Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-12-31 | CVE-2002-1630 | Information Disclosure vulnerability in Oracle 9i Application Server Sample Scripts The sendmail.jsp sample page in Oracle 9i Application Server (9iAS) allows remote attackers to send arbitrary emails. | 7.5 |
| 2002-12-31 | CVE-2002-1622 | Remote Security vulnerability in IBM AIX 4.3 Buffer overflow in certain RPC routines in IBM AIX 4.3 may allow attackers to execute arbitrary code, related to a "variable data type." | 7.5 |
| 2002-12-31 | CVE-2002-1617 | Unspecified vulnerability in HP Tru64 5.1Bpk2Bl22 Multiple buffer overflows in HP Tru64 UNIX 5.x allow local users to execute arbitrary code via (1) a long -contextDir argument to dtaction, (2) a long -p argument to dtprintinfo, (3) a long -customization argument to dxterm, or (4) a long DISPLAY environment variable to dtterm. | 7.2 |
| 2002-12-26 | CVE-2002-1385 | Unspecified vulnerability in Open Webmail Open Webmail openwebmail_init in Open WebMail 1.81 and earlier allows local users to execute arbitrary code via .. | 7.2 |
| 2002-12-26 | CVE-2002-1372 | Unchecked Return Value vulnerability in multiple products Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check the return values of various file and socket operations, which could allow a remote attacker to cause a denial of service (resource exhaustion) by causing file descriptors to be assigned and not released, as demonstrated by fanta. | 7.5 |
| 2002-12-26 | CVE-2002-1371 | filters/image-gif.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly check for zero-length GIF images, which allows remote attackers to execute arbitrary code via modified chunk headers, as demonstrated by nogif. | 7.5 |
| 2002-12-26 | CVE-2002-1368 | Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing negative arguments to be fed into memcpy() calls via HTTP requests with (1) a negative Content-Length value or (2) a negative length in a chunked transfer encoding. | 7.5 |
| 2002-12-26 | CVE-2002-1363 | Buffer Overflow vulnerability in LibPNG Incorrect Offset Calculation Portable Network Graphics (PNG) library libpng 1.2.5 and earlier does not correctly calculate offsets, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a buffer overflow attack on the row buffers. | 7.5 |
| 2002-12-26 | CVE-2002-1327 | Buffer Overrun vulnerability in Microsoft Windows XP WMA/MP3 Attributes Buffer overflow in the Windows Shell function in Microsoft Windows XP allows remote attackers to execute arbitrary code via an .MP3 or .WMA audio file with a corrupt custom attribute, aka "Unchecked Buffer in Windows Shell Could Enable System Compromise." | 7.5 |
| 2002-12-26 | CVE-2002-1177 | Buffer Overrun vulnerability in Nullsoft Winamp 3.0 Multiple buffer overflows in Winamp 3.0, when displaying an MP3 in the Media Library window, allows remote attackers to execute arbitrary code via an MP3 file containing a long (1) Artist or (2) Album ID3v2 tag. | 7.5 |