Vulnerabilities > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-09-05 | CVE-2002-0725 | Link Following vulnerability in Microsoft Windows 2000 and Windows NT NTFS file system in Windows NT 4.0 and Windows 2000 SP2 allows local attackers to hide file usage activities via a hard link to the target file, which causes the link to be recorded in the audit trail instead of the target file. | 5.5 |
2002-09-05 | CVE-2002-0632 | Unspecified vulnerability in SGI Irix Vulnerability in SGI BDS (Bulk Data Service) BDSPro 2.4 and earlier allows clients to read arbitrary files on a BDS server. | 5.0 |
2002-08-31 | CVE-2002-1608 | Local Security vulnerability in HP-UX Buffer overflow in traceroute in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to execute arbitrary code. | 4.6 |
2002-08-31 | CVE-2002-1607 | Unspecified vulnerability in HP Hp-Ux and Tru64 Buffer overflow in ypmatch in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to execute arbitrary code. | 4.6 |
2002-08-30 | CVE-2002-1611 | Unspecified vulnerability in HP Hp-Ux and Tru64 Buffer overflow in quot in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges. | 4.6 |
2002-08-30 | CVE-2002-1609 | Unspecified vulnerability in HP Hp-Ux and Tru64 Buffer overflow in binmail in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allows local users to gain privileges. | 4.6 |
2002-08-30 | CVE-2002-1606 | Unspecified vulnerability in HP Hp-Ux and Tru64 Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to gain privileges via (1) lpc, (2) lpd, (3) lpq, (4) lpr, or (5) lprm. | 4.6 |
2002-08-29 | CVE-2002-1353 | Remote Security vulnerability in Intranet-Server Localweb2000 2.1.0 LocalWEB2000 HTTP server 2.1.0 stores passwords in plain text under the web document root in users.lst, which allows remote attackers to obtain the passwords via a direct request to users.lst. | 5.0 |
2002-08-24 | CVE-2002-1451 | Information Disclosure vulnerability in Blazix Special Character Handling Server Side Script Blazix before 1.2.2 allows remote attackers to read source code of JSP scripts or list restricted web directories via an HTTP request that ends in a (1) "+" or (2) "\" (backslash) character. | 5.0 |
2002-08-14 | CVE-2002-1453 | HTML Injection vulnerability in Mywebserver 1.0.2 Cross-site scripting (XSS) vulnerability in MyWebServer 1.0.2 allows remote attackers to insert script and HTML via a long request followed by the malicious script, which is echoed back to the user in an error message. network mywebserver | 4.3 |