Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-11-12 | CVE-2002-1277 | Buffer Overflow vulnerability in WindowMaker Image Handling Buffer overflow in Window Maker (wmaker) 0.80.0 and earlier may allow remote attackers to execute arbitrary code via a certain image file that is not properly handled when Window Maker uses width and height information to allocate a buffer. | 7.5 |
| 2002-11-12 | CVE-2002-1275 | Remote Command Execution vulnerability in Html2Ps Project Html2Ps 1.0 Unknown vulnerability in html2ps HTML/PostScript converter 1.0, when used within LPRng, allows remote attackers to execute arbitrary code via "unsanitized input." | 7.5 |
| 2002-11-12 | CVE-2002-1271 | Remote Command Execution vulnerability in PERL-MailTools The Mail::Mailer Perl module in the perl-MailTools package 1.47 and earlier uses mailx as the default mailer, which allows remote attackers to execute arbitrary commands by inserting them into the mail body, which is then processed by mailx. | 7.5 |
| 2002-11-12 | CVE-2002-1264 | Buffer Overflow vulnerability in Oracle 9i Database Server iSQL Plus Malformed USERID Buffer overflow in Oracle iSQL*Plus web application of the Oracle 9 database server allows remote attackers to execute arbitrary code via a long USERID parameter in the isqlplus URL. | 7.5 |
| 2002-11-12 | CVE-2002-1253 | Local Security vulnerability in Abuse Abuse 2.00 and earlier allows local users to gain privileges via command line arguments that specify alternate Lisp scripts that run at escalated privileges, which can contain functions that execute commands or modify files. | 7.2 |
| 2002-11-12 | CVE-2002-1250 | Local Buffer Overflow vulnerability in Abuse Buffer overflow in Abuse 2.00 and earlier allows local users to gain root privileges via a long -net command line argument. | 7.2 |
| 2002-11-12 | CVE-2002-1245 | Unspecified vulnerability in Frank Mcingvale Luxman 0.41 Maped in LuxMan 0.41 uses the user-provided search path to find and execute the gzip program, which allows local users to modify /dev/mem and gain privileges via a modified PATH environment variable that points to a Trojan horse gzip program. | 7.2 |
| 2002-11-12 | CVE-2002-1244 | Unspecified vulnerability in Pablo Software Solutions Pablo FTP Server Format string vulnerability in Pablo FTP Server 1.5, 1.3, and possibly other versions, allows remote attackers to cause a denial of service and possibly execute arbitrary code via format strings in the USER command. | 7.5 |
| 2002-11-12 | CVE-2002-1242 | SQL Injection vulnerability in Francisco Burzi PHP-Nuke 5.6 SQL injection vulnerability in PHP-Nuke before 6.0 allows remote authenticated users to modify the database and gain privileges via the "bio" argument to modules.php. | 7.5 |
| 2002-11-12 | CVE-2002-1239 | Unspecified vulnerability in QNX Rtos 6.2.0 QNX Neutrino RTOS 6.2.0 uses the PATH environment variable to find and execute the cp program while operating at raised privileges, which allows local users to gain privileges by modifying the PATH to point to a malicious cp program. | 7.2 |