Max CVSS | 10.0 | Min CVSS | 2.1 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2004-0112 | 5.0 |
The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a
|
15-02-2024 - 20:54 | 23-11-2004 - 05:00 | |
CVE-2003-1013 | 5.0 |
The Q.931 dissector in Ethereal before 0.10.0, and Tethereal, allows remote attackers to cause a denial of service (crash) via a malformed Q.931, which triggers a null dereference.
|
14-02-2024 - 01:17 | 05-01-2004 - 05:00 | |
CVE-2003-1012 | 5.0 |
The SMB dissector in Ethereal before 0.10.0 allows remote attackers to cause a denial of service via a malformed SMB packet that triggers a segmentation fault during processing of Selected packets.
|
14-02-2024 - 01:17 | 05-01-2004 - 05:00 | |
CVE-2004-0079 | 5.0 |
The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.
|
28-12-2023 - 15:33 | 23-11-2004 - 05:00 | |
CVE-2004-0081 | 5.0 |
OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.
|
08-11-2021 - 15:48 | 23-11-2004 - 05:00 | |
CVE-2003-0542 | 7.2 |
Multiple stack-based buffer overflows in (1) mod_alias and (2) mod_rewrite for Apache before 1.3.29 allow attackers to create configuration files to cause a denial of service (crash) or execute arbitrary code via a regular expression with more than 9
|
06-06-2021 - 11:15 | 03-11-2003 - 05:00 | |
CVE-2004-0082 | 7.5 |
The mksmbpasswd shell script (mksmbpasswd.sh) in Samba 3.0.0 and 3.0.1, when creating an account but marking it as disabled, may overwrite the user password with an uninitialized buffer, which could enable the account with a more easily guessable pas
|
30-10-2018 - 16:25 | 03-03-2004 - 05:00 | |
CVE-2004-0057 | 5.0 |
The rawprint function in the ISAKMP decoding routines (print-isakmp.c) for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (segmentation fault) via malformed ISAKMP packets that cause invalid "len" or "loc" values to be
|
19-10-2018 - 15:29 | 17-02-2004 - 05:00 | |
CVE-2002-0053 | 7.5 |
Buffer overflow in SNMP agent service in Windows 95/98/98SE, Windows NT 4.0, Windows 2000, and Windows XP allows remote attackers to cause a denial of service or execute arbitrary code via a malformed management request. NOTE: this candidate may be
|
12-10-2018 - 21:30 | 08-03-2002 - 05:00 | |
CVE-2001-0045 | 10.0 |
The default permissions for the RAS Administration key in Windows NT 4.0 allows local users to execute arbitrary commands by changing the value to point to a malicious DLL, aka one of the "Registry Permissions" vulnerabilities.
|
12-10-2018 - 21:30 | 16-02-2001 - 05:00 | |
CVE-2001-0047 | 7.5 |
The default permissions for the MTS Package Administration registry key in Windows NT 4.0 allows local users to install or modify arbitrary Microsoft Transaction Server (MTS) packages and gain privileges, aka one of the "Registry Permissions" vulnera
|
12-10-2018 - 21:30 | 16-02-2001 - 05:00 | |
CVE-2001-0046 | 4.6 |
The default permissions for the SNMP Parameters registry key in Windows NT 4.0 allows remote attackers to read and possibly modify the SNMP community strings to obtain sensitive information or modify network configuration, aka one of the "Registry Pe
|
12-10-2018 - 21:30 | 16-02-2001 - 05:00 | |
CVE-2003-0985 | 7.2 |
The mremap system call (do_mremap) in Linux kernel 2.4.x before 2.4.21, and possibly other versions before 2.4.24, does not properly perform bounds checks, which allows local users to cause a denial of service and possibly gain privileges by causing
|
03-05-2018 - 01:29 | 20-01-2004 - 05:00 | |
CVE-2004-0077 | 7.2 |
The do_mremap function for the mremap system call in Linux 2.2 to 2.2.25, 2.4 to 2.4.24, and 2.6 to 2.6.2, does not properly check the return value from the do_munmap function when the maximum number of VMA descriptors is exceeded, which allows local
|
03-05-2018 - 01:29 | 03-03-2004 - 05:00 | |
CVE-2003-0935 | 6.4 |
Net-SNMP before 5.0.9 allows a user or community to access data in MIB objects, even if that data is not allowed to be viewed.
|
11-10-2017 - 01:29 | 01-12-2003 - 05:00 | |
CVE-2004-0083 | 10.0 |
Buffer overflow in ReadFontAlias from dirfile.c of XFree86 4.1.0 through 4.3.0 allows local users and remote attackers to execute arbitrary code via a font alias file (font.alias) with a long token, a different vulnerability than CVE-2004-0084 and CV
|
11-10-2017 - 01:29 | 03-03-2004 - 05:00 | |
CVE-2004-0154 | 5.0 |
rpc.mountd in nfs-utils after 1.0.3 and before 1.0.6 allows attackers to cause a denial of service (crash) via an NFS mount of a directory from a client whose reverse DNS lookup name is different from the forward lookup name.
|
11-10-2017 - 01:29 | 14-06-2004 - 04:00 | |
CVE-2004-0084 | 10.0 |
Buffer overflow in the ReadFontAlias function in XFree86 4.1.0 to 4.3.0, when using the CopyISOLatin1Lowered function, allows local or remote authenticated users to execute arbitrary code via a malformed entry in the font alias (font.alias) file, a d
|
11-10-2017 - 01:29 | 03-03-2004 - 05:00 | |
CVE-2004-0010 | 7.2 |
Stack-based buffer overflow in the ncp_lookup function for ncpfs in Linux kernel 2.4.x allows local users to gain privileges.
|
11-10-2017 - 01:29 | 03-03-2004 - 05:00 | |
CVE-2003-1023 | 7.5 |
Stack-based buffer overflow in vfs_s_resolve_symlink of vfs/direntry.c for Midnight Commander (mc) 4.6.0 and earlier, and possibly later versions, allows remote attackers to execute arbitrary code during symlink conversion.
|
11-10-2017 - 01:29 | 20-01-2004 - 05:00 | |
CVE-2003-0973 | 5.0 |
Unknown vulnerability in mod_python 3.0.x before 3.0.4, and 2.7.x before 2.7.9, allows remote attackers to cause a denial of service (httpd crash) via a certain query string.
|
11-10-2017 - 01:29 | 15-12-2003 - 05:00 | |
CVE-2003-0848 | 4.6 |
Heap-based buffer overflow in main.c of slocate 2.6, and possibly other versions, may allow local users to gain privileges via a modified slocate database that causes a negative "pathlen" value to be used.
|
11-10-2017 - 01:29 | 17-11-2003 - 05:00 | |
CVE-2004-0110 | 7.5 |
Buffer overflow in the (1) nanohttp or (2) nanoftp modules in XMLSoft Libxml 2 (Libxml2) 2.6.0 through 2.6.5 allow remote attackers to execute arbitrary code via a long URL.
|
11-10-2017 - 01:29 | 15-03-2004 - 05:00 | |
CVE-2003-0984 | 4.6 |
Real time clock (RTC) routines in Linux kernel 2.4.23 and earlier do not properly initialize their structures, which could leak kernel data to user space.
|
11-10-2017 - 01:29 | 05-01-2004 - 05:00 | |
CVE-2003-0977 | 7.5 |
CVS server before 1.11.10 may allow attackers to cause the CVS server to create directories and files in the file system root directory via malformed module requests.
|
11-10-2017 - 01:29 | 05-01-2004 - 05:00 | |
CVE-2004-0106 | 7.2 |
Multiple unknown vulnerabilities in XFree86 4.1.0 to 4.3.0, related to improper handling of font files, a different set of vulnerabilities than CVE-2004-0083 and CVE-2004-0084.
|
11-10-2017 - 01:29 | 03-03-2004 - 05:00 | |
CVE-2004-0097 | 10.0 |
Multiple vulnerabilities in PWLib before 1.6.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.
|
11-10-2017 - 01:29 | 03-03-2004 - 05:00 | |
CVE-2004-0003 | 4.6 |
Unknown vulnerability in Linux kernel before 2.4.22 allows local users to gain privileges, related to "R128 DRI limits checking."
|
11-10-2017 - 01:29 | 03-03-2004 - 05:00 | |
CVE-2004-0107 | 4.6 |
The (1) post and (2) trigger scripts in sysstat 4.0.7 and earlier allow local users to overwrite arbitrary files via symlink attacks on temporary files, a different vulnerability than CVE-2004-0108.
|
11-10-2017 - 01:29 | 15-04-2004 - 04:00 | |
CVE-2004-0111 | 5.0 |
gdk-pixbuf before 0.20 allows attackers to cause a denial of service (crash) via a malformed bitmap (BMP) file.
|
10-10-2017 - 01:30 | 15-04-2004 - 04:00 | |
CVE-2004-0001 | 7.2 |
Unknown vulnerability in the eflags checking in the 32-bit ptrace emulation for the Linux kernel on AMD64 systems allows local users to gain privileges.
|
10-10-2017 - 01:30 | 17-02-2004 - 05:00 | |
CVE-2003-0924 | 3.7 |
netpbm 9.25 and earlier does not properly create temporary files, which allows local users to overwrite arbitrary files.
|
10-10-2017 - 01:30 | 17-02-2004 - 05:00 | |
CVE-2003-0988 | 7.5 |
Buffer overflow in the VCF file information reader for KDE Personal Information Management (kdepim) suite in KDE 3.1.0 through 3.1.4 allows attackers to execute arbitrary code via a VCF file.
|
10-10-2017 - 01:30 | 17-02-2004 - 05:00 | |
CVE-2004-0078 | 7.5 |
Buffer overflow in the index menu code (menu_pad_string of menu.c) for Mutt 1.4.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via certain mail messages.
|
10-10-2017 - 01:30 | 03-03-2004 - 05:00 | |
CVE-2004-0075 | 2.1 |
The Vicam USB driver in Linux before 2.4.25 does not use the copy_from_user function when copying data from userspace to kernel space, which crosses security boundaries and allows local users to cause a denial of service.
|
10-10-2017 - 01:30 | 15-03-2004 - 05:00 |