|
314321
|
9.8 |
CRITICAL
Network
|
acme
|
thttpd
|
Buffer overflow in defang in libhttpd.c for thttpd 2.21 to 2.23b1 allows remote attackers to execute arbitrary code via requests that contain '<' or '>' characters, which trigger the overflow when th…
|
CWE-131
Incorrect Calculation of Buffer Size
|
CVE-2003-0899
|
2024-02-14 10:17 |
2003-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314322
|
- |
|
phpkit
|
phpkit
|
Cross-site scripting (XSS) vulnerability in include.php in PHPKIT 1.6.02 and 1.6.03 allows remote attackers to inject arbitrary web script or HTML via the contact_email parameter.
|
NVD-CWE-Other
|
CVE-2003-1187
|
2024-02-14 10:17 |
2003-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314323
|
- |
|
realnetworks
|
realone_desktop_manager
realone_player
realone_enterprise_desktop
|
RealOne player allows remote attackers to execute arbitrary script in the "My Computer" zone via a SMIL presentation with a URL that references a scripting protocol, which is executed in the security…
|
NVD-CWE-Other
|
CVE-2003-0726
|
2024-02-14 10:17 |
2003-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314324
|
- |
|
ethereal_group
|
ethereal
|
Unknown vulnerability in the DCERPC (DCE/RPC) dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service (memory consumption) via a certain NDR string.
|
NVD-CWE-Other
|
CVE-2003-0428
|
2024-02-14 10:17 |
2003-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314325
|
- |
|
ethereal_group
|
ethereal
|
The OSI dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via invalid IPv4 or IPv6 prefix lengths, possibly triggering …
|
NVD-CWE-Other
|
CVE-2003-0429
|
2024-02-14 10:17 |
2003-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314326
|
- |
|
ethereal_group
|
ethereal
|
The SPNEGO dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service (crash) via an invalid ASN.1 value.
|
NVD-CWE-Other
|
CVE-2003-0430
|
2024-02-14 10:17 |
2003-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314327
|
- |
|
ethereal_group
|
ethereal
|
The tvb_get_nstringz0 function in Ethereal 0.9.12 and earlier does not properly handle a zero-length buffer size, with unknown consequences.
|
NVD-CWE-Other
|
CVE-2003-0431
|
2024-02-14 10:17 |
2003-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314328
|
- |
|
ethereal_group
|
ethereal
|
Ethereal 0.9.12 and earlier does not handle certain strings properly, with unknown consequences, in the (1) BGP, (2) WTP, (3) DNS, (4) 802.11, (5) ISAKMP, (6) WSP, (7) CLNP, (8) ISIS, and (9) RMI dis…
|
NVD-CWE-Other
|
CVE-2003-0432
|
2024-02-14 10:17 |
2003-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314329
|
- |
|
ethereal_group
|
ethereal
|
Multiple integer overflow vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) Mount and (2) PPP dissecto…
|
NVD-CWE-Other
|
CVE-2003-0357
|
2024-02-14 10:17 |
2003-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314330
|
- |
|
miniportal
|
miniportal
|
admin.php in miniPortail allows remote attackers to gain administrative privileges by setting the miniPortailAdmin cookie to an "adminok" value.
|
NVD-CWE-Other
|
CVE-2003-0272
|
2024-02-14 10:17 |
2003-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
