Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-12-31 | CVE-2002-2354 | Improper Input Validation vulnerability in Netgear Fm114P Netgear FM114P firmware 1.3 wireless firewall allows remote attackers to cause a denial of service (crash or hang) via a large number of TCP connection requests. | 7.8 |
| 2002-12-31 | CVE-2002-2345 | Credentials Management vulnerability in Oracle Application Server 9.0.2 Oracle 9i Application Server 9.0.2 stores the web cache administrator interface password in plaintext, which allows remote attackers to gain access. | 7.5 |
| 2002-12-31 | CVE-2002-2329 | Improper Input Validation vulnerability in Mirabilis ICQ 2001B/2002A/2002B ICQ client 2001b, 2002a and 2002b allows remote attackers to cause a denial of service (CPU consumption or crash) via a message with a large number of emoticons. | 7.8 |
| 2002-12-31 | CVE-2002-2328 | Improper Input Validation vulnerability in Microsoft Windows 2000 Active Directory in Windows 2000, when supporting Kerberos V authentication and GSSAPI, allows remote attackers to cause a denial of service (hang) via an LDAP client that sets the page length to zero during a large request. | 7.1 |
| 2002-12-31 | CVE-2002-2325 | Improper Input Validation vulnerability in University of Washington Pine The c-client library in Internet Message Access Protocol (IMAP) dated before 2002 RC2, as used by Pine 4.20 through 4.44, allows remote attackers to cause a denial of service (client crash) via a MIME-encoded email with Content-Type header containing an empty boundary field. | 7.8 |
| 2002-12-31 | CVE-2002-2324 | Permissions, Privileges, and Access Controls vulnerability in Microsoft Windows XP The "System Restore" directory and subdirectories, and possibly other subdirectories in the "System Volume Information" directory on Windows XP Professional, have insecure access control list (ACL) permissions, which allows local users to access restricted files and modify registry settings. | 7.2 |
| 2002-12-31 | CVE-2002-2323 | Improper Preservation of Permissions vulnerability in SUN Solaris PC Netlink 1.0/1.1/1.2 Sun PC NetLink 1.0 through 1.2 does not properly set the access control list (ACL) for files and directories that use symbolic links and have been restored from backup, which could allow local or remote attackers to bypass intended access restrictions. | 7.5 |
| 2002-12-31 | CVE-2002-2320 | Permissions, Privileges, and Access Controls vulnerability in Mysimplenews 1.0 MySimpleNews 1.0 allows remote attackers to delete arbitrary email messages via a direct request to vider.php3. | 7.8 |
| 2002-12-31 | CVE-2002-2319 | Code Injection vulnerability in Mysimplenews 1.0 Static code injection vulnerability in users.php in MySimpleNews allows remote attackers to inject arbitrary PHP code and HTML via the (1) LOGIN, (2) DATA, and (3) MESS parameters, which are inserted into news.php3. | 7.5 |
| 2002-12-31 | CVE-2002-2317 | Information Exposure vulnerability in Symantec Velociraptor 1.0 Memory leak in the (1) httpd, (2) nntpd, and (3) vpn driver in VelociRaptor 1.0 allows remote attackers to cause a denial of service (memory consumption) via an unknown method. | 7.8 |