Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-12-31 | CVE-2002-2101 | Unspecified vulnerability in Microsoft Outlook 2002 Microsoft Outlook 2002 allows remote attackers to execute arbitrary JavaScript code, even when scripting is disabled, via an "about:" or "javascript:" URI in the href attribute of an "a" tag. | 7.5 |
2002-12-31 | CVE-2002-2099 | Local Security vulnerability in GNU Data Display Debugger 3.3.1 Buffer overflow in the GNU DataDisplay Debugger (DDD) 3.3.1 allows local users to execute arbitrary code and possibly gain privileges via a long HOME environment variable. | 7.2 |
2002-12-31 | CVE-2002-2098 | Buffer Overflow vulnerability in Axspawn 0.2.4.1 Buffer overflow in axspawn.c in Axspawn-pam before 0.2.1a allows remote attackers to execute arbitrary code via large packets. | 7.5 |
2002-12-31 | CVE-2002-2096 | Remote Manager Authentication Buffer Overflow vulnerability in Novell Netware 5.1/6.0 Buffer overflow in Novell Remote Manager module, httpstk.nlm, in NetWare 5.1 and NetWare 6 allows remote attackers to execute arbitrary code via a long (1) username or (2) password. | 7.5 |
2002-12-31 | CVE-2002-2091 | Unspecified vulnerability in Decfingerd 0.7 Format string vulnerability in Deception Finger Daemon, decfingerd, 0.7 may allow remote attackers to execute arbitrary code via the username of a finger request. | 7.5 |
2002-12-31 | CVE-2002-2082 | Unspecified vulnerability in Floosietek Ftgateoffice and Ftgatepro FTGate and FTGate Pro 1.05 lock user mailboxes before authentication succeeds, which allows remote attackers to lock the mailboxes of other users. | 7.5 |
2002-12-31 | CVE-2002-2078 | Heap Overflow vulnerability in Floosietek FTGate APOP Command Heap-based buffer overflow in Floositek (1) FTGate Pro 1.05 and (2) FTGate Office 1.05 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long POP3 APOP USER command. | 7.5 |
2002-12-31 | CVE-2002-2074 | Unspecified vulnerability in Erwin Lansing Mailidx 20010925 SQL injection vulnerability in Mailidx before 20020105 allows remote attackers to execute arbitrary SQL commands via the search web page. | 7.5 |
2002-12-31 | CVE-2002-2070 | Incomplete Cleanup vulnerability in Accessdata Secureclean 3 SecureClean 3 build 2.0 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted. | 7.5 |
2002-12-31 | CVE-2002-2069 | Incomplete Cleanup vulnerability in PGP Personal Privacy PGP 6.x and 7.x does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted. | 7.5 |