Buffer overflow in search.cgi for mnoGoSearch 3.1.20 allows remote attackers to execute arbitrary code via a long ul parameter. Date published : 2003-06-20 http://www.securityfocus.com/bid/7865 http://lists.grok.org.uk/pipermail/full-disclosure/2003-June/005543.html
Buffer overflow in mikmod 3.1.6 and earlier allows remote attackers to execute arbitrary code via an archive file that contains a file with a long filename. Date published : 2003-06-20 http://www.debian.org/security/2003/dsa-320 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10194
Cross-site scripting (XSS) vulnerability in the secure redirect function of RSA ACE/Agent 5.0 for Windows, and 5.x for Web, allows remote attackers to insert arbitrary web script and possibly cause users to enter a...
Multiple vulnerabilities in noweb 2.9 and earlier creates temporary files insecurely, which allows local users to overwrite arbitrary files via multiple vectors including the noroff script. Date published : 2003-06-20 http://www.debian.org/security/2003/dsa-323
dexconf in XFree86 Xserver 4.1.0-2 creates the /dev/dri directory with insecure permissions (666), which allows local users to replace or create files in the root file system. Date published : 2003-06-18 http://groups.google.com/groups?selm=20010829121505.A16004%40compusol.com.au http://www.redhat.com/support/errata/RHSA-2003-067.html
Buffer overflow in net_swapscore for typespeed 0.4.1 and earlier allows remote attackers to execute arbitrary code. Date published : 2003-06-18 http://marc.info/?l=bugtraq&m=105553002105111&w=2 http://www.debian.org/security/2003/dsa-322
Various PDF viewers including (1) Adobe Acrobat 5.06 and (2) Xpdf 1.01 allow remote attackers to execute arbitrary commands via shell metacharacters in an embedded hyperlink. Date published : 2003-06-18 http://marc.info/?l=bugtraq&m=105777963019186&w=2 http://www.kb.cert.org/vuls/id/200132
Multiple buffer overflows in gnocatan 0.6.1 and earlier allow attackers to execute arbitrary code. Date published : 2003-06-18 http://www.debian.org/security/2003/dsa-315
Ethereal 0.9.12 and earlier does not handle certain strings properly, with unknown consequences, in the (1) BGP, (2) WTP, (3) DNS, (4) 802.11, (5) ISAKMP, (6) WSP, (7) CLNP, (8) ISIS, and (9) RMI...
The tvb_get_nstringz0 function in Ethereal 0.9.12 and earlier does not properly handle a zero-length buffer size, with unknown consequences. Date published : 2003-06-18 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000662 http://www.ethereal.com/appnotes/enpa-sa-00010.html
The SPNEGO dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service (crash) via an invalid ASN.1 value. Date published : 2003-06-18 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000662 http://www.ethereal.com/appnotes/enpa-sa-00010.html
The OSI dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via invalid IPv4 or IPv6 prefix lengths, possibly triggering a buffer overflow....
Unknown vulnerability in the DCERPC (DCE/RPC) dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service (memory consumption) via a certain NDR string. Date published : 2003-06-18 http://www.kb.cert.org/vuls/id/542540 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000662
SMC Networks Barricade Wireless Cable/DSL Broadband Router SMC7004VWBR allows remote attackers to cause a denial of service via certain packets to PPTP port 1723 on the internal interface. Date published : 2003-06-18 http://www.idefense.com/advisory/06.11.03.txt