Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-10-04 | CVE-2002-1075 | Buffer Overflow vulnerability in Pegasus Mail Message Header Buffer overflow in Pegasus mail client 4.01 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long (1) To or (2) From headers. | 7.5 |
| 2002-10-04 | CVE-2002-1073 | Buffer Overflow vulnerability in MERCUR Mailserver Control-Service Buffer overflow in the control service for MERCUR Mailserver 4.2 allows remote attackers to execute arbitrary code via a long password. | 7.5 |
| 2002-10-04 | CVE-2002-1070 | Cross-Site Scripting vulnerability in PHP-Wiki Cross-site scripting vulnerability in PHPWiki Postnuke wiki module allows remote attackers to execute script as other PHPWiki users via the pagename parameter. | 7.5 |
| 2002-10-04 | CVE-2002-1066 | Denial Of Service vulnerability in T. Hauck Jana Server POP3 Invalid Message Index Thomas Hauck Jana Server 1.4.6 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large message index value in a (1) RETR or (2) DELE command to the POP3 server, which exceeds the array limits and allows a buffer overflow attack. | 7.5 |
| 2002-10-04 | CVE-2002-1065 | Remote Security vulnerability in Jana Web Server Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, does not restrict the number of unsuccessful login attempts, which makes it easier for remote attackers to gain privileges via brute force username and password guessing. | 7.5 |
| 2002-10-04 | CVE-2002-1062 | Buffer Overflow vulnerability in T. Hauck Jana web Server Signedness error in Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, allows remote attackers to execute arbitrary code via long (1) Username, (2) Password, or (3) Hostname entries. | 7.5 |
| 2002-10-04 | CVE-2002-1061 | Buffer Overflow vulnerability in T. Hauck Jana web Server Multiple buffer overflows in Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) an HTTP GET request with a long major version number, (2) an HTTP GET request to the HTTP proxy on port 3128 with a long major version number, (3) a long OK reply from a POP3 server, and (4) a long SMTP server response. | 7.5 |
| 2002-10-04 | CVE-2002-1059 | Buffer Overflow vulnerability in SecureCRT SSH1 Identifier String Buffer overflow in Van Dyke SecureCRT SSH client before 3.4.6, and 4.x before 4.0 beta 3, allows an SSH server to execute arbitrary code via a long SSH1 protocol version string. | 7.5 |
| 2002-10-04 | CVE-2002-1057 | Buffer Overflow vulnerability in Smartmax Software Mailmax 4.8 Buffer overflow in SmartMax MailMax POP3 daemon (popmax) 4.8 allows remote attackers to execute arbitrary code via a long USER command. | 7.5 |
| 2002-10-04 | CVE-2002-1050 | Remote Buffer Overflow vulnerability in Hylafax Oversized Scan Line Buffer overflow in HylaFAX faxgetty before 4.1.3 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long line of image data. | 7.5 |