Buffer overflow in Novell iManager (eMFrame 1.2.1) allows remote attackers to cause a denial of service (crash) via a long user name. Date published : 2003-04-02 http://www.securityfocus.com/bid/5117 http://online.securityfocus.com/archive/1/279683
Buffer overflow in AnalogX SimpleServer:Shout 1.0 allows remote attackers to cause a denial of service and execute arbitrary code via a long request to TCP port 8001. Date published : 2003-04-02 http://www.securityfocus.com/bid/5104 http://archives.neohapsis.com/archives/bugtraq/2002-06/0338.html
login.php for PHPAuction allows remote attackers to gain privileges via a direct call to login.php with the action parameter set to "insert," which adds the provided username to the adminUsers table. Date published :...
The URL handler in the manual browser option for Gaim before 0.59.1 allows remote attackers to execute arbitrary script via shell metacharacters in a link. Date published : 2003-04-02 http://www.securityfocus.com/bid/5574 http://marc.info/?l=bugtraq&m=103046442403404&w=2
Buffer overflow in X server (Xsco) in OpenUNIX 8.0.0 and UnixWare 7.1.1, possibly related to XBM/xkbcomp capabilities. Date published : 2003-04-02 http://www.securityfocus.com/bid/5577 ftp://ftp.sco.com/pub/updates/OpenUNIX/CSSA-2002-SCO.38
X server (Xsco) in OpenUNIX 8.0.0 and UnixWare 7.1.1 does not drop privileges before calling programs such as xkbcomp using popen, which could allow local users to gain privileges. Date published : 2003-04-02 http://www.securityfocus.com/bid/5575...
The IRC script included in Light 2.7.x before 2.7.30p5, and 2.8.x before 2.8pre10, running EPIC allows remote attackers to execute arbitrary code if the user joins a channel whose topic includes EPIC4 code. Date...
Buffer overflow in ndcfg command for UnixWare 7.1.1 and Open UNIX 8.0.0 allows local users to execute arbitrary code via a long command line. Date published : 2003-04-02 http://www.securityfocus.com/bid/5551 ftp://ftp.caldera.com/pub/updates/OpenUNIX/CSSA-2002-SCO.36/CSSA-2002-SCO.36.txt
Buffer overflow in AnalogX SimpleServer:WWW 1.16 and earlier allows remote attackers to cause a denial of service (crash) and execute code via a long HTTP request method name. Date published : 2003-04-02 http://www.securityfocus.com/bid/5006 http://archives.neohapsis.com/archives/bugtraq/2002-06/0106.html
Buffer overflow in eDonkey 2000 35.16.60 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long "ed2k:" URL. Date published : 2003-04-02 http://www.securityfocus.com/bid/4951 http://online.securityfocus.com/archive/1/275708
Buffer overflow in TNS Listener for Oracle 9i Database Server on Windows systems, and Oracle 8 on VM, allows local users to execute arbitrary code via a long SERVICE_NAME parameter, which is not properly...
Half-Life Server 1.1.1.0 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via multiple responses to the initial challenge with different cd_key values, which reaches the player limit and prevents...
Cross-site scripting vulnerability in browse.php for PHP(Reactor) 1.2.7 allows remote attackers to execute script as other users via the go parameter in the comments section. Date published : 2003-04-02 http://www.securityfocus.com/bid/4952 http://archives.neohapsis.com/archives/bugtraq/2002-06/0034.html
globals.php in PHP Address before 0.2f, with the PHP allow_url_fopen and register_globals variables enabled, allows remote attackers to execute arbitrary PHP code via a URL to the code in the LangCookie parameter. Date published...