as a command line argument, which is modified while rscsi is running with privileges.
50 CVE-2003-0652 Overflow +Priv 2003-08-27 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Buffer overflow in xtokkaetama allows local users to gain privileges via a long -nickname command line argument, a different vulnerability than CVE-2003-0611.
Total number of vulnerabilities : 144   Page : 1 (This Page)2 3
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.