Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2002-06-25 CVE-2002-0006 Remote IRC Command Execution vulnerability in X-Chat CTCP Ping Arbitrary
XChat 1.8.7 and earlier, including default configurations of 1.4.2 and 1.4.3, allows remote attackers to execute arbitrary IRC commands as other clients via encoded characters in a PRIVMSG command that calls CTCP PING, which expands the characters in the client response when the percascii variable is set.
network
low complexity
xchat
7.5
2002-06-18 CVE-2002-0612 Unspecified vulnerability in Craig Patchett Fileseek
FileSeek.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) head or (2) foot parameters.
network
low complexity
craig-patchett
7.5
2002-06-18 CVE-2002-0610 Unspecified vulnerability in HP MPE IX 6.0/6.5/7.0
Vulnerability in FTPSRVR in HP MPE/iX 6.0 through 7.0 does not properly validate certain FTP commands, which allows attackers to gain privileges.
network
low complexity
hp
7.5
2002-06-18 CVE-2002-0608 Buffer Overflow vulnerability in Matu FTP 1.74
Buffer overflow in Matu FTP client 1.74 allows remote FTP servers to execute arbitrary code via a long "220" banner.
network
low complexity
matu
7.5
2002-06-18 CVE-2002-0607 SQL Injection vulnerability in Snitz Forums 2000 Members.ASP
members.asp in Snitz Forums 2000 version 3.3.03 and earlier allows remote attackers to execute arbitrary code via a SQL injection attack on the parameters (1) M_NAME, (2) UserName, (3) FirstName, (4) LastName, or (5) INITIAL.
network
low complexity
snitz-communications
7.5
2002-06-18 CVE-2002-0606 Buffer Overflow vulnerability in 3Com 3Cdaemon 2.0
Buffer overflow in 3Cdaemon 2.0 FTP server allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long commands such as login.
network
low complexity
3com
7.5
2002-06-18 CVE-2002-0605 Buffer Overflow vulnerability in Macromedia Flash Player 6.0
Buffer overflow in Flash OCX for Macromedia Flash 6 revision 23 (6,0,23,0) allows remote attackers to execute arbitrary code via a long movie parameter.
network
low complexity
macromedia
7.5
2002-06-18 CVE-2002-0600 Heap Overflow vulnerability in KTH eBones Kerberos4 FTP Client Passive Mode
Heap overflow in the KTH Kerberos 4 FTP client 4-1.1.1 allows remote malicious servers to execute arbitrary code on the client via a long response to a passive (PASV) mode request.
network
low complexity
kth luke-mewburn
7.5
2002-06-18 CVE-2002-0598 Unspecified vulnerability in Foundstone Fscan 1.12
Format string vulnerability in Foundstone FScan 1.12 with banner grabbing enabled allows remote attackers to execute arbitrary code on the scanning system via format string specifiers in the server banner.
network
low complexity
foundstone
7.5
2002-06-18 CVE-2002-0595 Buffer Overflow vulnerability in Webtrends Reporting Center 4.0D
Buffer overflow in WTRS_UI.EXE (WTX_REMOTE.DLL) for WebTrends Reporting Center 4.0d allows remote attackers to execute arbitrary code via a long HTTP GET request to the /reports/ directory.
network
low complexity
webtrends
7.5