Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-12-31 | CVE-2002-2315 | Denial Of Service vulnerability in Cisco IOS ICMP Redirect Cisco IOS 11.2.x and 12.0.x does not limit the size of its redirect table, which allows remote attackers to cause a denial of service (memory consumption) via spoofed ICMP redirect packets to the router. | 7.8 |
| 2002-12-31 | CVE-2002-2313 | Remote Security vulnerability in Qualcomm Eudora 5.1.1 Eudora email client 5.1.1, with "use Microsoft viewer" enabled, allows remote attackers to execute arbitrary programs via an HTML email message containing a META refresh tag that references an embedded .mhtml file with ActiveX controls that execute a second embedded program, which is processed by Internet Explorer. network qualcomm | 8.8 |
| 2002-12-31 | CVE-2002-2309 | Resource Management Errors vulnerability in PHP php.exe in PHP 3.0 through 4.2.2, when running on Apache, does not terminate properly, which allows remote attackers to cause a denial of service via a direct request without arguments. | 7.8 |
| 2002-12-31 | CVE-2002-2306 | Resource Management Errors vulnerability in Kazaa Media Desktop 1.7.1 Sharman Networks KaZaA Media Desktop 1.7.1 allows remote attackers to cause a denial of service (CPU consumption) by sending several large messages. | 7.8 |
| 2002-12-31 | CVE-2002-2305 | SQL Injection vulnerability in PHPsecure.Org Immobilier 1.0 SQL injection vulnerability in agentadmin.php in Immobilier allows remote attackers to execute arbitrary SQL commands via the (1) agentname or (2) agentpassword parameter. | 7.5 |
| 2002-12-31 | CVE-2002-2304 | SQL Injection vulnerability in Myphpsoft Myphplinks 2.1.9/2.2.0 SQL injection vulnerability in admin/auth/checksession.php in MyPHPLinks 2.1.9 and 2.2.0 allows remote attackers to execute arbitrary SQL commands via the idsession parameter. | 7.5 |
| 2002-12-31 | CVE-2002-2303 | Cryptographic Issues vulnerability in 3D3.Com Shopfactory 5.8 3D3.Com ShopFactory 5.8 uses client-side encryption and decryption for sensitive price data, which allows remote attackers to modify shopping cart prices by using the Javascript to decrypt the cookie that contains the data. | 7.8 |
| 2002-12-31 | CVE-2002-2300 | Buffer Errors vulnerability in 3Com Webbngss3Nbxnts 4.0.17/4.1.21/4.1.4 Buffer overflow in ftpd 5.4 in 3Com NBX 4.0.17 or ftpd 5.4.2 in 3Com NBX 4.1.4 allows remote attackers to cause a denial of service (crash) via a long CEL command. | 7.5 |
| 2002-12-31 | CVE-2002-2295 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Pico Server Pico Server Buffer overflow in Pico Server (pServ) 2.0 beta 1 through beta 5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) a 1024-byte TCP stream message, which triggers an off-by-one buffer overflow, or (2) a long method name in an HTTP request, (3) a long version number in an HTTP request, (4) a long User-Agent header, or (5) a long file path. | 7.5 |
| 2002-12-31 | CVE-2002-2291 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Calisto Internet Talker Calisto Internet Talker 0.04 and earlier allows remote attackers to cause a denial of service (hang) via a long request, possibly triggering a buffer overflow. | 7.8 |