Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-12-31 | CVE-2002-2232 | Buffer Errors vulnerability in Mollensoft Software Enceladus Server Suite 3.9 Buffer overflow in Enceladus Server Suite 3.9 allows remote attackers to execute arbitrary code via a long CD (CWD) command. | 8.5 |
| 2002-12-31 | CVE-2002-2226 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Tftpd32 Buffer overflow in tftpd of TFTP32 2.21 and earlier allows remote attackers to execute arbitrary code via a long filename argument. | 7.5 |
| 2002-12-31 | CVE-2002-2219 | Unspecified vulnerability in Chetcpasswd 2.1 chetcpasswd.cgi in Pedro Lineu Orso chetcpasswd before 2.1 allows remote attackers to read the last line of the shadow file via a long user (userid) field. | 7.5 |
| 2002-12-31 | CVE-2002-2208 | Denial Of Service vulnerability in Cisco IOS EIGRP Announcement ARP Extended Interior Gateway Routing Protocol (EIGRP), as implemented in Cisco IOS 11.3 through 12.2 and other products, allows remote attackers to cause a denial of service (flood) by sending a large number of spoofed EIGRP neighbor announcements, which results in an ARP storm on the local network. | 7.8 |
| 2002-12-31 | CVE-2002-2206 | Local Denial of Service vulnerability in Symantec Norton Antivirus 2001 The POP3 proxy service (POPROXY.EXE) in Norton AntiVirus 2001 allows local users to cause a denial of service (CPU consumption and crash) via a long username with multiple /localhost entries. | 7.8 |
| 2002-12-31 | CVE-2002-2204 | Unspecified vulnerability in Redhat Package Manager The default --checksig setting in RPM Package Manager 4.0.4 checks that a package's signature is valid without listing who signed it, which can allow remote attackers to make it appear that a malicious package comes from a trusted source. | 7.5 |
| 2002-12-31 | CVE-2002-2200 | Remote File Include vulnerability in Benjamin Lefevre Dobermann Forum Benjamin Lefevre Dobermann FORUM 0.5 and earlier allows remote attackers to remotely include and execute malicious PHP files via the "subpath" variablein (1) entete.php, (2) enteteacceuil.php, (3) index.php, or (4) newtopic.php. | 7.5 |
| 2002-12-31 | CVE-2002-2197 | Denial Of Service vulnerability in Sun Solaris /dev/poll Null Pointer Dereference Unknown vulnerability in Sun Solaris 8.0 allows local users to cause a denial of service (kernel panic) via a program that uses /dev/poll, triggering a NULL pointer dereference. | 7.2 |
| 2002-12-31 | CVE-2002-2196 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Samba Samba before 2.2.5 does not properly terminate the enum_csc_policy data structure, which may allow remote attackers to execute arbitrary code via a buffer overflow attack. | 7.5 |
| 2002-12-31 | CVE-2002-2190 | Unspecified vulnerability in Artscore Studios Cutecast Forum 1.2 ArtsCore Studios CuteCast Forum 1.2 stores passwords in plaintext under the web document root, which allows remote attackers to obtain the passwords via an HTTP request to a .user file. | 7.5 |