Max CVSS 10.0 Min CVSS 4.3 Total Count17
IDCVSSSummaryLast (major) updatePublished
CVE-2003-1414 4.3
Directory traversal vulnerability in parse_xml.cg Apple Darwin Streaming Server 4.1.2 and Apple Quicktime Streaming Server 4.1.1 allows remote attackers to read arbitrary files via a ... (triple dot) in the filename parameter.
06-12-2016 - 21:59 31-12-2003 - 00:00
CVE-2003-0101 10.0
miniserv.pl in (1) Webmin before 1.070 and (2) Usermin before 1.000 does not properly handle metacharacters such as line feeds and carriage returns (CRLF) in Base-64 encoded strings during Basic authentication, which allows remote attackers to spoof
17-10-2016 - 22:29 03-03-2003 - 00:00
CVE-2003-0100 7.5
Buffer overflow in Cisco IOS 11.2.x to 12.0.x allows remote attackers to cause a denial of service and possibly execute commands via a large number of OSPF neighbor announcements.
17-10-2016 - 22:29 03-03-2003 - 00:00
CVE-2003-0055 7.5
Buffer overflow in the MP3 broadcasting module of Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to execute arbitrary code via a long filename.
17-10-2016 - 22:28 07-03-2003 - 00:00
CVE-2003-0054 7.5
Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to execute certain code via a request to port 7070 with the script in an argument to the rtsp DESCRIBE method, which is inserted into a lo
17-10-2016 - 22:28 07-03-2003 - 00:00
CVE-2003-0053 4.3
Cross-site scripting (XSS) vulnerability in parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to insert arbitrary script via the filename parameter, which is inserted into
17-10-2016 - 22:28 07-03-2003 - 00:00
CVE-2003-0052 5.0
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to list arbitrary directories.
17-10-2016 - 22:28 07-03-2003 - 00:00
CVE-2003-0051 5.0
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to obtain the physical path of the server's installation path via a NULL file parameter.
17-10-2016 - 22:28 07-03-2003 - 00:00
CVE-2003-0050 7.5
parse_xml.cgi in Apple Darwin Streaming Administration Server 4.1.2 and QuickTime Streaming Server 4.1.1 allows remote attackers to execute arbitrary code via shell metacharacters.
17-10-2016 - 22:28 07-03-2003 - 00:00
CVE-2002-0974 5.0
Help and Support Center for Windows XP allows remote attackers to delete arbitrary files via a link to the hcp: protocol that accesses uplddrvinfo.htm.
17-10-2016 - 22:23 24-09-2002 - 00:00
CVE-2002-1222 7.1
Buffer overflow in the embedded HTTP server for Cisco Catalyst switches running CatOS 5.4 through 7.3 allows remote attackers to cause a denial of service (reset) via a long HTTP request.
10-09-2008 - 15:14 28-10-2002 - 00:00
CVE-2003-1425 10.0
guestbook.cgi in cPanel 5.0 allows remote attackers to execute arbitrary commands via the template parameter.
05-09-2008 - 16:36 31-12-2003 - 00:00
CVE-2003-1379 5.0
clarkconnectd in ClarkConnect Linux 1.2 allows remote attackers to obtain sensitive information about the server via the characters (1) A, which reveals the date and time, (2) F, (3) M, which reveals 'ifconfig' information, (4) P, which lists the pro
05-09-2008 - 16:36 31-12-2003 - 00:00
CVE-2003-1371 4.3
Nuked-Klan 1.3b, and possibly earlier versions, allows remote attackers to obtain sensitive server information via an op parameter set to phpinfo for the (1) Team, (2) News, or (3) Liens modules.
05-09-2008 - 16:36 31-12-2003 - 00:00
CVE-2003-1370 4.3
Multiple cross-site scripting (XSS) vulnerabilities in Nuked-Klan 1.2b allow remote attackers to inject arbitrary HTML or web script via (1) the Author field in the Guestbook module, (2) the Titre or Pseudo fields in the Forum module, or (3) "La Trib
05-09-2008 - 16:36 31-12-2003 - 00:00
CVE-2003-1240 7.5
PHP remote file inclusion vulnerability in CuteNews 0.88 allows remote attackers to execute arbitrary PHP code via a URL in the cutepath parameter in (1) shownews.php, (2) search.php, or (3) comments.php.
05-09-2008 - 16:36 31-12-2003 - 00:00
CVE-2003-1238 5.8
Cross-site scripting vulnerability (XSS) in Nuked-Klan 1.3 beta and earlier allows remote attackers to steal authentication information via cookies by injecting arbitrary HTML or script into op of the (1) Team, (2) News, and (3) Liens modules.
05-09-2008 - 16:36 31-12-2003 - 00:00
Back to Top Mark selected
Back to Top