Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-12-31 | CVE-2002-1998 | Remote Security vulnerability in SCO Open Unix and Unixware Buffer overflow in rpc.cmsd in SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows remote attackers to execute arbitrary commands via a long parameter to rtable_create (procedure 21). | 7.5 |
| 2002-12-31 | CVE-2002-1997 | Unspecified vulnerability in Zonelabs Zonealarm 3.0 ZoneAlarm Pro 3.0 MailSafe allows remote attackers to bypass filtering and possibly execute arbitrary code via email attachments containing a trailing dot after the file extension. | 7.5 |
| 2002-12-31 | CVE-2002-1980 | Local Buffer Overflow vulnerability in Sun Solaris Volume Manager Buffer overflow in Volume Manager daemon (vold) of Sun Solaris 2.5.1 through 8 allows local users to execute arbitrary code via unknown attack vectors. | 7.2 |
| 2002-12-31 | CVE-2002-1979 | Improper Input Validation vulnerability in Watchguard Legacy Rssa, Soho and Vclass WatchGuard SOHO products running firmware 5.1.6 and earlier, and Vclass/RSSA using 3.2 SP1 and earlier, allows remote attackers to bypass firewall rules by sending a PASV command string as the argument of another command to an FTP server, which generates a response that contains the string, causing IPFilter to treat the response as if it were a legitimate PASV command from the server. | 7.5 |
| 2002-12-31 | CVE-2002-1978 | Permissions, Privileges, and Access Controls vulnerability in Darren Reed Ipfilter IPFilter 3.1.1 through 3.4.28 allows remote attackers to bypass firewall rules by sending a PASV command string as the argument of another command to an FTP server, which generates a response that contains the string, causing IPFilter to treat the response as if it were a legitimate PASV command from the server. | 7.5 |
| 2002-12-31 | CVE-2002-1964 | Remote Command Execution vulnerability in Wesmo PHPeventcalendar 1.1 Unknown vulnerability in WesMo phpEventCalendar 1.1 allows remote attackers to execute arbitrary commands via unknown attack vectors. | 7.5 |
| 2002-12-31 | CVE-2002-1962 | Unspecified vulnerability in Finjan Software Surfingate 6.0/6.0.1 Finjan Software SurfinGate 6.0 and 6.0 1 allows remote attackers to bypass URL access restrictions via a URL with an IP address instead of a hostname. | 7.5 |
| 2002-12-31 | CVE-2002-1961 | Unspecified vulnerability in Finjan Software Surfingate 6.0/6.0.1 Finjan Software SurfinGate 6.0 and 6.0 1 allows remote attackers to bypass URL access restrictions via a URL whose hostname portion uses a fully qualified domain name (FQDN) that ends in a "." (dot). | 7.5 |
| 2002-12-31 | CVE-2002-1957 | Buffer Overflow vulnerability in PEN 0.9.1/0.9.2 Buffer overflow in the netlog function in pen.c for Pen 0.9.1 and 0.9.2 allows remote attackers to execute arbitrary commands via malformed log messages. | 7.5 |
| 2002-12-31 | CVE-2002-1952 | Unspecified vulnerability in PHPrank 1.8 phpRank 1.8 does not properly check the return codes for MySQL operations when authenticating users, which could allow remote attackers to authenticate using a NULL password when database errors occur or if the database is unavailable. | 7.5 |