Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-10-04 | CVE-2002-1048 | Unspecified vulnerability in HP Jetdirect HP JetDirect printers allow remote attackers to obtain the administrative password for the (1) web and (2) telnet services via an SNMP request to the variable (.iso.3.6.1.4.1.11.2.3.9.4.2.1.3.9.1.1.0. | 7.5 |
| 2002-10-04 | CVE-2002-1047 | Remote Security vulnerability in Watchguard Soho Firewall 5.0.35A The FTP service in Watchguard Soho Firewall 5.0.35a allows remote attackers to gain privileges with a correct password but an incorrect user name. | 7.5 |
| 2002-10-04 | CVE-2002-1044 | Denial of Service vulnerability in Ultrafunk Popcorn 1.20 Buffer overflow in Ultrafunk Popcorn 1.20 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long Subject field. | 7.5 |
| 2002-10-04 | CVE-2002-1036 | Cross-Site Scripting vulnerability in Fluid Dynamics Search Engine Cross-site scripting vulnerability in search.pl for Fluid Dynamics Search Engine (FDSE) before 2.0.0.0055 allows remote attackers to execute web script via the (1) Rank or (2) Match parameters. | 7.5 |
| 2002-10-04 | CVE-2002-1032 | Denial-Of-Service vulnerability in KF Web Server Buffer overflow in KeyFocus (KF) web server 1.0.5 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malformed HTTP header. | 7.5 |
| 2002-10-04 | CVE-2002-1027 | Cross-Site Scripting vulnerability in Macromedia Sitespring 1.2.0 Cross-site scripting vulnerability in the default HTTP 500 error script (500error.jsp) for Macromedia Sitespring 1.2.0 (277.1) allows remote attackers to execute arbitrary web script via a link to 500error.jsp with the script in 1the et parameter. | 7.5 |
| 2002-10-04 | CVE-2002-1024 | Resource Management Errors vulnerability in Cisco products Cisco IOS 12.0 through 12.2, when supporting SSH, allows remote attackers to cause a denial of service (CPU consumption) via a large packet that was designed to exploit the SSH CRC32 attack detection overflow (CVE-2001-0144). | 7.1 |
| 2002-10-04 | CVE-2002-1022 | Unspecified vulnerability in Working Resources Inc. Badblue 1.7.3Enterprise/1.7.3Personal BadBlue server stores passwords in plaintext in the ext.ini file, which could allow local and possibly remote attackers to gain privileges. | 7.5 |
| 2002-10-04 | CVE-2002-1015 | Unspecified vulnerability in Realnetworks Realjukebox 2, Realjukebox 2 Plus and Realone Player RealJukebox 2 1.0.2.340 and 1.0.2.379, and RealOne Player Gold 6.0.10.505, allows remote attackers to execute arbitrary script in the Local computer zone by inserting the script into the skin.ini file of an RJS archive, then referencing skin.ini from a web page after it has been extracted, which is parsed as HTML by Internet Explorer or other Microsoft-based web readers. | 7.5 |
| 2002-10-04 | CVE-2002-1014 | Unspecified vulnerability in Realnetworks Realjukebox 2, Realjukebox 2 Plus and Realone Player Buffer overflow in RealJukebox 2 1.0.2.340 and 1.0.2.379, and RealOne Player Gold 6.0.10.505, allows remote attackers to execute arbitrary code via an RFS skin file whose skin.ini contains a long value in a CONTROLnImage argument, such as CONTROL1Image. | 7.5 |