Vulnerabilities > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-10-04 | CVE-2002-0880 | Denial-Of-Service vulnerability in Cisco products Cisco IP Phone (VoIP) models 7910, 7940, and 7960 allow remote attackers to cause a denial of service (crash) via malformed packets as demonstrated by (1) "jolt", (2) "jolt2", (3) "raped", (4) "hping2", (5) "bloop", (6) "bubonic", (7) "mutant", (8) "trash", and (9) "trash2." | 5.0 |
2002-10-04 | CVE-2002-0879 | Unspecified vulnerability in Gafware Cfximage 1.6.4/1.6.6 showtemp.cfm for Gafware CFXImage 1.6.6 allows remote attackers to read arbitrary files via (1) a .. | 5.0 |
2002-10-04 | CVE-2002-0877 | Directory Traversal vulnerability in Evolvable Corporation Shambala Server 4.5 Directory traversal vulnerability in the FTP server for Shambala 4.5 allows remote attackers to read arbitrary files via a .. | 5.0 |
2002-10-04 | CVE-2002-0876 | Denial Of Service vulnerability in Evolvable Corporation Shambala Server 4.5 Web server for Shambala 4.5 allows remote attackers to cause a denial of service (crash) via a malformed HTTP request. | 5.0 |
2002-10-04 | CVE-2002-0835 | Denial Of Service vulnerability in PXE Server DHCP Packet Preboot eXecution Environment (PXE) server allows remote attackers to cause a denial of service (crash) via certain DHCP packets from Voice-Over-IP (VOIP) phones. | 5.0 |
2002-10-04 | CVE-2002-0699 | Unspecified vulnerability in Microsoft products Unknown vulnerability in the Certificate Enrollment ActiveX Control in Microsoft Windows 98, Windows 98 Second Edition, Windows Millennium, Windows NT 4.0, Windows 2000, and Windows XP allow remote attackers to delete digital certificates on a user's system via HTML. | 5.0 |
2002-09-24 | CVE-2002-0986 | Unspecified vulnerability in PHP The mail function in PHP 4.x to 4.2.2 does not filter ASCII control characters from its arguments, which could allow remote attackers to modify mail message content, including mail headers, and possibly use PHP as a "spam proxy." | 5.0 |
2002-09-24 | CVE-2002-0983 | Denial Of Service vulnerability in Irssi 0.8.4 IRC client irssi in irssi-text before 0.8.4 allows remote attackers to cause a denial of service (crash) via an IRC channel that has a long topic followed by a certain string, possibly triggering a buffer overflow. | 5.0 |
2002-09-24 | CVE-2002-0978 | Remote Security vulnerability in File Transfer Manager Microsoft File Transfer Manager (FTM) ActiveX control before 4.0 allows remote attackers to upload or download arbitrary files to arbitrary locations via a man-in-the-middle attack with modified TGT and TGN parameters in a call to the "Persist" function. | 5.0 |
2002-09-24 | CVE-2002-0976 | Unspecified vulnerability in Microsoft Internet Explorer Internet Explorer 4.0 and later allows remote attackers to read arbitrary files via a web page that accesses a legacy XML Datasource applet (com.ms.xml.dso.XMLDSO.class) and modifies the base URL to point to the local system, which is trusted by the applet. | 6.4 |