Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-12-31 | CVE-2002-2165 | Unspecified vulnerability in Imho Webmail The IMHO Webmail module 0.97.3 and earlier for Roxen leaks the REFERER from the browser's previous login session in an error page, which allows local users to read another user's inbox. | 2.1 |
| 2002-12-31 | CVE-2002-2132 | Unspecified vulnerability in Microsoft Windows 2000 and Windows XP Windows File Protection (WFP) in Windows 2000 and XP does not remove old security catalog .CAT files, which could allow local users to replace new files with vulnerable old files that have valid hash codes. | 2.1 |
| 2002-12-31 | CVE-2002-2127 | Local Security vulnerability in Pedestal Software Integrity Protection Driver 1.2 Integrity Protection Driver (IPD) 1.2 and earlier blocks access to \Device\PhysicalMemory by its name, which could allow local privileged processes to overwrite kernel memory by accessing the device through a symlink. | 2.1 |
| 2002-12-31 | CVE-2002-2126 | Unspecified vulnerability in Pedestal Software Integrity Protection Driver 1.2 restrictEnabled in Integrity Protection Driver (IPD) 1.2 delays driver installation for 20 minutes, which allows local users to insert malicious code by setting system clock to an earlier time. | 2.1 |
| 2002-12-31 | CVE-2002-2122 | Unspecified vulnerability in Pointsec Mobile Technologies Pointsec 1.0 Pointsec before 1.2 for PalmOS stores a user's PIN number in memory in plaintext, which allows a local attacker who steals an unlocked Palm to retrieve the PIN by dumping memory. | 2.1 |
| 2002-12-31 | CVE-2002-2105 | Denial of Service vulnerability in Microsoft Windows XP .Manifest Microsoft Windows XP allows local users to prevent the system from booting via a corrupt explorer.exe.manifest file. | 2.1 |
| 2002-12-31 | CVE-2002-2093 | Information Disclosure vulnerability in SGI O2 Video Session Viewing The Video Control Panel on SGI O2/IRIX 6.5, when the Default Input is set to "Output Video", allows attackers to access a console session by running videoout then videoin. | 2.1 |
| 2002-12-31 | CVE-2002-2092 | Race condition in exec in OpenBSD 4.0 and earlier, NetBSD 1.5.2 and earlier, and FreeBSD 4.4 and earlier allows local users to gain privileges by attaching a debugger to a process before the kernel has determined that the process is setuid or setgid. | 3.7 |
| 2002-12-31 | CVE-2002-2083 | Local Security vulnerability in Novell Netware The Novell Netware client running on Windows 95 allows local users to bypass the login and open arbitrary files via the "What is this?" help feature, which can be launched from the Novell Netware login screen. | 2.1 |
| 2002-12-31 | CVE-2002-2051 | Unspecified vulnerability in Modlogan The processor_web plugin for ModLogAn 0.5.0 through 0.7.11, when used with the splitby option, allows local users to overwrite arbitrary files via a symlink attack on files specified as hostnames in a log file. | 2.1 |