Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-07-26 | CVE-2002-0663 | Buffer Overflow vulnerability in Symantec Norton Personal Firewall/Internet Security 2001 Buffer overflow in HTTP Proxy for Symantec Norton Personal Internet Firewall 3.0.4.91 and Norton Internet Security 2001 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large outgoing HTTP request. | 7.5 |
| 2002-07-26 | CVE-2002-0444 | Unspecified vulnerability in Microsoft Windows 2000 Terminal Services Microsoft Windows 2000 running the Terminal Server 90-day trial version, and possibly other versions, does not apply group policies to incoming users when the number of connections to the SYSVOL share exceeds the maximum, e.g. | 7.5 |
| 2002-07-26 | CVE-2002-0442 | Local Buffer Overflow vulnerability in Caldera OpenServer dlv_audit Buffer overflow in dlvr_audit for Caldera OpenServer 5.0.5 and 5.0.6 allows local users to gain root privileges. | 7.2 |
| 2002-07-26 | CVE-2002-0440 | Unspecified vulnerability in Trend Micro Interscan Viruswall 3.51/3.6 Trend Micro InterScan VirusWall HTTP proxy 3.6 with the "Skip scanning if Content-length equals 0" option enabled allows malicious web servers to bypass content scanning via a Content-length header set to 0, which is often ignored by HTTP clients. | 7.5 |
| 2002-07-26 | CVE-2002-0439 | Unspecified vulnerability in Caupo.Net Cauposhop Cross-site scripting vulnerability in CaupoShop 1.30a and earlier, and possibly CaupoShopPro, allows remote attackers to execute arbitrary Javascript and steal credit card numbers or delete items by injecting the script into new customer information fields such as the message field. | 7.5 |
| 2002-07-26 | CVE-2002-0396 | Unspecified vulnerability in Red-M 1050Ap LAN Acess Point The web management server for Red-M 1050 (Bluetooth Access Point) does not use session-based credentials to authenticate users, which allows attackers to connect to the server from the same IP address as a user who has already established a session. | 7.5 |
| 2002-07-26 | CVE-2002-0032 | Unspecified vulnerability in Yahoo Messenger 5.0 Yahoo! Messenger 5,0,0,1064 and earlier allows remote attackers to execute arbitrary script as other users via the addview parameter of a ymsgr URI. | 7.5 |
| 2002-07-26 | CVE-2002-0014 | Unspecified vulnerability in University of Washington Pine URL-handling code in Pine 4.43 and earlier allows remote attackers to execute arbitrary commands via a URL enclosed in single quotes and containing shell metacharacters (&). | 7.5 |
| 2002-07-23 | CVE-2002-1599 | Unspecified vulnerability in Daniel Barron Dansguardian DansGuardian before 2.4.5-1 allows remote attackers to bypass content filtering rules via hex-encoded URLs. | 7.5 |
| 2002-07-23 | CVE-2002-0688 | Remote Method vulnerability in Zope 2.4.0/2.5.1 ZCatalog plug-in index support capability for Zope 2.4.0 through 2.5.1 allows anonymous users and untrusted code to bypass access restrictions and call arbitrary methods of catalog indexes. | 7.5 |