2003 CVE Vulnerabilities
1,555 CVEs published in 2003.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2003-1119 | — | — | 2.0% | Dec 31, 2003 | SSH Secure Shell before 3.2.9 allows remote attackers to cause a denial of service via malformed BER/DER packets. |
| CVE-2003-1309 | — | — | 2.2% | Dec 31, 2003 | The DeviceIoControl function in the TrueVector Device Driver (VSDATANT) in ZoneAlarm before 3.7.211, Pro before 4.0.146.... |
| CVE-2003-1308 | — | — | 1.3% | Dec 31, 2003 | CRLF injection vulnerability in fvwm-menu-directory for fvwm 2.5.x before 2.5.10 and 2.4.x before 2.4.18 allows local us... |
| CVE-2003-0463 | — | — | — | Dec 31, 2003 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. ... |
| CVE-2003-1211 | — | — | 1.5% | Dec 31, 2003 | Cross-site scripting (XSS) vulnerability in search.asp for MaxWebPortal 1.30 and possibly earlier versions allows remote... |
| CVE-2003-1314 | — | — | 2.6% | Dec 31, 2003 | PHP remote file inclusion vulnerability in admin/auth.php in EternalMart Guestbook (EMGB) 1.1 allows remote attackers to... |
| CVE-2003-1311 | — | — | 1.4% | Dec 31, 2003 | siteminderagent/SmMakeCookie.ccc in Netegrity SiteMinder does not ensure that the TARGET parameter names a valid redirec... |
| CVE-2003-1312 | — | — | 1.0% | Dec 31, 2003 | siteminderagent/SmMakeCookie.ccc in Netegrity SiteMinder places a session ID string in the value of the SMSESSION parame... |
| CVE-2003-1316 | — | — | 1.4% | Dec 31, 2003 | mod.php in eNdonesia 8.2 allows remote attackers to obtain sensitive information via a ' (quote) value in the lng parame... |
| CVE-2003-1315 | — | — | 1.3% | Dec 31, 2003 | SQL injection vulnerability in auth.php in Land Down Under (LDU) v601 and earlier allows remote attackers to execute arb... |
| CVE-2003-1318 | — | — | 3.1% | Dec 31, 2003 | Twilight Webserver 1.3.3.0 allows remote attackers to cause a denial of service (application crash) via a GET request fo... |
| CVE-2003-1317 | — | — | 3.8% | Dec 31, 2003 | Cross-site scripting (XSS) vulnerability in mod.php in eNdonesia 8.2 allows remote attackers to inject arbitrary web scr... |
| CVE-2003-1154 | — | — | 1.7% | Dec 31, 2003 | MAILsweeper for SMTP 4.3 allows remote attackers to bypass virus protection via a mail message with a malformed zip atta... |
| CVE-2003-1329 | — | — | 1.3% | Dec 31, 2003 | ftpd.c in wu-ftpd 2.6.2, when running on "operating systems that only allow one non-connected socket bound to the same l... |
| CVE-2003-1332 | — | — | 5.0% | Dec 31, 2003 | Stack-based buffer overflow in the reply_nttrans function in Samba 2.2.7a and earlier allows remote attackers to execute... |
| CVE-2003-1327 | — | — | 3.3% | Dec 31, 2003 | Buffer overflow in the SockPrintf function in wu-ftpd 2.6.2 and earlier, when compiled with MAIL_ADMIN option enabled on... |
| CVE-2003-1120 | — | — | 0.3% | Dec 31, 2003 | Race condition in SSH Tectia Server 4.0.3 and 4.0.4 for Unix, when the password change plugin (ssh-passwd-plugin) is ena... |
| CVE-2003-1322 | — | — | 5.7% | Dec 31, 2003 | Multiple stack-based buffer overflows in Atrium MERCUR IMAPD in MERCUR Mailserver before 4.2.15.0 allow remote attackers... |
| CVE-2003-1324 | — | — | 0.3% | Dec 31, 2003 | Race condition in the can_open function in Elm ME+ 2.4, when installed setgid mail and the operating system lacks POSIX ... |
| CVE-2003-1323 | — | — | 0.9% | Dec 31, 2003 | Elm ME+ 2.4 before PL109S, when installed setgid mail and the operating system lacks POSIX saved ID support, allows loca... |
| CVE-2003-1133 | — | — | 0.4% | Dec 31, 2003 | Rit Research Labs The Bat! 1.0.11 through 2.0 creates new accounts with insecure ACLs, which allows local users to read ... |
| CVE-2003-1330 | — | — | 1.4% | Dec 31, 2003 | Clearswift MAILsweeper for SMTP 4.3.6 SP1 does not execute custom "on strip unsuccessful" hooks, which allows remote att... |
| CVE-2003-1335 | — | — | 1.5% | Dec 31, 2003 | Directory traversal vulnerability in Kai Blankenhorn Bitfolge simple and nice index file (aka snif) before 1.2.5 allows ... |
| CVE-2003-1331 | — | — | 3.3% | Dec 31, 2003 | Stack-based buffer overflow in the mysql_real_connect function in the MySql client library (libmysqlclient) 4.0.13 and e... |
| CVE-2003-1362 | — | — | 2.3% | Dec 31, 2003 | Bastille B.02.00.00 of HP-UX 11.00 and 11.11 does not properly configure the (1) NOVRFY and (2) NOEXPN options in the se... |
Check if your code is affected by 2003 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now