Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2002-12-31 CVE-2002-1825 Unspecified vulnerability in Wasd Http Server
Format string vulnerability in PerlRTE_example1.pl in WASD 7.1, 7.2.0 through 7.2.3, and 8.0.0 allows remote attackers to execute arbitrary commands or crash the server via format strings in the $name variable.
network
low complexity
wasd
6.4
2002-12-31 CVE-2002-1824 Unspecified vulnerability in Microsoft IE and Internet Explorer
Microsoft Internet Explorer 6.0, when handling an expired CA-CERT in a webserver's certificate chain during a SSL/TLS handshake, does not prompt the user before searching for and finding a newer certificate, which may allow attackers to perform a man-in-the-middle attack.
network
low complexity
microsoft
5.0
2002-12-31 CVE-2002-1822 Information Disclosure vulnerability in IBM Http Server 1.0
IBM HTTP Server 1.0 on AS/400 allows remote attackers to obtain the path to the web root directory and other sensitive information, which is leaked in an error mesage when a request is made for a non-existent Java Server Page (JSP).
network
low complexity
ibm
5.0
2002-12-31 CVE-2002-1821 Unspecified vulnerability in Ultimate PHP Board Ultimate PHP Board 1.0/1.0Beta
Ultimate PHP Board (UPB) 1.0 and 1.0b allows remote authenticated users to gain privileges and perform unauthorized actions via direct requests to (1) admin_members.php, (2) admin_config.php, (3) admin_cat.php, or (4) admin_forum.php.
local
low complexity
ultimate-php-board
4.6
2002-12-31 CVE-2002-1819 Unspecified vulnerability in Tinyhttpd 0.1.0
Directory traversal vulnerability in TinyHTTPD 0.1 .0 allows remote attackers to read or execute arbitrary files via a ".." (dot dot) in the URL.
network
low complexity
tinyhttpd
6.4
2002-12-31 CVE-2002-1818 Information Disclosure vulnerability in EZ Systems Httpbench 1.1
ezhttpbench.php in eZ httpbench 1.1 allows remote attackers to read arbitrary files via a full pathname in the AnalyseSite parameter.
network
low complexity
ez-systems
5.0
2002-12-31 CVE-2002-1815 Directory Traversal vulnerability in Aquonics Scripting Aquonics File Manager 1.5
Directory traversal vulnerability in source.php and source.cgi in Aquonics File Manager 1.5 allows remote attackers to read arbitrary files via a ..
network
low complexity
aquonics-scripting
5.0
2002-12-31 CVE-2002-1814 Buffer Overflow vulnerability in Bonobo EFSTool Commandline Argument
Buffer overflow in efstools in Bonobo, when installed setuid, allows local users to execute arbitrary code via long command line arguments.
local
low complexity
gnome mandrakesoft redhat slackware
4.6
2002-12-31 CVE-2002-1811 Denial Of Service vulnerability in Belkin F5D6130 Wnap Ap14G8
Belkin F5D6130 Wireless Network Access Point running firmware AP14G8 allows remote attackers to cause a denial of service (connection loss) by sending several SNMP GetNextRequest requests.
network
low complexity
belkin
5.0
2002-12-31 CVE-2002-1808 Unspecified vulnerability in Zack Coburn Meunity Community System 1.0
Cross-site scripting (XSS) vulnerability in Meunity Community System 1.1 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag when creating a topic.
network
zack-coburn
4.3