Buffer overflow in TelCondex SimpleWebServer 2.12.30210 Build3285 allows remote attackers to execute arbitrary code via a long HTTP Referer header.
Max CVSS
7.5
EPSS Score
2.37%
Published
2003-10-29
Updated
2017-07-11
Buffer overflow in the portmapper service (PMAP.NLM) in Novell NetWare 6 SP3 and ZenWorks for Desktops 3.2 SP2 through 4.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via unknown attack vectors.
Max CVSS
7.5
EPSS Score
12.61%
Published
2003-10-27
Updated
2017-07-11
Buffer overflow in Musicqueue 1.2.0 allows local users to execute arbitrary code via a long language variable in the configuration file.
Max CVSS
10.0
EPSS Score
0.28%
Published
2003-10-27
Updated
2017-07-11
Multiple buffer overflows in XShisen allow attackers to execute arbitrary code via a long (1) -KCONV command line option or (2) XSHISENLIB environment variable.
Max CVSS
4.6
EPSS Score
0.09%
Published
2003-10-03
Updated
2017-07-11
lsh daemon (lshd) does not properly return from certain functions in (1) read_line.c, (2) channel_commands.c, or (3) client_keyexchange.c when long input is provided, which could allow remote attackers to execute arbitrary code via a heap-based buffer overflow attack.
Max CVSS
7.5
EPSS Score
6.33%
Published
2003-10-06
Updated
2016-10-18
Multiple buffer overflows in UMN gopher daemon (gopherd) 2.x and 3.x before 3.0.6 allows attackers to execute arbitrary code via (1) a long filename as a result of a LIST command, and (2) the GSisText function, which calculates the view-type.
Max CVSS
7.5
EPSS Score
0.63%
Published
2003-10-06
Updated
2016-10-18
Buffer overflow in sys_cmd.c for gtkftpd 1.0.4 and earlier allows remote attackers to execute arbitrary code by creating long directory names and listing them with a LIST command.
Max CVSS
10.0
EPSS Score
1.22%
Published
2003-10-20
Updated
2008-09-10
Heap-based buffer overflow in smtp_in.c for Exim 3 (exim3) before 3.36 and Exim 4 (exim4) before 4.21 may allow remote attackers to execute arbitrary code via an invalid (1) HELO or (2) EHLO argument with a large number of spaces followed by a NULL character and a newline, which is not properly trimmed before the "(no argument given)" string is appended to the buffer.
Max CVSS
7.5
EPSS Score
12.90%
Published
2003-10-20
Updated
2016-10-18
Multiple integer overflows in the font libraries for XFree86 4.3.0 allow local or remote attackers to cause a denial of service or execute arbitrary code via heap-based and stack-based buffer overflow attacks.
Max CVSS
7.5
EPSS Score
5.88%
Published
2003-10-20
Updated
2016-10-18
Buffer overflow in Tellurian TftpdNT 1.8 allows remote attackers to execute arbitrary code via a TFTP request with a long filename.
Max CVSS
7.5
EPSS Score
2.69%
Published
2003-10-20
Updated
2016-10-18
Buffer overflow in the RTSP protocol parser for the View Source plug-in (vsrcplin.so or vsrcplin3260.dll) for RealNetworks Helix Universal Server 9 and RealSystem Server 8, 7 and RealServer G2 allows remote attackers to execute arbitrary code.
Max CVSS
7.5
EPSS Score
89.06%
Published
2003-10-20
Updated
2008-09-05
Buffer overflow in gkrellmd for gkrellm 2.1.x before 2.1.14 may allow remote attackers to execute arbitrary code.
Max CVSS
7.5
EPSS Score
1.28%
Published
2003-10-20
Updated
2008-09-10
Buffer overflow in the whois client, which is not setuid but is sometimes called from within CGI programs, may allow remote attackers to execute arbitrary code via a long command line option.
Max CVSS
7.5
EPSS Score
0.72%
Published
2003-10-20
Updated
2008-09-10
Format string vulnerability in LinuxNode (node) before 0.3.2 may allow attackers to cause a denial of service or execute arbitrary code.
Max CVSS
7.5
EPSS Score
0.24%
Published
2003-10-20
Updated
2008-09-05
Buffer overflow in LinuxNode (node) before 0.3.2 allows remote attackers to execute arbitrary code.
Max CVSS
7.5
EPSS Score
0.80%
Published
2003-10-20
Updated
2008-09-05
Unknown vulnerability in an ISAPI plugin for ISS Server Sensor 7.0 XPU 20.16, 20.18, and possibly other versions before 20.19, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code in Internet Information Server (IIS) via a certain URL through SSL.
Max CVSS
5.0
EPSS Score
3.70%
Published
2003-10-20
Updated
2017-07-11
Multiple "buffer management errors" in OpenSSH before 3.7.1 may allow attackers to cause a denial of service or execute arbitrary code using (1) buffer_init in buffer.c, (2) buffer_free in buffer.c, or (3) a separate function in channels.c, a different vulnerability than CVE-2003-0693.
Max CVSS
7.5
EPSS Score
1.54%
Published
2003-10-06
Updated
2018-05-03

CVE-2003-0694

Public exploit
The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.
Max CVSS
10.0
EPSS Score
5.70%
Published
2003-10-06
Updated
2018-10-30
The getgrouplist function in GNU libc (glibc) 2.2.4 and earlier allows attackers to cause a denial of service (segmentation fault) and execute arbitrary code when a user is a member of a large number of groups, which can cause a buffer overflow.
Max CVSS
7.5
EPSS Score
0.32%
Published
2003-10-20
Updated
2008-09-10
Buffer overflow in PAM SMB module (pam_smb) 1.1.6 and earlier, when authenticating to a remote service, allows remote attackers to execute arbitrary code.
Max CVSS
7.5
EPSS Score
56.31%
Published
2003-10-20
Updated
2018-05-03
Buffer overflow in Microsoft Wordperfect Converter allows remote attackers to execute arbitrary code via modified data offset and data size parameters in a Corel WordPerfect file.
Max CVSS
7.5
EPSS Score
9.29%
Published
2003-10-20
Updated
2018-10-12
Buffer overflow in the ActiveX control for Microsoft Access Snapshot Viewer for Access 97, 2000, and 2002 allows remote attackers to execute arbitrary code via long parameters to the control.
Max CVSS
7.5
EPSS Score
7.72%
Published
2003-10-20
Updated
2018-10-12
Heap-based buffer overflow in VBE.DLL and VBE6.DLL of Microsoft Visual Basic for Applications (VBA) SDK 5.0 through 6.3 allows remote attackers to execute arbitrary code via a document with a long ID parameter.
Max CVSS
10.0
EPSS Score
94.69%
Published
2003-10-20
Updated
2018-10-12
23 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!