Vulnerabilities > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-12-31 | CVE-2002-2050 | Unspecified vulnerability in Modlogan Directory traversal vulnerability in processor_web plugin for ModLogAn 0.5.0 through 0.7.11, when used with the splitby option, allows local users to overwrite arbitrary files via a .. | 2.1 |
| 2002-12-31 | CVE-2002-2039 | Unspecified vulnerability in QNX Rtos 4.25/6.1.0 /bin/su in QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows local users to obtain sensitive information from core dump files by sending the SIGSERV (invalid memory reference) signal. | 2.1 |
| 2002-12-31 | CVE-2002-2038 | Denial of Service vulnerability in Bill ABT Next Generation Posix Threading 1.9.0 Next Generation POSIX Threading (NGPT) 1.9.0 uses a filesystem-based shared memory entry, which allows local users to cause a denial of service or in threaded processes or spoof files via unknown methods. | 3.6 |
| 2002-12-31 | CVE-2002-2023 | Unspecified vulnerability in Yamaguchi Shingo Beep2 The get_parameter_from_freqency_source function in beep2 1.0, 1.1 and 1.2, when installed setuid root, allows local users to read arbitrary files via unknown attack vectors. | 2.1 |
| 2002-12-31 | CVE-2002-2001 | Symbolic Link Attack vulnerability in jmcce Predictable Log File jmcce 1.3.8 in Mandrake 8.1 creates log files in /tmp with predictable names, which allows local users to overwrite arbitrary files via a symlink attack. | 1.2 |
| 2002-12-31 | CVE-2002-2000 | Unspecified vulnerability in Compaq Acms 4.3/4.4 ACMS 4.3 and 4.4 in OpenVMS Alpha 7.2 and 7.3 does not properly use process privileges, which allows attackers to access data. | 2.1 |
| 2002-12-31 | CVE-2002-1996 | Cross-Site Scripting vulnerability in PostNuke Cross-site scripting (XSS) vulnerability in PostNuke 0.71 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) name parameter in modules.php and (2) catid parameter in index.php. | 2.6 |
| 2002-12-31 | CVE-2002-1983 | Local Denial of Service vulnerability in QNX Rtos 6.1.0 The timer implementation in QNX RTOS 6.1.0 allows local users to cause a denial of service (hang) and possibly execute arbitrary code by creating multiple timers with a 1-ms tick. | 2.1 |
| 2002-12-31 | CVE-2002-1977 | Unspecified vulnerability in PGP 7.0.4/7.1 Network Associates PGP 7.0.4 and 7.1 does not time out according to the value set in the "Passphrase Cache" option, which could allow attackers to open encrypted files without providing a passphrase. | 2.1 |
| 2002-12-31 | CVE-2002-1976 | Unspecified vulnerability in Linux Kernel ifconfig, when used on the Linux kernel 2.2 and later, does not report when the network interface is in promiscuous mode if it was put in promiscuous mode using PACKET_MR_PROMISC, which could allow attackers to sniff the network without detection, as demonstrated using libpcap. | 2.1 |