Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-03-25 | CVE-2002-0126 | Buffer Overflow vulnerability in BlackMoon FTP Server Buffer overflow in BlackMoon FTP Server 1.0 through 1.5 allows remote attackers to execute arbitrary code via a long argument to (1) USER, (2) PASS, or (3) CWD. | 7.5 |
2002-03-25 | CVE-2002-0125 | Variable Overflow vulnerability in Clanlib 0.5 Buffer overflow in ClanLib library 0.5 may allow local users to execute arbitrary code in games that use the library, such as (1) Super Methane Brothers, (2) Star War, (3) Kwirk, (4) Clankanoid, and others, via a long HOME environment variable. | 7.2 |
2002-03-25 | CVE-2002-0123 | Unspecified vulnerability in MDG Computer Services web Server 4D Ecommerce 3.5.3 MDG Computer Services Web Server 4D WS4D/eCommerce 3.0 and earlier, and possibly 3.5.3, allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long HTTP request. | 7.5 |
2002-03-25 | CVE-2002-0118 | Unspecified vulnerability in Infopop Ultimate Bulletin Board Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) 6.2.0 Beta Release 1.0 allows remote attackers to execute arbitrary script and steal cookies via a message containing encoded Javascript in an IMG tag. | 7.5 |
2002-03-25 | CVE-2002-0117 | Unspecified vulnerability in Yabb Cross-site scripting vulnerability in Yet Another Bulletin Board (YaBB) 1 Gold SP 1 and earlier allows remote attackers to execute arbitrary script and steal cookies via a message containing encoded Javascript in an IMG tag. | 7.5 |
2002-03-25 | CVE-2002-0111 | Unspecified vulnerability in Funsoft Dinos Webserver 1.0/1.2 Directory traversal vulnerability in Funsoft Dino's Webserver 1.2 and earlier allows remote attackers to read files or execute arbitrary commands via a .. | 7.5 |
2002-03-25 | CVE-2002-0108 | Unspecified vulnerability in Allaire Forums Allaire Forums 2.0.4 and 2.0.5 and Forums! 3.0 and 3.1 allows remote authenticated users to spoof messages as other users by modifying the hidden form fields for the name and e-mail address. | 7.5 |
2002-03-25 | CVE-2002-0105 | Unspecified vulnerability in Caldera Unixware 7.1.0 CDE dtlogin in Caldera UnixWare 7.1.0, and possibly other operating systems, allows local users to gain privileges via a symlink attack on /var/dt/Xerrors since /var/dt is world-writable. | 7.2 |
2002-03-25 | CVE-2002-0100 | Unspecified vulnerability in AOL Server 3.4.2 AOL AOLserver 3.4.2 Win32 allows remote attackers to bypass authentication and read password-protected files via a URL that directly references the file. | 7.5 |
2002-03-25 | CVE-2002-0098 | Unspecified vulnerability in Boozt Standard 0.9.8 Buffer overflow in index.cgi administration interface for Boozt! Standard 0.9.8 allows local users to execute arbitrary code via a long name field when creating a new banner. | 7.5 |