CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2003/11/12 5:0 a.m.•49 views

CVE-2003-0933

CVE-2003-0933 affects Conquest 7.2 and earlier. The vulnerability is a buffer overflow in the environment variable handling that can allow a local user to execute arbitrary code. This is caused by processing a long environment variable, leading to potential code execution with local privileges; t...

4.6CVSS7.2AI score0.00311EPSS

Cvelist•added 2003/11/12 5:0 a.m.•19 views

CVE-2003-0933

Buffer overflow in conquest 7.2 and earlier may allow a local user to execute arbitrary code via a long environment variable...

7.2AI score0.00311EPSS

exploitpack•added 2003/11/07 12:0 a.m.•14 views

TerminatorX 3.8 - Multiple Command-Line and Environment Buffer Overrun Vulnerabilities (2)

TerminatorX 3.8 - Multiple Command-Line and Environment Buffer Overrun Vulnerabilities 2 // source: https://www.securityfocus.com/bid/8993/info It has been reported that TerminatorX may be prone to multiple vulnerabilities when handling command-line and environment variable data. As a result, an...

0.1AI score

Exploit DB•added 2003/11/07 12:0 a.m.•28 views

TerminatorX 3.8 - Multiple Command-Line and Environment Buffer Overrun Vulnerabilities (1)

// source: https://www.securityfocus.com/bid/8993/info It has been reported that TerminatorX may be prone to multiple vulnerabilities when handling command-line and environment variable data. As a result, an attacker may be capable of exploiting the application in a variety of ways to execute...

7.4AI score

exploitpack•added 2003/11/07 12:0 a.m.•19 views

TerminatorX 3.8 - Multiple Command-Line and Environment Buffer Overrun Vulnerabilities (1)

TerminatorX 3.8 - Multiple Command-Line and Environment Buffer Overrun Vulnerabilities 1 // source: https://www.securityfocus.com/bid/8993/info It has been reported that TerminatorX may be prone to multiple vulnerabilities when handling command-line and environment variable data. As a result, an...

0.2AI score

Exploit DB•added 2003/11/07 12:0 a.m.•15 views

TerminatorX 3.8 - Multiple Command-Line and Environment Buffer Overrun Vulnerabilities (2)

7.4AI score

Cvelist•added 2003/10/30 5:0 a.m.•15 views

CVE-2002-1570

Heap-based buffer overflow in snmpnetstat for ucd-snmp 4.2.3 and earlier, and net-snmp, allows remote attackers to execute arbitrary code via multiple getnextrequest PDU messages with conflicting ifindex variables, which cause snmpnetstat to write variable data past the end of an array...

8.2AI score0.14976EPSS

Exploits1References4

FreeBSD•added 2003/10/28 12:0 a.m.•22 views

kpopup -- local root exploit and local denial of service

Mitre CVE reports: Format string vulnerability in main.cpp in kpopup 0.9.1-0.9.5pre2 allows local users to cause a denial of service segmentation fault and possibly execute arbitrary code via format string specifiers in command line arguments. misc.cpp in KPopup 0.9.1 trusts the PATH variable whe...

7.2CVSS6.8AI score0.00205EPSS

Exploits2References2

securityvulns•added 2003/10/23 12:0 a.m.•32 views

SUN jdk crossite scripting

jdk undocumented static variable may allow data exchange between sites...

2.4AI score

Exploits0References1Affected Software3

exploitpack•added 2003/10/21 12:0 a.m.•10 views

FuzzyMonkey 2.11 - MyClassifieds Email Variable SQL Injection

FuzzyMonkey 2.11 - MyClassifieds Email Variable SQL Injection source: https://www.securityfocus.com/bid/8863/info It has been reported that FuzzyMonkey MyClassifieds may be prone to a SQL injection vulnerability that may allow an attacker to disclose user passwords by supplying malicious SQL code...

1AI score

Tenable Nessus•added 2003/10/16 12:0 a.m.•43 views

Linksys BEFSX41 System Log Viewer Log_Page_Num Variable Overflow DoS

The remote host seems to be a Linksys EtherFast Cable Firewall/Router. This product is vulnerable to a remote denial of service attack : if logging is enabled, an attacker can specify a long URL which results in the router becoming unresponsive. %NASLMINLEVEL 70300 Linksys EtherFast Cable/DSL...

6.3CVSS5.5AI score0.01181EPSS

Exploits1References2

securityvulns•added 2003/10/08 12:0 a.m.•26 views

HP-UX dtprintinfo buffer overflow

Buffer overflow on oversized DISPLAY variable...

5AI score

Exploit DB•added 2003/10/08 12:0 a.m.•24 views

HP-UX 11 CDE DTPrintInfo - Display Environment Variable Buffer Overflow

source: https://www.securityfocus.com/bid/8795/info It has been reported that dtprintinfo, installed setuid root by default, is susceptible to a locally exploitable buffer overflow vulnerability. The condition is triggered when the value of the DISPLAY environment variable is set to a string...

7.4AI score

OSV•added 2003/10/03 4:0 a.m.•2 views

DEBIAN-CVE-2003-1053

Multiple buffer overflows in XShisen allow attackers to execute arbitrary code via a long 1 -KCONV command line option or 2 XSHISENLIB environment variable...

4.6CVSS8AI score0.0024EPSS

NVD•added 2003/10/03 4:0 a.m.•14 views

CVE-2003-1053

Multiple buffer overflows in XShisen allow attackers to execute arbitrary code via a long 1 -KCONV command line option or 2 XSHISENLIB environment variable...

4.6CVSS7.6AI score0.0024EPSS

Exploits0References7

Cvelist•added 2003/10/01 4:0 a.m.•15 views

CVE-2003-0830

Buffer overflow in marbles 1.0.2 and earlier allows local users to gain privileges via a long HOME environment variable...

6.6AI score0.00182EPSS

securityvulns•added 2003/09/29 12:0 a.m.•25 views

Freesweep buffer overflow

Buffer overflow during HOME variable parsing...

4.6AI score

OSV•added 2003/09/26 12:0 a.m.•16 views

DSA-390 marbles - buffer overflow

Bulletin has no description...

4.6CVSS6.2AI score0.00182EPSS

Cvelist•added 2003/09/19 4:0 a.m.•16 views

CVE-2003-0742

SCO Internet Manager mana allows local users to execute arbitrary programs by setting the REMOTEADDR environment variable to cause menu.mana to run as if it were called from ncsahttpd, then modifying the PATH environment variable to point to a malicious "hostname" program...

7AI score0.00081EPSS