2003 CVE Vulnerabilities
1,555 CVEs published in 2003.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2003-1228 | — | — | 14.1% | Dec 31, 2003 | Buffer overflow in the prepare_reply function in request.c for Mathopd 1.2 through 1.5b13, and possibly earlier versions... |
| CVE-2003-1561 | — | — | 1.0% | Dec 31, 2003 | Opera, probably before 7.50, sends Referer headers containing https:// URLs in requests for http:// URLs, which allows r... |
| CVE-2003-1238 | — | — | 2.1% | Dec 31, 2003 | Cross-site scripting vulnerability (XSS) in Nuked-Klan 1.3 beta and earlier allows remote attackers to steal authenticat... |
| CVE-2003-1270 | — | — | 1.4% | Dec 31, 2003 | AN HTTP 1.41e allows remote attackers to cause a denial of service (borken pipe) via an HTTP request to aux.cgi with a l... |
| CVE-2003-1258 | — | — | 1.5% | Dec 31, 2003 | activate.php in versatileBulletinBoard (vBB) 0.9.5 and 0.9.6 allows remote attackers to gain unauthorized administrative... |
| CVE-2003-1267 | — | — | 1.7% | Dec 31, 2003 | GuildFTPd 0.999 allows remote attackers to cause a denial of service (crash) via a GET request for MS-DOS device names s... |
| CVE-2003-1229 | — | — | 4.6% | Dec 31, 2003 | X509TrustManager in (1) Java Secure Socket Extension (JSSE) in SDK and JRE 1.4.0 through 1.4.0_01, (2) JSSE before 1.0.3... |
| CVE-2003-1301 | — | — | 2.5% | Dec 31, 2003 | Sun Java Runtime Environment (JRE) 1.x before 1.4.2_11 and 1.5.x before 1.5.0_06, and as used in multiple web browsers, ... |
| CVE-2003-1257 | — | — | 1.5% | Dec 31, 2003 | find_theni_home.php in E-theni allows remote attackers to obtain sensitive system information via a URL request which ex... |
| CVE-2003-1271 | — | — | 1.8% | Dec 31, 2003 | Cross-site scripting vulnerability (XSS) in AN HTTP 1.41e allows remote attackers to execute arbitrary web script or HTM... |
| CVE-2003-1288 | — | — | 1.9% | Dec 31, 2003 | Multiple race conditions in Linux-VServer 1.22 with Linux kernel 2.4.23 and SMP allow local users to cause a denial of s... |
| CVE-2003-1304 | — | — | 7.2% | Dec 31, 2003 | EarlyImpact ProductCart 1.0 through 2.0 stores database/EIPC.mdb under the web root with insufficient access control, wh... |
| CVE-2003-1265 | — | — | 0.4% | Dec 31, 2003 | Netscape 7.0 and Mozilla 5.0 do not immediately delete messages in the trash folder when users select the 'Empty Trash' ... |
| CVE-2003-1307 | — | — | 1.6% | Dec 31, 2003 | The mod_php module for the Apache HTTP Server allows local users with write access to PHP scripts to send signals to the... |
| CVE-2003-1309 | — | — | 2.2% | Dec 31, 2003 | The DeviceIoControl function in the TrueVector Device Driver (VSDATANT) in ZoneAlarm before 3.7.211, Pro before 4.0.146.... |
| CVE-2003-1310 | — | — | 1.1% | Dec 31, 2003 | The DeviceIoControl function in the Norton Device Driver (NAVAP.sys) in Symantec Norton AntiVirus 2002 allows local user... |
| CVE-2003-1213 | — | — | 2.8% | Dec 31, 2003 | The default installation of MaxWebPortal 1.30 stores the portal database under the web document root with insecure acces... |
| CVE-2003-1236 | — | — | 15.2% | Dec 31, 2003 | Multiple format string vulnerabilities in the logger function in netzio.c for Tanne 0.6.17 allows remote attackers to ex... |
| CVE-2003-1154 | — | — | 1.7% | Dec 31, 2003 | MAILsweeper for SMTP 4.3 allows remote attackers to bypass virus protection via a mail message with a malformed zip atta... |
| CVE-2003-1315 | — | — | 1.3% | Dec 31, 2003 | SQL injection vulnerability in auth.php in Land Down Under (LDU) v601 and earlier allows remote attackers to execute arb... |
| CVE-2003-1230 | — | — | 1.4% | Dec 31, 2003 | The implementation of SYN cookies (syncookies) in FreeBSD 4.5 through 5.0-RELEASE-p3 uses only 32-bit internal keys when... |
| CVE-2003-1317 | — | — | 3.8% | Dec 31, 2003 | Cross-site scripting (XSS) vulnerability in mod.php in eNdonesia 8.2 allows remote attackers to inject arbitrary web scr... |
| CVE-2003-1318 | — | — | 3.1% | Dec 31, 2003 | Twilight Webserver 1.3.3.0 allows remote attackers to cause a denial of service (application crash) via a GET request fo... |
| CVE-2003-1319 | — | — | 5.0% | Dec 31, 2003 | Multiple buffer overflows in SmartFTP 1.0.973, and other versions before 1.0.976, allow remote attackers to execute arbi... |
| CVE-2003-1240 | — | — | 6.9% | Dec 31, 2003 | PHP remote file inclusion vulnerability in CuteNews 0.88 allows remote attackers to execute arbitrary PHP code via a URL... |
Check if your code is affected by 2003 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now