CVSS: 7.5EPSS: 0%CPEs: 10EXPL: 0CVE-2004-0801
https://notcve.org/view.php?id=CVE-2004-0801
Unknown vulnerability in foomatic-rip in Foomatic before 3.0.2 allows local users or remote attackers with access to CUPS to execute arbitrary commands. • ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.12/SCOSA-2005.12.txt http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000880 http://lists.suse.com/archive/suse-security-announce/2006-May/0007.html http://secunia.com/advisories/12557 http://secunia.com/advisories/20312 http://sunsolve.sun.com/search/document.do?assetkey=1-66-201005-1 http://sunsolve.sun.com/search/document.do?assetkey=1-77-1000757.1-1 http://www.mandrakesecure.net/en/advisories/advisory.php?name&# •
CVSS: 7.5EPSS: 3%CPEs: 93EXPL: 0CVE-2004-0826
https://notcve.org/view.php?id=CVE-2004-0826
Heap-based buffer overflow in Netscape Network Security Services (NSS) library allows remote attackers to execute arbitrary code via a modified record length field in an SSLv2 client hello message. • http://marc.info/?l=bugtraq&m=109351293827731&w=2 http://www.securityfocus.com/bid/11015 http://xforce.iss.net/xforce/alerts/id/180 https://exchange.xforce.ibmcloud.com/vulnerabilities/16314 •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2004-0742
https://notcve.org/view.php?id=CVE-2004-0742
Sun Java System Portal Server 6.2 (formerly Sun ONE) allows remote authenticated users to obtain Calendar Server privileges and modify Calendar data by changing the display options to a non-default view. Sun Java Portal Sever 6.2 (anteriormente Sun One) permite a usuarios remotos autenticados obtener prilegios de Calendar Server y modificar datos del calendario cambiando las opciones de visualización a una vista no predeterminada. • http://secunia.com/advisories/12134 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57586 http://www.kb.cert.org/vuls/id/881254 http://www.securityfocus.com/bid/10788 https://exchange.xforce.ibmcloud.com/vulnerabilities/16776 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2003-1229
https://notcve.org/view.php?id=CVE-2003-1229
X509TrustManager in (1) Java Secure Socket Extension (JSSE) in SDK and JRE 1.4.0 through 1.4.0_01, (2) JSSE before 1.0.3, (3) Java Plug-in SDK and JRE 1.3.0 through 1.4.1, and (4) Java Web Start 1.0 through 1.2 incorrectly calls the isClientTrusted method when determining server trust, which results in improper validation of digital certificate and allows remote attackers to (1) falsely authenticate peers for SSL or (2) incorrectly validate signed JAR files. • http://archives.neohapsis.com/archives/bugtraq/2003-01/0334.html http://java.sun.com/products/jsse/CHANGES.txt http://secunia.com/advisories/7943 http://securitytracker.com/id?1006007 http://securitytracker.com/id?1007483 http://sunsolve.sun.com/search/document.do?assetkey=1-26-50081-1 http://www.securityfocus.com/bid/6682 http://www.securitytracker.com/id?1006001 http://www1.itrc.hp.com/service/cki/docDisplay.do? • CWE-295: Improper Certificate Validation •
CVSS: 2.1EPSS: 0%CPEs: 3EXPL: 3CVE-2003-1134 – Sun Microsystems Java Virtual Machine 1.x - Security Manager Denial of Service
https://notcve.org/view.php?id=CVE-2003-1134
Sun Java 1.3.1, 1.4.1, and 1.4.2 allows local users to cause a denial of service (JVM crash), possibly by calling the ClassDepth function with a null parameter, which causes a crash instead of generating a null pointer exception. • https://www.exploit-db.com/exploits/23292 http://lists.grok.org.uk/pipermail/full-disclosure/2003-October/012773.html http://www.securityfocus.com/bid/8892 •