CVSS: 9.8EPSS: 13%CPEs: 105EXPL: 1CVE-2003-0681 – Sendmail 8.12.9 - 'Prescan()' Variant Remote Buffer Overrun
https://notcve.org/view.php?id=CVE-2003-0681
18 Sep 2003 — A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final, or (3) mailer-specific envelope recipients, has unknown consequences. Un "desbordamiento de búfer potencial en el análisis de reglas" (ruleset parsing) en Sendmail 8.12.9 cuando se usan los conjuntos de reglas no estándar: (1) receptor, (2) final, o (3) receptores de envoltorio específicos del enviador de correo, tienen consecuencias desconocidas. • https://www.exploit-db.com/exploits/23154 •
CVSS: 10.0EPSS: 75%CPEs: 163EXPL: 1CVE-2003-0694 – Sendmail SMTP Address prescan Memory Corruption
https://notcve.org/view.php?id=CVE-2003-0694
18 Sep 2003 — The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c. La función de prescan en Sendmail 8.12.9 permite a atacantes remotos ejecutar código arbitrario mediante ataques de desbordamiento de búfer, como se demostró usando la función parseaddr en parseaddr.c. • https://packetstorm.news/files/id/180502 •
CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 0CVE-2003-0285
https://notcve.org/view.php?id=CVE-2003-0285
14 May 2003 — IBM AIX 5.2 and earlier distributes Sendmail with a configuration file (sendmail.cf) with the (1) promiscuous_relay, (2) accept_unresolvable_domains, and (3) accept_unqualified_senders features enabled, which allows Sendmail to be used as an open mail relay for sending spam e-mail. IBM AIX 5.2 y anteriores, distribuyen Sendmail con un fichero de configuración (sendmail.cf) con varias caracteristicas habilitadas, lo que permite a Sendmail ser utilizado como emisor de correo para spam. Las caracteristicas hab... • http://marc.info/?l=bugtraq&m=105284689228961&w=2 •
CVSS: 10.0EPSS: 6%CPEs: 1EXPL: 1CVE-2002-1468 – IBM AIX 4.3.x/5.1 - 'ERRPT' Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-1468
22 Apr 2003 — Buffer overflow in errpt in AIX 4.3.3 allows local users to execute arbitrary code as root. Desbordamiento de búfer en errpt en AIX 4.3.3 con vectores de ataque desconocidos y consecuencias desconocidas. • https://www.exploit-db.com/exploits/21904 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2002-1548
https://notcve.org/view.php?id=CVE-2002-1548
31 Mar 2003 — Unknown vulnerability in autofs on AIX 4.3.0, when using executable maps, allows attackers to execute arbitrary commands as root, possibly related to "string handling around how the executable map is called." • http://archives.neohapsis.com/archives/aix/2002-q4/0002.html •
CVSS: 9.8EPSS: 56%CPEs: 165EXPL: 1CVE-2003-0028
https://notcve.org/view.php?id=CVE-2003-0028
21 Mar 2003 — Integer overflow in the xdrmem_getbytes() function, and possibly other functions, of XDR (external data representation) libraries derived from SunRPC, including libnsl, libc, glibc, and dietlibc, allows remote attackers to execute arbitrary code via certain integer values in length fields, a different vulnerability than CVE-2002-0391. Desbordamiento de entero en la función xdrmem_getbytes(), y posiblemente otras funciones, de librerias XDR (representación de datos externos) derivadas de SunRPC, incluyendo l... • ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-008.txt.asc •
CVSS: 9.8EPSS: 0%CPEs: 91EXPL: 0CVE-2003-0064
https://notcve.org/view.php?id=CVE-2003-0064
03 Mar 2003 — The dtterm terminal emulator allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary commands. El emulador de terminal dtterm permite a atacantes modificar el título de la ventana mediante una cierta secuencia de carácter de escape, y a continuación insertarlo de nuevo en la linea de comandos del... • http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0093.html •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 0CVE-2002-1622
https://notcve.org/view.php?id=CVE-2002-1622
31 Dec 2002 — Buffer overflow in certain RPC routines in IBM AIX 4.3 may allow attackers to execute arbitrary code, related to a "variable data type." • http://www-1.ibm.com/support/search.wss?rs=0&q=IY28706&apar=only •
CVSS: 10.0EPSS: 1%CPEs: 1EXPL: 0CVE-2002-1689
https://notcve.org/view.php?id=CVE-2002-1689
31 Dec 2002 — Unknown vulnerability in the login program on AIX before 4.0 could allow remote users to specify 100 or more environment variables when logging on, which exceeds the length of a certain string, possibly triggering a buffer overflow. • http://archives.neohapsis.com/archives/aix/2002-q1/0005.html •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2002-1690
https://notcve.org/view.php?id=CVE-2002-1690
31 Dec 2002 — Unknown vulnerability in AIX before 4.0 with unknown attack vectors and unknown impact, aka "security issue," as fixed by APAR IY28225. • http://archives.neohapsis.com/archives/aix/2002-q1/0005.html •