Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-12-31 | CVE-2002-1912 | NULL Pointer Dereference vulnerability in Skystream Emr5000 1.16/1.17/1.18 SkyStream EMR5000 1.16 through 1.18 does not drop packets or disable the Ethernet interface when the buffers are full, which allows remote attackers to cause a denial of service (null pointer exception and kernel panic) via a large number of packets. | 7.5 |
2002-12-31 | CVE-2002-1910 | Inadequate Encryption Strength vulnerability in Click-2 Ingenium Learning Management System 5.1/6.1 Click2Learn Ingenium Learning Management System 5.1 and 6.1 uses weak encryption for passwords (reversible algorithm), which allows attackers to obtain passwords. | 7.5 |
2002-12-31 | CVE-2002-1904 | Buffer Overflow vulnerability in ghttpd Log() Function Buffer overflow in the Log function in util.c in GazTek ghttpd 1.4 through 1.4.3 allows remote attackers to execute arbitrary code via a long HTTP GET request. | 7.5 |
2002-12-31 | CVE-2002-1896 | Unspecified vulnerability in Alsaplayer 0.99.71 Buffer overflow in Alsaplayer 0.99.71, when installed setuid root, allows local users to execute arbitrary code via a long (1) -f or (2) -o command line argument. | 7.2 |
2002-12-31 | CVE-2002-1891 | Remote Buffer Overflow vulnerability in Ayman AKT Ircit 0.3.1 Buffer overflow in IRCIT 0.3.1 IRC client allows remote attackers to execute arbitrary code via a long invite request. | 7.5 |
2002-12-31 | CVE-2002-1887 | Remote File Include vulnerability in Gregory Kokanosky PHPmynewsletter 0.6.10 PHP remote file inclusion vulnerability in customize.php for phpMyNewsletter 0.6.10 allows remote attackers to execute arbitrary PHP code via the l parameter. | 7.5 |
2002-12-31 | CVE-2002-1885 | Remote File Include vulnerability in Powerphlogger 2.0.9/2.2.1/2.2.2A PHP remote file inclusion vulnerability in showhits.php3 for PowerPhlogger (PPhlogger) 2.0.9 through 2.2.2 allows remote attackers to execute arbitrary PHP code via the rel_path parameter. | 7.5 |
2002-12-31 | CVE-2002-1884 | Unspecified vulnerability in Py-Membres 3.1 index.php in Py-Membres 3.1 allows remote attackers to log in as an administrator by setting the pymembs parameter to "admin". | 7.5 |
2002-12-31 | CVE-2002-1882 | Authentication Bypassing vulnerability in Oracle E-Business Suite Unknown vulnerability in AolSecurityPrivate.class in Oracle E-Business Suite 11i 11.1 through 11.6 allows remote attackers to bypass user authentication checks via unknown attack vectors. | 7.5 |
2002-12-31 | CVE-2002-1879 | SQL Injection vulnerability in Lokwa Lokwabb 1.2.1 SQL injection vulnerability in LokwaBB 1.2.2 allows remote attackers to execute arbitrary SQL commands via the (1) member parameter to member.php or (2) loser parameter to misc.php. | 7.5 |