CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2003-0367
https://notcve.org/view.php?id=CVE-2003-0367
10 Jun 2003 — znew in the gzip package allows local users to overwrite arbitrary files via a symlink attack on temporary files. znew en el paquete gzip permite a usuarios locales sobreescribir ficheros arbitrarios mediante un ataque de enlaces simbólicos en ficheros temporales. • http://www.debian.org/security/2003/dsa-308 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 6CVE-2003-0358 – Nethack 3 - Local Buffer Overflow
https://notcve.org/view.php?id=CVE-2003-0358
30 May 2003 — Buffer overflow in (1) nethack 3.4.0 and earlier, and (2) falconseye 1.9.3 and earlier, which is based on nethack, allows local users to gain privileges via a long -s command line option. Desbordamiento de búfer en nethack 3.4.0 y anteriores permite que usuarios locales obtengan privilegios mediante la opción -s en la línea de comandos. • https://www.exploit-db.com/exploits/22233 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 10.0EPSS: 6%CPEs: 4EXPL: 0CVE-2003-0098
https://notcve.org/view.php?id=CVE-2003-0098
26 Feb 2003 — Unknown vulnerability in apcupsd before 3.8.6, and 3.10.x before 3.10.5, allows remote attackers to gain root privileges, possibly via format strings in a request to a slave server. Vulnerabilidad desconocida en apcupsd anteriores a 3.8.6, y 3.10.x anteriores a 3.10.5 permite a atacantes remotos ganar privilegios de root, posiblemente mediante cadenas de formato en una petición a un servidor esclavo. • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2003-015.0.txt •
CVSS: 5.5EPSS: 0%CPEs: 77EXPL: 2CVE-2002-2185
https://notcve.org/view.php?id=CVE-2002-2185
31 Dec 2002 — The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the router and effectively disconnect the group from the network. • ftp://patches.sgi.com/support/free/security/advisories/20020901-01-A •
CVSS: 10.0EPSS: 8%CPEs: 5EXPL: 1CVE-2002-1372
https://notcve.org/view.php?id=CVE-2002-1372
26 Dec 2002 — Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check the return values of various file and socket operations, which could allow a remote attacker to cause a denial of service (resource exhaustion) by causing file descriptors to be assigned and not released, as demonstrated by fanta. Common Unix Printing System (CUPS) 1.1.14 a 1.1.17 no comprueba adecuadamente los valores de retorno de varias operaciones de ficheros y sockets, lo que podría permitir a un atacante remoto causar una... • http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0117.html • CWE-252: Unchecked Return Value •
CVSS: 7.5EPSS: 4%CPEs: 33EXPL: 0CVE-2002-1232
https://notcve.org/view.php?id=CVE-2002-1232
04 Nov 2002 — Memory leak in ypdb_open in yp_db.c for ypserv before 2.5 in the NIS package 3.9 and earlier allows remote attackers to cause a denial of service (memory consumption) via a large number of requests for a map that does not exist. Fuga de memoria en ypdb_open en yp_db.c en ypserv anteriores a 2.5 en el paquete NIS 3.9 y anteriores permite a atacantes remotos causar una denegación de servicio (consumición de memoria) mediante un número grande de peticiones de un mapa inexistente. • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-054.0.txt •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2002-0839 – HP Security Bulletin HPSBOV02683 SSRT090208
https://notcve.org/view.php?id=CVE-2002-0839
05 Oct 2002 — The shared memory scoreboard in the HTTP daemon for Apache 1.3.x before 1.3.27 allows any user running as the Apache UID to send a SIGUSR1 signal to any process as root, resulting in a denial of service (process kill) or possibly other behaviors that would not normally be allowed, by modifying the parent[].pid and parent[].last_rtime segments in the scoreboard. La tabla de puntuaciones (scoreboard) en memoria compartida del demonio HTTP en Apache 1.3.x anteriores a 1.3.27 permite a cualquier usuario corrien... • ftp://patches.sgi.com/support/free/security/advisories/20021105-01-I •
CVSS: 9.1EPSS: 1%CPEs: 6EXPL: 0CVE-2002-0912
https://notcve.org/view.php?id=CVE-2002-0912
31 Aug 2002 — in.uucpd UUCP server in Debian GNU/Linux 2.2, and possibly other operating systems, does not properly terminate long strings, which allows remote attackers to cause a denial of service, possibly due to a buffer overflow. El servidor UUCP (Unix to Unix CoPy) in.uucpd en Debian GNU/Linux 2.2 y posiblemente otros sistemas operativos, no termina adecuadamente cadenas largas, lo que permite a atacantes remotos causar una denegación de servicio, posiblemente debido a un desbordamiento de búfer. • http://www.debian.org/security/2002/dsa-129 •
CVSS: 9.8EPSS: 53%CPEs: 3EXPL: 4CVE-2002-0392 – Apache (Windows x86) - Chunked Encoding
https://notcve.org/view.php?id=CVE-2002-0392
19 Jun 2002 — Apache 1.3 through 1.3.24, and Apache 2.0 through 2.0.36, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a chunk-encoded HTTP request that causes Apache to use an incorrect size. • https://packetstorm.news/files/id/82996 •
CVSS: 7.5EPSS: 5%CPEs: 2EXPL: 0CVE-2002-0401
https://notcve.org/view.php?id=CVE-2002-0401
18 Jun 2002 — SMB dissector in Ethereal 0.9.3 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via malformed packets that cause Ethereal to dereference a NULL pointer. • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-037.0.txt • CWE-476: NULL Pointer Dereference •