CVE in 2003

1,548 vulnerabilities published -28.7% vs 2002

2000 2001 2002 2003 2004 2005 2006

1,548

Total CVEs

Critical

High

8.5

CVSS Average

Monthly Distribution

37 CVEs

0 critical

Jan

49 CVEs

0 critical

Feb

122 CVEs

0 critical

Mar

122

135 CVEs

1 critical

Apr

135

80 CVEs

1 critical

May

129 CVEs

1 critical

Jun

129

48 CVEs

0 critical

Jul

208 CVEs

2 critical

Aug

208

35 CVEs

0 critical

Sep

92 CVEs

1 critical

Oct

98 CVEs

2 critical

Nov

515 CVEs

1 critical

Dec

515

Top 20 Most Critical CVEs of 2003

View all

CVE-2003-0791

The Script.prototype.freeze/thaw functionality in Mozilla 1.4 and earlier allows attackers to execute native methods by modifying the string used as…

Oct 7 9.8

CVE-2003-0174

The LDAP name service (nsd) in IRIX 6.5.19 and earlier does not properly verify if the USERPASSWORD attribute has been…

May 12 9.8

CVE-2003-0466

Off-by-one error in the fb_realpath() function, as derived from the realpath function in BSD, may allow attackers to execute arbitrary…

Aug 27 9.8

CVE-2003-0356

Multiple off-by-one vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute…

Jun 9 9.8

CVE-2003-0252

Off-by-one error in the xlog function of mountd in the Linux NFS utils package (nfs-utils) before 1.0.4 allows remote attackers…

Aug 18 9.8

CVE-2003-0545

Double free vulnerability in OpenSSL 0.9.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary…

Nov 17 9.8

CVE-2002-1484

DB4Web server, when configured to use verbose debug messages, allows remote attackers to use DB4Web as a proxy and attempt…

Apr 22 9.8

CVE-2003-1233

Pedestal Software Integrity Protection Driver (IPD) 1.3 and earlier allows privileged attackers, such as rootkits, to bypass file access restrictions…

Dec 31 9.8

CVE-2003-0899

Buffer overflow in defang in libhttpd.c for thttpd 2.21 to 2.23b1 allows remote attackers to execute arbitrary code via requests…

Nov 3 9.8

CVE-2003-0578

cci_dir in IBM U2 UniVerse 10.0.0.9 and earlier creates hard links and unlinks files as root, which allows local users…

Aug 18 7.8

CVE-2003-0411

Sun ONE Application Server 7.0 for Windows 2000/XP allows remote attackers to obtain JSP source code via a request that…

Jun 30 7.5

CVE-2003-0625

Off-by-one error in certain versions of xfstt allows remote attackers to read potentially sensitive memory via a malformed client request…

Aug 27 7.5

CVE-2002-0628

The Telnet service for Polycom ViewStation before 7.2.4 does not restrict the number of failed login attempts, which makes it…

Jan 7 7.5

CVE-2003-0063

The xterm terminal emulator in XFree86 4.2.0 and earlier allows attackers to modify the window title via a certain character…

Mar 3 7.3

CVE-2003-0844

mod_gzip 1.3.26.1a and earlier, and possibly later official versions, when running in debug mode without the Apache log, allows local…

Nov 17 7.1

CVE-2003-1564

libxml2, possibly before 2.5.0, does not properly detect recursion during entity expansion, which allows context-dependent attackers to cause a denial…

Dec 31 6.5

CVE-2003-0517

faxrunqd.in in mgetty 1.1.28 and earlier allows local users to overwrite files via a symlink attack on JOB files.

Aug 18 5.5

CVE-2003-0090

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2000-0844. Reason: This candidate is a duplicate of CVE-2000-0844. Notes: All…

Dec 15 0.0

CVE-2003-0879

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2003-0518. Reason: This candidate is a reservation duplicate of CVE-2003-0518. Notes:…

Nov 17 0.0

CVE-2003-0158

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2003-0139. Reason: This candidate is a reservation duplicate of CVE-2003-0139 due…

Mar 24 0.0

Explore Other Years

2026 2025 2024 2023 2022 2021 2020 2019 2018 2017 2016 2015 2014 2013 2012

CVE Vulnerabilities

Posts & Pages

CVE in 2003

Monthly Distribution

Top 20 Most Critical CVEs of 2003

Explore Other Years