Weekly Vulnerabilities Reports > December 30, 2002 to January 5, 2003
Overview
547 new vulnerabilities reported during this period, including 43 critical vulnerabilities and 153 high severity vulnerabilities. This weekly summary report vulnerabilities in 476 products from 343 vendors including Microsoft, SUN, Cisco, HP, and QNX. Vulnerabilities are notably categorized as "Improper Restriction of Operations within the Bounds of a Memory Buffer", "Cross-site Scripting", "Permissions, Privileges, and Access Controls", "Improper Input Validation", and "Path Traversal".
- 454 reported vulnerabilities are remotely exploitables.
- 68 reported vulnerabilities are related to weaknesses in OWASP Top Ten.
- 535 reported vulnerabilities are exploitable by an anonymous user.
- Microsoft has the most reported vulnerabilities, with 27 reported vulnerabilities.
- Webmin has the most reported critical vulnerabilities, with 2 reported vulnerabilities.
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
VULNERABILITIES
EXPLOITABLE
EXPLOITABLE
AVAILABLE
ANONYMOUSLY
WEB APPLICATION
Vulnerability Details
The following table list reported vulnerabilities for the period covered by this report:
58 Critical Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2002-12-31 | CVE-2002-2425 | SUN | Permissions, Privileges, and Access Controls vulnerability in SUN Solaris Answerbook2 Sun AnswerBook2 1.2 through 1.4.2 allows remote attackers to execute administrative scripts such as (1) AdminViewError and (2) AdminAddadmin via a direct request. | 10.0 |
2002-12-31 | CVE-2002-2417 | Acftp | Improper Authentication vulnerability in Acftp 1.4 acFTP 1.4 does not properly handle when an invalid password is provided by the user during authentication, which allows remote attackers to hide or misrepresent certain activity from log files and possibly gain privileges. | 10.0 |
2002-12-31 | CVE-2002-2411 | Bannerwheel | Buffer Errors vulnerability in Bannerwheel 1.0 Buffer overflow in badmin.c in BannerWheel 1.0 allows remote attackers to execute arbitrary code via a long rcmd command. | 10.0 |
2002-12-31 | CVE-2002-2402 | Surecom | Unspecified vulnerability in Surecom Ep-4501 SURECOM broadband router EP-4501 uses a default SNMP read community string of "public" and a default SNMP read/write community string of "secret," which allows remote attackers to read and modify router configuration information. | 10.0 |
2002-12-31 | CVE-2002-2400 | Hughes Technologies | Buffer Errors vulnerability in Hughes Technologies Libhttpd 1.2 Buffer overflow in the httpdProcessRequest function in LibHTTPD 1.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP POST request. | 10.0 |
2002-12-31 | CVE-2002-2397 | Symantec | Improper Authentication vulnerability in Symantec Sygate Personal Firewall 5.0 Sygate personal firewall 5.0 could allow remote attackers to bypass firewall filters via spoofed (1) source IP address of 127.0.0.1 or (2) network address of 127.0.0.0. | 10.0 |
2002-12-31 | CVE-2002-2390 | Cerulean Studios | Buffer Errors vulnerability in Cerulean Studios Trillian and Trillian PRO Buffer overflow in the IDENT daemon (identd) in Trillian 0.6351, 0.725, 0.73, 0.74 and 1.0 pro allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long request. | 10.0 |
2002-12-31 | CVE-2002-2374 | SUN | Race Condition vulnerability in SUN Patchpro 2.0 Unspecified vulnerability in pprosetup in Sun PatchPro 2.0 has unknown impact and attack vectors related to "unsafe use of temporary files." | 10.0 |
2002-12-31 | CVE-2002-2368 | NEC | Buffer Errors vulnerability in NEC Socks 5 1.0R11/1.0R5 Multiple buffer overflows in NEC SOCKS5 1.0 r11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via a long username to (1) the GetString function in proxy.c for the SOCKS5 module or (2) the HandleS4Connection function in proxy.c for the SOCKS4 module. | 10.0 |
2002-12-31 | CVE-2002-2365 | Springer Verlag Berlin Heidelberg | Improper Input Validation vulnerability in Springer Verlag Berlin Heidelberg Simple Wais 1.11 Simple WAIS (SWAIS) 1.11 allows remote attackers to execute arbitrary commands via the shell metacharacters in the search field, as demonstrated using the "|" (pipe) character. | 10.0 |
2002-12-31 | CVE-2002-2290 | Mambo | Credentials Management vulnerability in Mambo Site Server 4.0.11 Mambo Site Server 4.0.11 installs with a default username and password of admin, which allows remote attackers to gain privileges. | 10.0 |
2002-12-31 | CVE-2002-2281 | Symantec | Unspecified vulnerability in Symantec Java Symantec Java! JIT (Just-In-Time) Compiler for Netscape Communicator 4.0 through 4.8 allows remote attackers to execute arbitrary Java commands via an applet that uses a jump call, which is not correctly compiled by the JIT compiler. | 10.0 |
2002-12-31 | CVE-2002-2279 | Aldap | Improper Authentication vulnerability in Aldap 0.09 Unspecified vulnerability in the bind function in config.inc of aldap 0.09 allows remote attackers to authenticate with Manager permissions. | 10.0 |
2002-12-31 | CVE-2002-2264 | HP | Denial-Of-Service vulnerability in Secure Web Server For Tru64 4.0/5.0/5.1 Unspecified vulnerability in Internet Group Management Protocol (IGMP) of HP Tru64 4.0F through 5.1A allows remote attackers to cause a denial of service via unknown attack vectors. | 10.0 |
2002-12-31 | CVE-2002-2257 | Tuxbr | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Tuxbr Libcgi 1.0.2/1.0.3 Stack-based buffer overflow in the parse_field function in cgi_lib.c for LIBCGI 1.0.2 and 1.0.3 allows remote attackers to execute arbitrary code via a long argument. | 10.0 |
2002-12-31 | CVE-2002-2253 | Cyrus | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Cyrus Libsieve Multiple buffer overflows in Cyrus Sieve / libSieve 2.1.2 and earlier allow remote attackers to execute arbitrary code via (1) a long header name, (2) a long IMAP flag, or (3) a script that generates a large number of errors that overflow the resulting error string. | 10.0 |
2002-12-31 | CVE-2002-2251 | Marcos Luiz Onisto | Buffer Errors vulnerability in Marcos Luiz Onisto LIB CGI 0.1 Buffer overflow in the changevalue function in libcgi.h for Marcos Luiz Onisto Lib CGI 0.1 allows remote attackers to execute arbitrary code via a long argument. | 10.0 |
2002-12-31 | CVE-2002-2250 | Sybase | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Sybase Adaptive Server 12.0/12.5 Multiple buffer overflows in Sybase Adaptive Server 12.0 and 12.5 allow remote attackers to execute arbitrary code via (1) a long parameter to the xp_freedll extended stored procedure or (2) a long database name argument to the DBCC CHECKVERIFY function. | 10.0 |
2002-12-31 | CVE-2002-2248 | Netscape | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Netscape Communicator Buffer overflow in the sun.awt.windows.WDefaultFontCharset Java class implementation in Netscape 4.0 allows remote attackers to execute arbitrary code via an applet that calls the WDefaultFontCharset constructor with a long string and invokes the canConvert method. | 10.0 |
2002-12-31 | CVE-2002-2236 | APT WWW Proxy | Improper Input Validation vulnerability in Apt-Www-Proxy 1.0 Format string vulnerability in the awp_log function in apt-www-proxy 0.1 allows remote attackers to execute arbitrary code. | 10.0 |
2002-12-31 | CVE-2002-2218 | Sips | Remote Security vulnerability in SIPS CRLF injection vulnerability in the setUserValue function in sipssys/code/site.inc.php in Haakon Nilsen simple, integrated publishing system (SIPS) before 20020209 has unknown impact, possibly gaining privileges or modifying critical configuration, via a CRLF sequence in a key value. | 10.0 |
2002-12-31 | CVE-2002-2209 | Pablo Software Solutions | Remote Security vulnerability in Baby FTP Server Unspecified "security vulnerability" in Baby FTP Server versions before November 7, 2002 has unknown impact and attack vectors. | 10.0 |
2002-12-31 | CVE-2002-2207 | Eric Rescorla | Buffer Overflow vulnerability in Eric Rescorla Ssldump 0.9B1/0.9B2 Buffer overflow in ssldump 0.9b2 and earlier, when running in decryption mode, allows remote attackers to execute arbitrary code via a long RSA PreMasterSecret. | 10.0 |
2002-12-31 | CVE-2002-2201 | Webmin | Remote Security vulnerability in Webmin The Printer Administration module for Webmin 0.990 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the printer name. | 10.0 |
2002-12-31 | CVE-2002-2198 | Zmailer | Buffer Overflow vulnerability in ZMailer SMTP IPv6 HELO Resolved Hostname Buffer overflow in ZMailer before 2.99.51_1 allows remote attackers to execute arbitrary code during HELO processing from an IPv6 address, possibly using an address that resolves to a long hostname. | 10.0 |
2002-12-31 | CVE-2002-2176 | Phpbb Group | Remote SQL Injection vulnerability in phpBB2 Gender Mod SQL injection vulnerability in Gender MOD 1.1.3 allows remote attackers to gain administrative access via the user_level parameter in the User Profile page. | 10.0 |
2002-12-31 | CVE-2002-2159 | Linksys | Remote Security vulnerability in Linksys Befsr11, Befsr41 and Befsru31 Linksys EtherFast Cable/DSL BEFSR11, BEFSR41 and BEFSRU31 with the firmware 1.42.7 upgrade installed opens TCP port 5678 for remote administration even when the "Block WAN" and "Remote Admin" options are disabled, which allows remote attackers to gain access. | 10.0 |
2002-12-31 | CVE-2002-2152 | Software602 | Unspecified vulnerability in Software602 602Pro LAN Suite 2002 The Czech edition of Software602's Web Server before 2002.0.02.0916 allows remote attackers to gain administrator privileges via direct HTTP requests to the /admin/ directory, which is not password protected. | 10.0 |
2002-12-31 | CVE-2002-2133 | Telindus | Unspecified vulnerability in Telindus 1120 Adsl Router 6.0.21Bfirmware Telindus 1100 ASDL router running firmware 6.0.x uses weak encryption for UDP session traffic, which allows remote attackers to gain unauthorized access by sniffing and decrypting the administrative password. | 10.0 |
2002-12-31 | CVE-2002-2088 | Mosix Project | Unspecified vulnerability in Mosix Project Clump OS 5.4 The MOSIX Project clump/os 5.4 creates a default VNC account without a password, which allows remote attackers to gain root access. | 10.0 |
2002-12-31 | CVE-2002-2047 | Sketch | Unspecified vulnerability in Sketch 0.6.12 The file preview functionality in Sketch 0.6.12 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an encapsulated Postscript (EPS) file. | 10.0 |
2002-12-31 | CVE-2002-2017 | SAS | Local Root Code Execution vulnerability in SAS SASTCPD sastcpd in SAS/Base 8.0 allows local users to execute arbitrary code by setting the authprog environment variable to reference a malicious program, which is then executed by sastcpd. | 10.0 |
2002-12-31 | CVE-2002-1993 | Affordable WEB Space Design | Remote Command Execution vulnerability in WebScripts WebBBS webbbs_post.pl in WebBBS 4 and 5.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the followup parameter. | 10.0 |
2002-12-31 | CVE-2002-1974 | Sharp | Remote FTP Server Root Access vulnerability in Sharp Zaurus The FTP service in Zaurus PDAs SL-5000D and SL-5500 does not require authentication, which allows remote attackers to access the file system as root. | 10.0 |
2002-12-31 | CVE-2002-1971 | Sourcecraft | Remote Command Execution vulnerability in Sourcecraft Networking Utils 1.0 The ping utility in networking_utils.php in Sourcecraft Networking_Utils 1.0 allows remote attackers to read arbitrary files via shell metacharacters in the Domain name or IP address argument. | 10.0 |
2002-12-31 | CVE-2002-1959 | Nagios | Unspecified vulnerability in Nagios 1.0B1/1.0B2/1.0B3 Nagios 1.0b1 through 1.0b3 allows remote attackers to execute arbitrary commands via shell metacharacters in plugin output. | 10.0 |
2002-12-31 | CVE-2002-1918 | Microsoft | Buffer Overflow vulnerability in Microsoft Data Access Components 2.5/2.6/2.7 Buffer overflow in Microsoft Active Data Objects (ADO) in Microsoft MDAC 2.5 through 2.7 allows remote attackers to have unknown impact with unknown attack vectors. | 10.0 |
2002-12-31 | CVE-2002-1874 | Astrocam | Improper Input Validation vulnerability in Astrocam astrocam.cgi in AstroCam 0.9-1-1 through 1.4.0 allows remote attackers to execute arbitrary commands via shell metacharacters in an HTTP request. | 10.0 |
2002-12-31 | CVE-2002-1868 | Daniel Stenberg | Remote Command Execution vulnerability in Daniel Stenberg Dispair 0.1/0.2 Dispair 0.1 and 0.2 allows remote attackers to execute arbitrary shell commands via certain form fields. | 10.0 |
2002-12-31 | CVE-2002-1854 | Rlaj | Remote Shell Command Execution vulnerability in Rlaj Whois 1.0 Rlaj whois CGI script (whois.cgi) 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the domain name field. | 10.0 |
2002-12-31 | CVE-2002-1840 | Irssi | Unspecified vulnerability in Irssi 0.8.4 irssi IRC client 0.8.4, when downloaded after 14-March-2002, could contain a backdoor in the configuration file, which allows remote attackers to access the system. | 10.0 |
2002-12-31 | CVE-2002-1794 | HP | Privilege Escalation vulnerability in HP-UX LDAP-UX Integration Pam-Authz Unknown vulnerability in pam_authz in the LDAP-UX Integration product on HP-UX 11.00 and 11.11 allows remote attackers to execute r-commands with privileges of other users. | 10.0 |
2002-12-31 | CVE-2002-1792 | Fake Identd | Remote Buffer Overflow vulnerability in Fake Identd Client Query Buffer overflow in Fake Identd 0.9 through 1.4 allows remote attackers to execute arbitrary code as root via a long request that is split into multiple packets. | 10.0 |
2002-12-31 | CVE-2002-1734 | Aspbin | Unspecified vulnerability in Aspbin Newspro 1.0.1 NewsPro 1.01 allows remote attackers to gain unauthorized administrator access by setting their authentication cookie to "logged,true". | 10.0 |
2002-12-31 | CVE-2002-1699 | Pascal Michaud | SQL Injection vulnerability in Pascal Michaud ASP Client Check 1.3/1.5 SQL injection vulnerability in ASP Client Check (ASPCC) 1.3 and 1.5 allows remote attackers to bypass authentication and gain unauthorized access via the password field. | 10.0 |
2002-12-31 | CVE-2002-1691 | Alcatel Lucent | Unspecified vulnerability in Alcatel-Lucent Omnipcx 4400 Alcatel OmniPCX 4400 installs known user accounts and passwords in the /etc/password file by default, which allows remote attackers to gain unauthorized access. | 10.0 |
2002-12-31 | CVE-2002-1690 | IBM | Remote Security vulnerability in IBM AIX 3.2.5 Unknown vulnerability in AIX before 4.0 with unknown attack vectors and unknown impact, aka "security issue," as fixed by APAR IY28225. | 10.0 |
2002-12-31 | CVE-2002-1689 | IBM | Remote Security vulnerability in IBM AIX 3.2.5 Unknown vulnerability in the login program on AIX before 4.0 could allow remote users to specify 100 or more environment variables when logging on, which exceeds the length of a certain string, possibly triggering a buffer overflow. | 10.0 |
2002-12-31 | CVE-2002-1686 | IBM | Remote Security vulnerability in AIX Buffer overflow in lscfg of unknown versions of AIX has unknown impact. | 10.0 |
2002-12-31 | CVE-2002-1659 | Iatek | Remote Security vulnerability in Iatek Portalapp 2.2 user_profile.asp in PortalApp 2.2 allows local users to gain privileges by modifying the user_id variable. | 10.0 |
2002-12-31 | CVE-2002-1629 | Multi Tech | Unspecified vulnerability in Multi-Tech Proxyserver Mtpsr1/Mtpsr2/Mtpsr3 Multi-Tech ProxyServer products MTPSR1-100, MTPSR1-120, MTPSR1-202ST, MTPSR2-201, and MTPSR3-200 ship with a null password, which allows remote attackers to gain administrative privileges via Telnet or HTTP. | 10.0 |
2002-12-31 | CVE-2002-2119 | Novell | Improper Handling of Case Sensitivity vulnerability in Novell Edirectory 8.6.2/8.7 Novell eDirectory 8.6.2 and 8.7 use case insensitive passwords, which makes it easier for remote attackers to conduct brute force password guessing. | 9.8 |
2002-12-31 | CVE-2002-1820 | Ultimate PHP Board Project | Improper Handling of Case Sensitivity vulnerability in Ultimate PHP Board Project Ultimate PHP Board 1.0 register.php in Ultimate PHP Board (UPB) 1.0 and 1.0b uses an administrative account Admin with a capital "A," but allows a remote attacker to impersonate the administrator by registering an account name of admin with a lower case "a." | 9.8 |
2002-12-31 | CVE-2002-1816 | Redshift | Off-by-one Error vulnerability in Redshift Atphttpd 0.4B Off-by-one buffer overflow in the sock_gets function in sockhelp.c for ATPhttpd 0.4b and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request. | 9.8 |
2002-12-31 | CVE-2002-2269 | Webster | Path Traversal vulnerability in Webster Http Server Directory traversal vulnerability in Webster HTTP Server allows remote attackers to read arbitrary files via a .. | 9.4 |
2002-12-31 | CVE-2002-2268 | Netdave | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Netdave Webster Http Server Buffer overflow in Webster HTTP Server allows remote attackers to execute arbitrary code via a long URL. | 9.4 |
2002-12-31 | CVE-2002-2360 | Webmin | Permissions, Privileges, and Access Controls vulnerability in Webmin The RPC module in Webmin 0.21 through 0.99, when installed without root or admin privileges, allows remote attackers to read and write to arbitrary files and execute arbitrary commands via remote_foreign_require and remote_foreign_call requests. | 9.3 |
2002-12-31 | CVE-2002-1798 | Midicart | Forced Browsing vulnerability in Midicart PHP, Midicart PHP Maxi and Midicart PHP Plus MidiCart PHP, PHP Plus, and PHP Maxi allows remote attackers to (1) upload arbitrary php files via a direct request to admin/upload.php or (2) access sensitive information via a direct request to admin/credit_card_info.php. | 9.1 |
201 High Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2002-12-31 | CVE-2002-2313 | Qualcomm | Remote Security vulnerability in Qualcomm Eudora 5.1.1 Eudora email client 5.1.1, with "use Microsoft viewer" enabled, allows remote attackers to execute arbitrary programs via an HTML email message containing a META refresh tag that references an embedded .mhtml file with ActiveX controls that execute a second embedded program, which is processed by Internet Explorer. | 8.8 |
2002-12-31 | CVE-2002-2232 | Mollensoft Software | Buffer Errors vulnerability in Mollensoft Software Enceladus Server Suite 3.9 Buffer overflow in Enceladus Server Suite 3.9 allows remote attackers to execute arbitrary code via a long CD (CWD) command. | 8.5 |
2002-12-31 | CVE-2002-2233 | Mollensoft Software | Path Traversal vulnerability in Mollensoft Software Enceladus Server Suite 3.9 Directory traversal vulnerability in Enceladus Server Suite 3.9 allows remote attackers to list arbitrary directories and possibly cause a denial of service via "@" (at) characters in a CD (CWD) command, such as (1) "@/....\", (2) "@@@/..c:\", or (3) "@/..@/..". | 8.3 |
2002-12-31 | CVE-2002-2421 | Andrey Cherezov | Improper Input Validation vulnerability in Andrey Cherezov Acweb 1.14 acWEB 1.14 allows remote attackers to cause a denial of service (crash) via an HTTP request for a MS-DOS device name such as COM2. | 7.8 |
2002-12-31 | CVE-2002-2419 | Dctc Project | Numeric Errors vulnerability in Dctc Project Dctc 0.83.3 Direct connect text client (DCTC) client 0.83.3 allows remote attackers to cause a denial of service (crash) via a string ending with a NULL byte character. | 7.8 |
2002-12-31 | CVE-2002-2371 | Linksys | Improper Input Validation vulnerability in Linksys Wet11 1.31/1.32 Linksys WET11 firmware 1.31 and 1.32 allows remote attackers to cause a denial of service (crash) via a packet containing the device's hardware address as the source MAC address in the DLC header. | 7.8 |
2002-12-31 | CVE-2002-2367 | Socks5 | Buffer Errors vulnerability in Socks5 1.0R11 Off-by-one buffer overflow in NEC SOCKS5 1.0 r11 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long hostname. | 7.8 |
2002-12-31 | CVE-2002-2354 | Netgear | Improper Input Validation vulnerability in Netgear Fm114P Netgear FM114P firmware 1.3 wireless firewall allows remote attackers to cause a denial of service (crash or hang) via a large number of TCP connection requests. | 7.8 |
2002-12-31 | CVE-2002-2329 | Mirabilis | Improper Input Validation vulnerability in Mirabilis ICQ 2001B/2002A/2002B ICQ client 2001b, 2002a and 2002b allows remote attackers to cause a denial of service (CPU consumption or crash) via a message with a large number of emoticons. | 7.8 |
2002-12-31 | CVE-2002-2325 | University OF Washington | Improper Input Validation vulnerability in University of Washington Pine The c-client library in Internet Message Access Protocol (IMAP) dated before 2002 RC2, as used by Pine 4.20 through 4.44, allows remote attackers to cause a denial of service (client crash) via a MIME-encoded email with Content-Type header containing an empty boundary field. | 7.8 |
2002-12-31 | CVE-2002-2320 | Mysimplenews | Permissions, Privileges, and Access Controls vulnerability in Mysimplenews 1.0 MySimpleNews 1.0 allows remote attackers to delete arbitrary email messages via a direct request to vider.php3. | 7.8 |
2002-12-31 | CVE-2002-2317 | Symantec | Information Exposure vulnerability in Symantec Velociraptor 1.0 Memory leak in the (1) httpd, (2) nntpd, and (3) vpn driver in VelociRaptor 1.0 allows remote attackers to cause a denial of service (memory consumption) via an unknown method. | 7.8 |
2002-12-31 | CVE-2002-2315 | Cisco | Denial Of Service vulnerability in Cisco IOS ICMP Redirect Cisco IOS 11.2.x and 12.0.x does not limit the size of its redirect table, which allows remote attackers to cause a denial of service (memory consumption) via spoofed ICMP redirect packets to the router. | 7.8 |
2002-12-31 | CVE-2002-2309 | PHP | Resource Management Errors vulnerability in PHP php.exe in PHP 3.0 through 4.2.2, when running on Apache, does not terminate properly, which allows remote attackers to cause a denial of service via a direct request without arguments. | 7.8 |
2002-12-31 | CVE-2002-2306 | Kazaa | Resource Management Errors vulnerability in Kazaa Media Desktop 1.7.1 Sharman Networks KaZaA Media Desktop 1.7.1 allows remote attackers to cause a denial of service (CPU consumption) by sending several large messages. | 7.8 |
2002-12-31 | CVE-2002-2303 | 3D3 COM | Cryptographic Issues vulnerability in 3D3.Com Shopfactory 5.8 3D3.Com ShopFactory 5.8 uses client-side encryption and decryption for sensitive price data, which allows remote attackers to modify shopping cart prices by using the Javascript to decrypt the cookie that contains the data. | 7.8 |
2002-12-31 | CVE-2002-2291 | Calisto | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Calisto Internet Talker Calisto Internet Talker 0.04 and earlier allows remote attackers to cause a denial of service (hang) via a long request, possibly triggering a buffer overflow. | 7.8 |
2002-12-31 | CVE-2002-2272 | Apache | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apache Http Server and Tomcat Tomcat 4.0 through 4.1.12, using mod_jk 1.2.1 module on Apache 1.3 through 1.3.27, allows remote attackers to cause a denial of service (desynchronized communications) via an HTTP GET request with a Transfer-Encoding chunked field with invalid values. | 7.8 |
2002-12-31 | CVE-2002-2239 | Cisco | Improper Input Validation vulnerability in Cisco IOS 12.1E The Cisco Optical Service Module (OSM) for the Catalyst 6500 and 7600 series running Cisco IOS 12.1(8)E through 12.1(13.4)E allows remote attackers to cause a denial of service (hang) via a malformed packet. | 7.8 |
2002-12-31 | CVE-2002-2208 | Extended Interior Gateway Routing Protocol Cisco | Denial Of Service vulnerability in Cisco IOS EIGRP Announcement ARP Extended Interior Gateway Routing Protocol (EIGRP), as implemented in Cisco IOS 11.3 through 12.2 and other products, allows remote attackers to cause a denial of service (flood) by sending a large number of spoofed EIGRP neighbor announcements, which results in an ARP storm on the local network. | 7.8 |
2002-12-31 | CVE-2002-2206 | Symantec | Local Denial of Service vulnerability in Symantec Norton Antivirus 2001 The POP3 proxy service (POPROXY.EXE) in Norton AntiVirus 2001 allows local users to cause a denial of service (CPU consumption and crash) via a long username with multiple /localhost entries. | 7.8 |
2002-12-31 | CVE-2002-2179 | Unisys | Denial Of Service vulnerability in Unisys Clearpath MCP Portscan The dynamic initialization feature of the ClearPath MCP environment allows remote attackers to cause a denial of service (crash) via a TCP port scan using a tool such as nmap. | 7.8 |
2002-12-31 | CVE-2002-1844 | Microsoft | Incorrect Default Permissions vulnerability in Microsoft Windows Media Player 6.3 Microsoft Windows Media Player (WMP) 6.3, when installed on Solaris, installs executables with world-writable permissions, which allows local users to delete or modify the executables to gain privileges. | 7.8 |
2002-12-31 | CVE-2002-1796 | HP | Improper Verification of Cryptographic Signature vulnerability in HP Chaivm Ezloader ChaiVM EZloader for HP color LaserJet 4500 and 4550 and HP LaserJet 4100 and 8150 does not properly verify JAR signatures for new services, which allows local users to load unauthorized Chai services. | 7.8 |
2003-01-02 | CVE-2002-1379 | Openldap | Unspecified vulnerability in Openldap 2.0 OpenLDAP2 (OpenLDAP 2) 2.2.0 and earlier allows remote or local attackers to execute arbitrary code when libldap reads the .ldaprc file within applications that are running with extra privileges. | 7.5 |
2003-01-02 | CVE-2002-1378 | Openldap | Buffer Overflow vulnerability in Openldap 2.0 Multiple buffer overflows in OpenLDAP2 (OpenLDAP 2) 2.2.0 and earlier allow remote attackers to execute arbitrary code via (1) long -t or -r parameters to slurpd, (2) a malicious ldapfilter.conf file that is not properly handled by getfilter functions, (3) a malicious ldaptemplates.conf that causes an overflow in libldap, (4) a certain access control list that causes an overflow in slapd, or (5) a long generated filename for logging rejected replication requests. | 7.5 |
2002-12-31 | CVE-2002-2420 | Independent Solution | Improper Input Validation vulnerability in Independent Solution Simple Site Searcher and Super Site Searcher site_searcher.cgi in Super Site Searcher allows remote attackers to execute arbitrary commands via shell metacharacters in the page parameter. | 7.5 |
2002-12-31 | CVE-2002-2408 | Gordano | Unspecified vulnerability in Gordano Ntmail 8.0 Gordano Messaging Server (GMS) Mail 8 (a.k.a. | 7.5 |
2002-12-31 | CVE-2002-2391 | Webchat ORG Xoops | SQL Injection vulnerability in multiple products SQL injection vulnerability in index.php of WebChat 1.5 included in XOOPS 1.0 allows remote attackers to execute arbitrary SQL commands via the roomid parameter. | 7.5 |
2002-12-31 | CVE-2002-2385 | Hotfoon Corporation | Buffer Errors vulnerability in Hotfoon Corporation Hotfoon 4.0 Buffer overflow in hotfoon4.exe in Hotfoon 4.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a URL containing a long voice phone number. | 7.5 |
2002-12-31 | CVE-2002-2383 | F2Html PL | SQL Injection vulnerability in F2Html.Pl SQL injection vulnerability in f2html.pl 0.1 through 0.4 allows remote attackers to execute arbitrary SQL commands via file names. | 7.5 |
2002-12-31 | CVE-2002-2381 | KA SHU Wong | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ka-Shu Wong Gtetrinet Multiple buffer overflows in (1) tetrinet_inmessage, (2) speclist_add and (3) config-getthemeinfo of GTetrinet 0.4.3 and earlier allow remote attackers to casue a denial of service and possibly execute arbitrary code. | 7.5 |
2002-12-31 | CVE-2002-2373 | Apple | Configuration vulnerability in Apple TCP IP Configuration Utility 12640 The default configuration of the TCP/IP printer configuration utility in Apple LaserWriter 12/640 PS printer contains a blank Telnet password, which allows remote attackers to gain access. | 7.5 |
2002-12-31 | CVE-2002-2345 | Oracle | Credentials Management vulnerability in Oracle Application Server 9.0.2 Oracle 9i Application Server 9.0.2 stores the web cache administrator interface password in plaintext, which allows remote attackers to gain access. | 7.5 |
2002-12-31 | CVE-2002-2323 | SUN | Improper Preservation of Permissions vulnerability in SUN Solaris PC Netlink 1.0/1.1/1.2 Sun PC NetLink 1.0 through 1.2 does not properly set the access control list (ACL) for files and directories that use symbolic links and have been restored from backup, which could allow local or remote attackers to bypass intended access restrictions. | 7.5 |
2002-12-31 | CVE-2002-2319 | Mysimplenews | Code Injection vulnerability in Mysimplenews 1.0 Static code injection vulnerability in users.php in MySimpleNews allows remote attackers to inject arbitrary PHP code and HTML via the (1) LOGIN, (2) DATA, and (3) MESS parameters, which are inserted into news.php3. | 7.5 |
2002-12-31 | CVE-2002-2305 | Phpsecure ORG | SQL Injection vulnerability in PHPsecure.Org Immobilier 1.0 SQL injection vulnerability in agentadmin.php in Immobilier allows remote attackers to execute arbitrary SQL commands via the (1) agentname or (2) agentpassword parameter. | 7.5 |
2002-12-31 | CVE-2002-2304 | Myphpsoft | SQL Injection vulnerability in Myphpsoft Myphplinks 2.1.9/2.2.0 SQL injection vulnerability in admin/auth/checksession.php in MyPHPLinks 2.1.9 and 2.2.0 allows remote attackers to execute arbitrary SQL commands via the idsession parameter. | 7.5 |
2002-12-31 | CVE-2002-2300 | 3Com | Buffer Errors vulnerability in 3Com Webbngss3Nbxnts 4.0.17/4.1.21/4.1.4 Buffer overflow in ftpd 5.4 in 3Com NBX 4.0.17 or ftpd 5.4.2 in 3Com NBX 4.1.4 allows remote attackers to cause a denial of service (crash) via a long CEL command. | 7.5 |
2002-12-31 | CVE-2002-2295 | Pico Server | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Pico Server Pico Server Buffer overflow in Pico Server (pServ) 2.0 beta 1 through beta 5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) a 1024-byte TCP stream message, which triggers an off-by-one buffer overflow, or (2) a long method name in an HTTP request, (3) a long version number in an HTTP request, (4) a long User-Agent header, or (5) a long file path. | 7.5 |
2002-12-31 | CVE-2002-2287 | Phpbb | Code Injection vulnerability in PHPbb Advanced Quick Reply Hack 1.0.0/1.1.0 PHP remote file inclusion vulnerability in quick_reply.php for phpBB Advanced Quick Reply Hack 1.0.0 and 1.1.0 allows remote attackers to execute arbitrary PHP code via the phpbb_root_path parameter. | 7.5 |
2002-12-31 | CVE-2002-2277 | Portail WEB PHP | SQL Injection vulnerability in Portail web PHP Portail web PHP 0.99 SQL injection vulnerability in mod_search/index.php in PortailPHP 0.99 allows remote attackers to execute arbitrary SQL commands via the (1) $rech, (2) $BD_Tab_docs, (3) $BD_Tab_file, (4) $BD_Tab_liens, (5) $BD_Tab_faq, or (6) $chemin variables. | 7.5 |
2002-12-31 | CVE-2002-2261 | Sendmail | Permissions, Privileges, and Access Controls vulnerability in Sendmail Sendmail 8.9.0 through 8.12.6 allows remote attackers to bypass relaying restrictions enforced by the 'check_relay' function by spoofing a blank DNS hostname. | 7.5 |
2002-12-31 | CVE-2002-2252 | Atthat COM | SQL Injection vulnerability in Atthat.Com Thatware SQL injection vulnerability in auth.inc.php in Thatware 0.5.0 and earlier allows remote attackers to execute arbitrary SQL commands via a base64-encoded user parameter. | 7.5 |
2002-12-31 | CVE-2002-2249 | PHP Evolution | Code Injection vulnerability in PHP Evolution News Evolution 1.0/2.0 PHP remote file inclusion vulnerability in News Evolution 2.0 allows remote attackers to execute arbitrary PHP commands via the neurl parameter to (1) backend.php, (2) screen.php, or (3) admin/modules/comment.php. | 7.5 |
2002-12-31 | CVE-2002-2226 | Tftpd32 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Tftpd32 Buffer overflow in tftpd of TFTP32 2.21 and earlier allows remote attackers to execute arbitrary code via a long filename argument. | 7.5 |
2002-12-31 | CVE-2002-2219 | Chetcpasswd | Unspecified vulnerability in Chetcpasswd 2.1 chetcpasswd.cgi in Pedro Lineu Orso chetcpasswd before 2.1 allows remote attackers to read the last line of the shadow file via a long user (userid) field. | 7.5 |
2002-12-31 | CVE-2002-2204 | Redhat | Unspecified vulnerability in Redhat Package Manager The default --checksig setting in RPM Package Manager 4.0.4 checks that a package's signature is valid without listing who signed it, which can allow remote attackers to make it appear that a malicious package comes from a trusted source. | 7.5 |
2002-12-31 | CVE-2002-2200 | Benjamin Lefevre | Remote File Include vulnerability in Benjamin Lefevre Dobermann Forum Benjamin Lefevre Dobermann FORUM 0.5 and earlier allows remote attackers to remotely include and execute malicious PHP files via the "subpath" variablein (1) entete.php, (2) enteteacceuil.php, (3) index.php, or (4) newtopic.php. | 7.5 |
2002-12-31 | CVE-2002-2196 | Samba | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Samba Samba before 2.2.5 does not properly terminate the enum_csc_policy data structure, which may allow remote attackers to execute arbitrary code via a buffer overflow attack. | 7.5 |
2002-12-31 | CVE-2002-2190 | Artscore Studios | Unspecified vulnerability in Artscore Studios Cutecast Forum 1.2 ArtsCore Studios CuteCast Forum 1.2 stores passwords in plaintext under the web document root, which allows remote attackers to obtain the passwords via an HTTP request to a .user file. | 7.5 |
2002-12-31 | CVE-2002-2183 | Phpshare | Remote PHP File Include vulnerability in PHPshare 0.5.2/0.6Beta1/0.6Beta2 phpShare.php in phpShare before 0.6 beta 3 allows remote attackers to include and execute arbitrary PHP scripts from remote servers. | 7.5 |
2002-12-31 | CVE-2002-2173 | Cerulean Studios | Buffer Overflow vulnerability in Trillian IRC Module Buffer overflow in the IRC module of Trillian 0.725 and 0.73 allowing remote attackers to execute arbitrary code via a long DCC Chat message. | 7.5 |
2002-12-31 | CVE-2002-2170 | Working Resources INC | Unspecified vulnerability in Working Resources Inc. Badblue Working Resources Inc. | 7.5 |
2002-12-31 | CVE-2002-2168 | Thorsten Korner | SQL Injection vulnerability in Thorsten Korner 123Tkshop 0.2/0.3 SQL injection vulnerability in Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to execute arbitrary SQL queries via various programs including function_describe_item1.inc.php. | 7.5 |
2002-12-31 | CVE-2002-2156 | Cerulean Studios | Remote Security vulnerability in Cerulean Studios Trillian 0.73 Buffer overflow in Trillian 0.73 allows remote IRC servers to execute arbitrary code via a long PING response. | 7.5 |
2002-12-31 | CVE-2002-2155 | Cerulean Studios | Unspecified vulnerability in Cerulean Studios Trillian 0.725/0.73 Format string vulnerability in the error handling of IRC invite responses for Trillian 0.725 and 0.73 allows remote IRC servers to execute arbitrary code via an invite to a channel with format string specifiers in the name. | 7.5 |
2002-12-31 | CVE-2002-2153 | Oracle | Unspecified vulnerability in Oracle Application Server 4.0.8/4.0.8.2 Format string vulnerability in the administrative pages of the PL/SQL module for Oracle Application Server 4.0.8 and 4.0.8 2 allows remote attackers to execute arbitrary code. | 7.5 |
2002-12-31 | CVE-2002-2146 | Savant | Denial Of Service vulnerability in Savant Webserver 3.1 cgitest.exe in Savant Web Server 3.1 and earlier allows remote attackers to cause a denial of service (crash) via a long HTTP request. | 7.5 |
2002-12-31 | CVE-2002-2145 | Savant | Unspecified vulnerability in Savant Webserver Savant Web Server 3.1 and earlier allows remote attackers to bypass authentication for password protected user folders via a URL with a hex encoded space (%20) and a '.' (%2e) at the end of the filename. | 7.5 |
2002-12-31 | CVE-2002-2143 | Mysimplenews | Remotely Readable Administrator Password vulnerability in Mysimplenews 1.0 The admin.html file in MySimple News 1.0 stores its administrative password in plaintext, which allows remote attackers to gain unauthorized access to the web server by viewing the source of admin.html. | 7.5 |
2002-12-31 | CVE-2002-2142 | BEA | Unspecified vulnerability in BEA Weblogic Integration and Weblogic Server An undocumented extension for the Servlet mappings in the Servlet 2.3 specification, when upgrading to WebLogic Server and Express 7.0 Service Pack 1 from BEA WebLogic Server and Express 6.0 through 7.0.0.1, does not prepend a "/" character in certain URL patterns, which prevents the proper enforcement of role mappings and policies in applications that use the extension. | 7.5 |
2002-12-31 | CVE-2002-2141 | BEA | Unspecified vulnerability in BEA Weblogic Server 7.0/7.0.0.1 BEA WebLogic Server and Express 7.0 and 7.0.0.1, when running Servlets and Enterprise JavaBeans (EJB) on more than one server, will remove the security constraints and roles on all servers for any Servlets or EJB that are used by an application that is undeployed on one server, which could allow remote attackers to conduct unauthorized activities in violation of the intended restrictions. | 7.5 |
2002-12-31 | CVE-2002-2130 | Gallery Project | Remote Code Execution vulnerability in Gallery Project Gallery 1.3.2 publish_xp_docs.php in Gallery 1.3.2 allows remote attackers to execute arbitrary PHP code by modifying the GALLERY_BASEDIR parameter to reference a URL on a remote web server that contains the code. | 7.5 |
2002-12-31 | CVE-2002-2123 | Gallery Project | Remote Code Execution vulnerability in Gallery Project Gallery 1.3.2 PHP remote file inclusion vulnerability in publish_xp_docs.php for Gallery 1.3.2 allows remote attackers to inject arbitrary PHP code by specifying a URL to an init.php file in the GALLERY_BASEDIR parameter. | 7.5 |
2002-12-31 | CVE-2002-2114 | Netjuke | Remote Command Execution vulnerability in Netjuke Artekopia Netjuke before 1.0 b7 allows remote attackers to execute arbitrary code on the web server, possibly via the section parameter, which is passed to an eval call. | 7.5 |
2002-12-31 | CVE-2002-2113 | AGH | Unspecified vulnerability in AGH Htmlsearch 1.0 search.cgi in AGH HTMLsearch 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the template parameter. | 7.5 |
2002-12-31 | CVE-2002-2109 | Matt Wright | Unspecified vulnerability in Matt Wright Formmail Matt Wright FormMail 1.9 and earlier allows remote attackers to bypass the HTTP_REFERER check and conduct unauthorized activities via (1) a blank referer, (2) a spoofed referer with a trusted domain/URL after the beginning of the referer, or (3) a spoofed referer with a trusted domain/URL in the beginning (hostname) portion of the referer. | 7.5 |
2002-12-31 | CVE-2002-2106 | Wikkitikkitavi | Remote File Include vulnerability in Wikkitikkitavi 0.10/0.20/0.5 PHP remote file inclusion vulnerability in WikkiTikkiTavi before 0.21 allows remote attackers to execute arbitrary PHP code via the TemplateDir variable, as demonstrated using conflict.php. | 7.5 |
2002-12-31 | CVE-2002-2104 | Ganglia | Remote Command Execution vulnerability in Ganglia PHP RRD web Client 1.0.1 graph.php in Ganglia PHP RRD Web Client 1.0.2 allows remote attackers to execute arbitrary commands via the command parameter, which is provided to the passthru function. | 7.5 |
2002-12-31 | CVE-2002-2101 | Microsoft | Unspecified vulnerability in Microsoft Outlook 2002 Microsoft Outlook 2002 allows remote attackers to execute arbitrary JavaScript code, even when scripting is disabled, via an "about:" or "javascript:" URI in the href attribute of an "a" tag. | 7.5 |
2002-12-31 | CVE-2002-2098 | Axspawn | Buffer Overflow vulnerability in Axspawn 0.2.4.1 Buffer overflow in axspawn.c in Axspawn-pam before 0.2.1a allows remote attackers to execute arbitrary code via large packets. | 7.5 |
2002-12-31 | CVE-2002-2096 | Novell | Remote Manager Authentication Buffer Overflow vulnerability in Novell Netware 5.1/6.0 Buffer overflow in Novell Remote Manager module, httpstk.nlm, in NetWare 5.1 and NetWare 6 allows remote attackers to execute arbitrary code via a long (1) username or (2) password. | 7.5 |
2002-12-31 | CVE-2002-2091 | Decfingerd | Unspecified vulnerability in Decfingerd 0.7 Format string vulnerability in Deception Finger Daemon, decfingerd, 0.7 may allow remote attackers to execute arbitrary code via the username of a finger request. | 7.5 |
2002-12-31 | CVE-2002-2082 | Floosietek | Unspecified vulnerability in Floosietek Ftgateoffice and Ftgatepro FTGate and FTGate Pro 1.05 lock user mailboxes before authentication succeeds, which allows remote attackers to lock the mailboxes of other users. | 7.5 |
2002-12-31 | CVE-2002-2078 | Floosietek | Heap Overflow vulnerability in Floosietek FTGate APOP Command Heap-based buffer overflow in Floositek (1) FTGate Pro 1.05 and (2) FTGate Office 1.05 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long POP3 APOP USER command. | 7.5 |
2002-12-31 | CVE-2002-2074 | Erwin Lansing | Unspecified vulnerability in Erwin Lansing Mailidx 20010925 SQL injection vulnerability in Mailidx before 20020105 allows remote attackers to execute arbitrary SQL commands via the search web page. | 7.5 |
2002-12-31 | CVE-2002-2070 | Accessdata | Incomplete Cleanup vulnerability in Accessdata Secureclean 3 SecureClean 3 build 2.0 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted. | 7.5 |
2002-12-31 | CVE-2002-2069 | PGP | Incomplete Cleanup vulnerability in PGP Personal Privacy PGP 6.x and 7.x does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted. | 7.5 |
2002-12-31 | CVE-2002-2068 | Tolvanen | Incomplete Cleanup vulnerability in Tolvanen Eraser 5.3 Eraser 5.3 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted. | 7.5 |
2002-12-31 | CVE-2002-2067 | East TEC | Incomplete Cleanup vulnerability in East-Tec Eraser 2002 East-Tec Eraser 2002 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted. | 7.5 |
2002-12-31 | CVE-2002-2066 | Jetico | Incomplete Cleanup vulnerability in Jetico Bcwipe 1.0.7/2.0/2.35.1 BestCrypt BCWipe 1.0.7 and 2.0 through 2.35.1 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted. | 7.5 |
2002-12-31 | CVE-2002-2064 | Phpwebgallery | Unspecified vulnerability in PHPwebgallery 1.0 isadmin.php in PhpWebGallery 1.0 allows remote attackers to gain administrative access via by setting the photo_login cookie to pseudo. | 7.5 |
2002-12-31 | CVE-2002-2063 | Atguard | Unspecified vulnerability in Atguard Personal Firewall 3.2 AtGuard 3.2 allows remote attackers to bypass firwall filters and execute prohibited programs by changing the filenames to permitted filenames. | 7.5 |
2002-12-31 | CVE-2002-2061 | Mozilla Netscape | Denial-Of-Service vulnerability in Netscape Heap-based buffer overflow in Netscape 6.2.3 and Mozilla 1.0 and earlier allows remote attackers to crash client browsers and execute arbitrary code via a PNG image with large width and height values and an 8-bit or 16-bit alpha channel. | 7.5 |
2002-12-31 | CVE-2002-2060 | Twibright Labs | Buffer Overflow vulnerability in Twibright Labs Links 2.0Pre4 Buffer overflow in Links 2.0 pre4 allows remote attackers to crash client browsers and possibly execute arbitrary code via gamma tables in large 16-bit PNG images. | 7.5 |
2002-12-31 | CVE-2002-2058 | Teekai | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Teekai Tracking Online 1.0 TeeKai Tracking Online 1.0 uses weak encryption of web usage statistics in data/userlog/log.txt, which allows remote attackers to identify IP's visiting the site by dividing each octet by the MD5 hash of '20'. | 7.5 |
2002-12-31 | CVE-2002-2054 | Teekai | Unspecified vulnerability in Teekai Forum 1.2 TeeKai Forum 1.2 allows remote attackers to authenticate as the administrator and and gain privileged web forum access by setting the valid_level cookie to admin. | 7.5 |
2002-12-31 | CVE-2002-2049 | DUG Song | Unspecified vulnerability in DUG Song Dsniff, Fragroute and Fragrouter configure for Dsniff 2.3, fragroute 1.2, and fragrouter 1.6, when downloaded from monkey.org on May 17, 2002, has been modified to contain a backdoor, which allows remote attackers to access the system. | 7.5 |
2002-12-31 | CVE-2002-2048 | Michael Baumer | Remote Security vulnerability in Michael Baumer Pfinger 0.7.8 Buffer overflow in PFinger 0.7.8 client allows remote attackers to execute arbitrary code via a long query value passed to the (1) finger program, (2) -l, (3) -d, and (4) -t options. | 7.5 |
2002-12-31 | CVE-2002-2046 | Xqus | Remote Security vulnerability in Xqus X-News 1.1 x_news.php in X-News (x_news) 1.1 and earlier allows remote attackers to gain administrative privileges by stealing and replaying the md5_password cookie. | 7.5 |
2002-12-31 | CVE-2002-2043 | Cyrus | Authentication Patch SQL Command Execution vulnerability in Cyrus SASL LDAP+MySQL SQL injection vulnerability in the LDAP and MySQL authentication patch for Cyrus SASL 1.5.24 and 1.5.27 allows remote attackers to execute arbitrary SQL commands and log in as arbitrary POP mail users via the password. | 7.5 |
2002-12-31 | CVE-2002-2036 | SUN | Unspecified vulnerability in SUN RAY Server Software 1.3 Sun Ray Server Software (SRSS) 1.3, when Non-Smartcard Mobility (NSCM) is enabled, allows remote attackers to login as another user by running dtlogin from a system that supports the XDMCP client. | 7.5 |
2002-12-31 | CVE-2002-2035 | Realityscape | SQL-Injection vulnerability in Realityscape Mylogin 2000 1.0.0 SQL injection vulnerability in RealityScape MyLogin 2000 1.0.0 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) Username or (2) Password in the login form. | 7.5 |
2002-12-31 | CVE-2002-2034 | John Hardin | Unspecified vulnerability in John Hardin Procmail Email Sanitizer 1.131/1.132 The Email Sanitizer before 1.133 for Procmail allows remote attackers to bypass the mail filter and execute arbitrary code via crafted recursive multipart MIME attachments. | 7.5 |
2002-12-31 | CVE-2002-2030 | Sqldata | Buffer Overflow vulnerability in Sqldata Enterprise Server 3.0 Stack-based buffer overflow in SQLData Enterprise Server 3.0 allows remote attacker to execute arbitrary code and cause a denial of service via a long HTTP request. | 7.5 |
2002-12-31 | CVE-2002-2029 | Apache | Remote File Disclosure vulnerability in Apache Win32 PHP.EXE PHP, when installed on Windows with Apache and ScriptAlias for /php/ set to c:/php/, allows remote attackers to read arbitrary files and possibly execute arbitrary programs via an HTTP request for php.exe with a filename in the query string. | 7.5 |
2002-12-31 | CVE-2002-2027 | Doow | Unspecified vulnerability in Doow Database of Our Owlish Wisdom (DOOW) 0.1 through 0.2.1 does not properly verify user permissions, which allows remote attackers to perform unauthorized activities. | 7.5 |
2002-12-31 | CVE-2002-2026 | Browseftp | Buffer Overflow vulnerability in Browseftp Client 1.62 Buffer overflow in BrowseFTP 1.62 client allows remote FTP servers to execute arbitrary code via a long FTP "220" message reply. | 7.5 |
2002-12-31 | CVE-2002-2020 | Netgear | Unspecified vulnerability in Netgear Rp114 3.26 Netgear RP114 Cable/DSL Web Safe Router Firmware 3.26 uses a default administrator password and accepts admin logins on the external interface, which allows remote attackers to gain privileges if the password is not changed. | 7.5 |
2002-12-31 | CVE-2002-2015 | Postnuke Software Foundation | Unspecified vulnerability in Postnuke Software Foundation Postnuke 0.703 PHP file inclusion vulnerability in user.php in PostNuke 0.703 allows remote attackers to include arbitrary files and possibly execute code via the caselist parameter. | 7.5 |
2002-12-31 | CVE-2002-2005 | SUN | Unspecified vulnerability in SUN Java web Start 1.0/1.0.1/1.0.101 Unknown vulnerability in Java web start 1.0.1_01, 1.0.1, 1.0 and 1.0.1.01 (HP-UX 11.x only) allows attackers to gain access to restricted resources via unknown attack vectors. | 7.5 |
2002-12-31 | CVE-2002-2002 | Compaq | Buffer Overflow vulnerability in Compaq Tru64 C Library Buffer overflow in libc in Compaq Tru64 4.0F, 5.0, 5.1 and 5.1A allows attackers to execute arbitrary code via long (1) LANG and (2) LOCPATH environment variables. | 7.5 |
2002-12-31 | CVE-2002-1998 | SCO | Remote Security vulnerability in SCO Open Unix and Unixware Buffer overflow in rpc.cmsd in SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows remote attackers to execute arbitrary commands via a long parameter to rtable_create (procedure 21). | 7.5 |
2002-12-31 | CVE-2002-1997 | Zonelabs | Unspecified vulnerability in Zonelabs Zonealarm 3.0 ZoneAlarm Pro 3.0 MailSafe allows remote attackers to bypass filtering and possibly execute arbitrary code via email attachments containing a trailing dot after the file extension. | 7.5 |
2002-12-31 | CVE-2002-1979 | Watchguard | Improper Input Validation vulnerability in Watchguard Legacy Rssa, Soho and Vclass WatchGuard SOHO products running firmware 5.1.6 and earlier, and Vclass/RSSA using 3.2 SP1 and earlier, allows remote attackers to bypass firewall rules by sending a PASV command string as the argument of another command to an FTP server, which generates a response that contains the string, causing IPFilter to treat the response as if it were a legitimate PASV command from the server. | 7.5 |
2002-12-31 | CVE-2002-1978 | Darren Reed | Permissions, Privileges, and Access Controls vulnerability in Darren Reed Ipfilter IPFilter 3.1.1 through 3.4.28 allows remote attackers to bypass firewall rules by sending a PASV command string as the argument of another command to an FTP server, which generates a response that contains the string, causing IPFilter to treat the response as if it were a legitimate PASV command from the server. | 7.5 |
2002-12-31 | CVE-2002-1964 | Wesmo | Remote Command Execution vulnerability in Wesmo PHPeventcalendar 1.1 Unknown vulnerability in WesMo phpEventCalendar 1.1 allows remote attackers to execute arbitrary commands via unknown attack vectors. | 7.5 |
2002-12-31 | CVE-2002-1962 | Finjan Software | Unspecified vulnerability in Finjan Software Surfingate 6.0/6.0.1 Finjan Software SurfinGate 6.0 and 6.0 1 allows remote attackers to bypass URL access restrictions via a URL with an IP address instead of a hostname. | 7.5 |
2002-12-31 | CVE-2002-1961 | Finjan Software | Unspecified vulnerability in Finjan Software Surfingate 6.0/6.0.1 Finjan Software SurfinGate 6.0 and 6.0 1 allows remote attackers to bypass URL access restrictions via a URL whose hostname portion uses a fully qualified domain name (FQDN) that ends in a "." (dot). | 7.5 |
2002-12-31 | CVE-2002-1957 | PEN | Buffer Overflow vulnerability in PEN 0.9.1/0.9.2 Buffer overflow in the netlog function in pen.c for Pen 0.9.1 and 0.9.2 allows remote attackers to execute arbitrary commands via malformed log messages. | 7.5 |
2002-12-31 | CVE-2002-1952 | Phprank | Unspecified vulnerability in PHPrank 1.8 phpRank 1.8 does not properly check the return codes for MySQL operations when authenticating users, which could allow remote attackers to authenticate using a NULL password when database errors occur or if the database is unavailable. | 7.5 |
2002-12-31 | CVE-2002-1951 | Goahead Software | Remote Arbitrary Command Execution vulnerability in Goahead Software Goahead Webserver 2.1 Buffer overflow in GoAhead WebServer 2.1 allows remote attackers to execute arbitrary code via a long HTTP GET request with a large number of subdirectories. | 7.5 |
2002-12-31 | CVE-2002-1949 | Iomega | Cleartext Transmission of Sensitive Information vulnerability in Iomega NAS A300U Firmware The Network Attached Storage (NAS) Administration Web Page for Iomega NAS A300U transmits passwords in cleartext, which allows remote attackers to sniff the administrative password. | 7.5 |
2002-12-31 | CVE-2002-1938 | Virgil | Remote Command Execution vulnerability in Virgil CGI Scanner 0.9 Virgil CGI Scanner 0.9 allows remote attackers to execute arbitrary commands via the (1) tar (TARGET) or (2) zielport (ZIELPORT) parameters. | 7.5 |
2002-12-31 | CVE-2002-1936 | Utstarcom | Unspecified vulnerability in Utstarcom BAS 1000 3.1.10 UTStarcom BAS 1000 3.1.10 creates several default or back door accounts and passwords, which allows remote attackers to gain access via (1) field account with a password of "*field", (2) guru account with a password of "*3noguru", (3) snmp account with a password of "snmp", or (4) dbase account with a password of "dbase". | 7.5 |
2002-12-31 | CVE-2002-1930 | AN | Buffer Overflow vulnerability in AN HTTPD Malformed SOCKS4 Request Buffer overflow in AN HTTPd 1.38 through 1.4.1c allows remote attackers to execute arbitrary code via a SOCKS4 request with a long username. | 7.5 |
2002-12-31 | CVE-2002-1923 | Oracle | Unspecified vulnerability in Oracle Mysql The default configuration in MySQL 3.20.32 through 3.23.52, when running on Windows, does not have logging enabled, which could allow remote attackers to conduct activities without detection. | 7.5 |
2002-12-31 | CVE-2002-1921 | Oracle | Unspecified vulnerability in Oracle Mysql The default configuration of MySQL 3.20.32 through 3.23.52, when running on Windows, does set the bind address to the loopback interface, which allows remote attackers to connect to the database. | 7.5 |
2002-12-31 | CVE-2002-1919 | Virtual Programming | SQL Injection vulnerability in Virtual Programming Vp-Asp 4.0 SQL injection vulnerability in shopadmin.asp in VP-ASP 4.0 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username or (2) password fields. | 7.5 |
2002-12-31 | CVE-2002-1912 | Skystream | NULL Pointer Dereference vulnerability in Skystream Emr5000 1.16/1.17/1.18 SkyStream EMR5000 1.16 through 1.18 does not drop packets or disable the Ethernet interface when the buffers are full, which allows remote attackers to cause a denial of service (null pointer exception and kernel panic) via a large number of packets. | 7.5 |
2002-12-31 | CVE-2002-1910 | Click 2 | Inadequate Encryption Strength vulnerability in Click-2 Ingenium Learning Management System 5.1/6.1 Click2Learn Ingenium Learning Management System 5.1 and 6.1 uses weak encryption for passwords (reversible algorithm), which allows attackers to obtain passwords. | 7.5 |
2002-12-31 | CVE-2002-1904 | Gaztek | Buffer Overflow vulnerability in ghttpd Log() Function Buffer overflow in the Log function in util.c in GazTek ghttpd 1.4 through 1.4.3 allows remote attackers to execute arbitrary code via a long HTTP GET request. | 7.5 |
2002-12-31 | CVE-2002-1891 | Ayman AKT | Remote Buffer Overflow vulnerability in Ayman AKT Ircit 0.3.1 Buffer overflow in IRCIT 0.3.1 IRC client allows remote attackers to execute arbitrary code via a long invite request. | 7.5 |
2002-12-31 | CVE-2002-1887 | Gregory Kokanosky | Remote File Include vulnerability in Gregory Kokanosky PHPmynewsletter 0.6.10 PHP remote file inclusion vulnerability in customize.php for phpMyNewsletter 0.6.10 allows remote attackers to execute arbitrary PHP code via the l parameter. | 7.5 |
2002-12-31 | CVE-2002-1885 | Powerphlogger | Remote File Include vulnerability in Powerphlogger 2.0.9/2.2.1/2.2.2A PHP remote file inclusion vulnerability in showhits.php3 for PowerPhlogger (PPhlogger) 2.0.9 through 2.2.2 allows remote attackers to execute arbitrary PHP code via the rel_path parameter. | 7.5 |
2002-12-31 | CVE-2002-1884 | PY Membres | Unspecified vulnerability in Py-Membres 3.1 index.php in Py-Membres 3.1 allows remote attackers to log in as an administrator by setting the pymembs parameter to "admin". | 7.5 |
2002-12-31 | CVE-2002-1882 | Oracle | Authentication Bypassing vulnerability in Oracle E-Business Suite Unknown vulnerability in AolSecurityPrivate.class in Oracle E-Business Suite 11i 11.1 through 11.6 allows remote attackers to bypass user authentication checks via unknown attack vectors. | 7.5 |
2002-12-31 | CVE-2002-1879 | Lokwa | SQL Injection vulnerability in Lokwa Lokwabb 1.2.1 SQL injection vulnerability in LokwaBB 1.2.2 allows remote attackers to execute arbitrary SQL commands via the (1) member parameter to member.php or (2) loser parameter to misc.php. | 7.5 |
2002-12-31 | CVE-2002-1877 | Netgear | Permissions, Privileges, and Access Controls vulnerability in Netgear Fm114P NETGEAR FM114P allows remote attackers to bypass access restrictions for web sites via a URL that uses the IP address instead of the hostname. | 7.5 |
2002-12-31 | CVE-2002-1872 | Microsoft | Inadequate Encryption Strength vulnerability in Microsoft SQL Server Microsoft SQL Server 6.0 through 2000, with SQL Authentication enabled, uses weak password encryption (XOR), which allows remote attackers to sniff and decrypt the password. | 7.5 |
2002-12-31 | CVE-2002-1870 | SWS | Unspecified vulnerability in SWS Simple web Server Simple Web Server (SWS) 0.0.4 through 0.1.0 does not properly handle when the recv function call fails, which may allow remote attackers to overwrite program data or perform actions on an uninitialized heap, leading to a denial of service and possibly code execution. | 7.5 |
2002-12-31 | CVE-2002-1867 | Bizdesign | Unspecified vulnerability in Bizdesign Imagefolio 2.23/2.24/2.26 The default configuration of BizDesign ImageFolio 2.23 through 2.26 does not control access to (1) admin/setup.cgi, which allows remote attackers to create an administrative account, or (2) admin/nph-build.cgi, which allows remote attackers to cause a denial of service (CPU consumption). | 7.5 |
2002-12-31 | CVE-2002-1851 | Ipswitch | Buffer Overflow vulnerability in Ipswitch WS FTP PRO 7.5 Buffer overflow in WS_FTP Pro 7.5 allows remote attackers to execute code on a client system via unknown attack vectors. | 7.5 |
2002-12-31 | CVE-2002-1850 | Apache | Improper Locking vulnerability in Apache Http Server 2.0.39/2.0.40 mod_cgi in Apache 2.0.39 and 2.0.40 allows local users and possibly remote attackers to cause a denial of service (hang and memory consumption) by causing a CGI script to send a large amount of data to stderr, which results in a read/write deadlock between httpd and the CGI script. | 7.5 |
2002-12-31 | CVE-2002-1847 | Microsoft | Unspecified vulnerability in Microsoft Windows Media Player Buffer overflow in mplay32.exe of Microsoft Windows Media Player (WMP) 6.3 through 7.1 allows remote attackers to execute arbitrary commands via a long mp3 filename command line argument. | 7.5 |
2002-12-31 | CVE-2002-1843 | Perlbot | Remote Command Execution vulnerability in Perlbot 1.9.2 Perlbot 1.9.2 allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the $text variable in SpelCheck.pm or (2) the $filename variable in HTMLPlog.pm. | 7.5 |
2002-12-31 | CVE-2002-1842 | Perlbot | Remote Command Execution vulnerability in Perlbot 1.0Beta Perlbot 1.0 beta allows remote attackers to execute arbitrary commands via shell metacharacters in (1) a word that is being spell checked or (2) an e-mail address. | 7.5 |
2002-12-31 | CVE-2002-1835 | Xerox | Unspecified vulnerability in Xerox Docutech 6110 and Docutech 6115 The default configuration of Xerox DocuTech 6110 and DocuTech 6115 running Solaris 8.0 has a large number of unnecessary services enabled such as RPC and sprayd, which could allow remote attackers to obtain access to the device. | 7.5 |
2002-12-31 | CVE-2002-1833 | Xerox | Unspecified vulnerability in Xerox Docutech 6110 and Docutech 6115 The default configurations for DocuTech 6110 and DocuTech 6115 have a default administrative password of (1) "service!" on Solaris 8.0 or (2) "administ" on Windows NT, which allows remote attackers to gain privileges. | 7.5 |
2002-12-31 | CVE-2002-1823 | Lonerunner | Remote Buffer Overflow vulnerability in Lonerunner Zeroo Http Server 1.5 Buffer overflow in the HttpGetRequest function in Zeroo HTTP server 1.5 allows remote attackers to execute arbitrary code via a long HTTP request. | 7.5 |
2002-12-31 | CVE-2002-1817 | Symantec Veritas | Unspecified vulnerability in Symantec Veritas Cluster Server Unknown vulnerability in Veritas Cluster Server (VCS) 1.2 for WindowsNT, Cluster Server 1.3.0 for Solaris, and Cluster Server 1.3.1 for HP-UX allows attackers to gain privileges via unknown attack vectors. | 7.5 |
2002-12-31 | CVE-2002-1810 | Dlink | Missing Authentication for Critical Function vulnerability in Dlink Dwl-900Ap+ Firmware 2.1/2.2 D-Link DWL-900AP+ Access Point 2.1 and 2.2 allows remote attackers to access the TFTP server without authentication and read the config.img file, which contains sensitive information such as the administrative password, the WEP encryption keys, and network configuration information. | 7.5 |
2002-12-31 | CVE-2002-1809 | Oracle | Unspecified vulnerability in Oracle Mysql The default configuration of the Windows binary release of MySQL 3.23.2 through 3.23.52 has a NULL root password, which could allow remote attackers to gain unauthorized root access to the MySQL database. | 7.5 |
2002-12-31 | CVE-2002-1800 | Phprank | Cleartext Storage of Sensitive Information vulnerability in PHPrank 1.8 phpRank 1.8 stores the administrative password in plaintext on the server and in the "ap" cookie, which allows remote attackers to retrieve the administrative password. | 7.5 |
2002-12-31 | CVE-2002-1788 | KIM Storm | Unspecified vulnerability in KIM Storm NN Format string vulnerability in the nn_exitmsg function in nn 6.6.0 through 6.6.3 allows remote NNTP servers to execute arbitrary code via format strings in server responses. | 7.5 |
2002-12-31 | CVE-2002-1781 | Delegate | Buffer Overflow vulnerability in Delegate POP Proxy USER Multiple buffer overflows in DeleGate 7.7.0 through 7.8.1 allow remote attackers to execute arbitrary code, as demonstrated using a long USER command to the POP proxy. | 7.5 |
2002-12-31 | CVE-2002-1779 | Symantec | Unspecified vulnerability in Symantec Norton Personal Firewall 2002 The "block fragmented IP Packets" option in Symantec Norton Personal Firewall 2002 (NPW) does not properly protect against certain attacks on Windows vulnerabilities such as jolt2 (CVE-2000-0305). | 7.5 |
2002-12-31 | CVE-2002-1778 | Symantec | Unspecified vulnerability in Symantec Norton Personal Firewall 2002 Symantec Norton Personal Firewall 2002 allows remote attackers to bypass the portscan protection by using a (1) SYN/FIN, (2) SYN/FIN/URG, (3) SYN/FIN/PUSH, or (4) SYN/FIN/URG/PUSH scan. | 7.5 |
2002-12-31 | CVE-2002-1773 | Mirabilis | Denial Of Service vulnerability in Mirabilis ICQ for Macos X 2.6Xbeta Buffer overflow in ICQ 2.6x for MacOS X 10.0 through 10.1.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long request. | 7.5 |
2002-12-31 | CVE-2002-1760 | Phprojekt | SQL Injection vulnerability in PHProjekt Multiple SQL injection vulnerabilities in PHProjekt 2.0 through 3.1 allow remote attackers to execute arbitrary SQL commands via the unknown attack vectors. | 7.5 |
2002-12-31 | CVE-2002-1757 | Phprojekt | Unspecified vulnerability in PHProjekt PHProjekt 2.0 through 3.1 relies on the $PHP_SELF variable for authentication, which allows remote attackers to bypass authentication for scripts via a request to a .php file with "sms" in the URL, which is included in the PATH_INFO portion of the $PHP_SELF variable, as demonstrated using "mail_send.php/sms". | 7.5 |
2002-12-31 | CVE-2002-1745 | Microsoft | Off-by-one Error vulnerability in Microsoft Internet Information Services 5.0 Off-by-one error in the CodeBrws.asp sample script in Microsoft IIS 5.0 allows remote attackers to view the source code for files with extensions containing with one additional character after .html, .htm, .asp, or .inc, such as .aspx files. | 7.5 |
2002-12-31 | CVE-2002-1726 | Brokenbytes | Unspecified vulnerability in Brokenbytes Photodb 1.4 secure_inc.php in PhotoDB 1.4 allows remote attackers to bypass authentication via a URL with a large Time parameter, non-empty rmtusername and rmtpassword parameter, and an accesslevel parameter that is lower than the access level of the requested page. | 7.5 |
2002-12-31 | CVE-2002-1721 | Pldaniels | Off-by-one Error vulnerability in Pldaniels Altermime 0.1.10/0.1.11 Off-by-one error in alterMIME 0.1.10 and 0.1.11 allows remote attackers to cause a denial of service (crash) via an x-header that causes snprintf overwrite the FFGET_FILE variable with a (null) byte. | 7.5 |
2002-12-31 | CVE-2002-1720 | Outfront | Unspecified vulnerability in Outfront Spooky Login SQL injection vulnerability in Spooky Login 2.0 through 2.5 allows remote attackers to bypass authentication and gain privileges via the password field. | 7.5 |
2002-12-31 | CVE-2002-1706 | Cisco | Improper Verification of Cryptographic Signature vulnerability in Cisco IOS Cisco IOS software 11.3 through 12.2 running on Cisco uBR7200 and uBR7100 series Universal Broadband Routers allows remote attackers to modify Data Over Cable Service Interface Specification (DOCSIS) settings via a DOCSIS file without a Message Integrity Check (MIC) signature, which is approved by the router. | 7.5 |
2002-12-31 | CVE-2002-1697 | Vtun Project | Inadequate Encryption Strength vulnerability in Vtun Project Vtun Electronic Code Book (ECB) mode in VTun 2.0 through 2.5 uses a weak encryption algorithm that produces the same ciphertext from the same plaintext blocks, which could allow remote attackers to gain sensitive information. | 7.5 |
2002-12-31 | CVE-2002-1665 | Yahoo | Denial-Of-Service vulnerability in Yahoo Messenger 5.0 Buffer overflow in Yahoo! Messenger before February 2002 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long set_buddygrp field. | 7.5 |
2002-12-31 | CVE-2002-1660 | Jelsoft | OS Command Injection vulnerability in Jelsoft Vbulletin calendar.php in vBulletin before 2.2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the command parameter. | 7.5 |
2002-12-31 | CVE-2002-1657 | Postgresql | Use of Password Hash With Insufficient Computational Effort vulnerability in Postgresql 7.3.19 PostgreSQL uses the username for a salt when generating passwords, which makes it easier for remote attackers to guess passwords via a brute force attack. | 7.5 |
2002-12-31 | CVE-2002-1656 | Xqus | Unspecified vulnerability in Xqus X-News 1.0/1.1 X-News (x_news) 1.1 and earlier allows attackers to authenticate as other users by obtaining the MD5 checksum of the password, e.g. | 7.5 |
2002-12-31 | CVE-2002-1654 | Iplanet Netscape | Authentication Attacks vulnerability in Netscape Enterprise Web Server Brute Force iPlanet Web Server Enterprise Edition and Netscape Enterprise Server 4.0 and 4.1 allows remote attackers to conduct HTTP Basic Authentication via the wp-force-auth Web Publisher command, which provides a distinct attack vector and may make it easier to conduct brute force password guessing without detection. | 7.5 |
2002-12-31 | CVE-2002-1652 | MIT | Remote Buffer Overflow vulnerability in MIT Cgiemail 1.6 Buffer overflow in cgicso.c for cgiemail 1.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long query parameter. | 7.5 |
2002-12-31 | CVE-2002-1650 | Squirrelmail | Remote Security vulnerability in Squirrelmail 1.2.2 The spell checker plugin (check_me.mod.php) for SquirrelMail before 1.2.3 allows remote attackers to execute arbitrary commands via a modified sqspell_command parameter. | 7.5 |
2002-12-31 | CVE-2002-1648 | Squirrelmail | Unspecified vulnerability in Squirrelmail 1.2.2 Cross-site request forgery (CSRF) vulnerability in compose.php in SquirrelMail before 1.2.3 allows remote attackers to send email as other users via an IMG URL with modified send_to and subject parameters. | 7.5 |
2002-12-31 | CVE-2002-1646 | SSH | Unspecified vulnerability in SSH Secure Shell FOR Servers SSH Secure Shell for Servers 3.0.0 to 3.1.1 allows remote attackers to override the AllowedAuthentications configuration and use less secure authentication schemes (e.g. | 7.5 |
2002-12-31 | CVE-2002-1631 | Oracle | Information Disclosure vulnerability in Oracle 9i Application Server Sample Scripts SQL injection vulnerability in the query.xsql sample page in Oracle 9i Application Server (9iAS) allows remote attackers to execute arbitrary code via the sql parameter. | 7.5 |
2002-12-31 | CVE-2002-1630 | Oracle | Information Disclosure vulnerability in Oracle 9i Application Server Sample Scripts The sendmail.jsp sample page in Oracle 9i Application Server (9iAS) allows remote attackers to send arbitrary emails. | 7.5 |
2002-12-31 | CVE-2002-1622 | IBM | Remote Security vulnerability in IBM AIX 4.3 Buffer overflow in certain RPC routines in IBM AIX 4.3 may allow attackers to execute arbitrary code, related to a "variable data type." | 7.5 |
2003-01-02 | CVE-2002-1384 | Easy Software Products Xpdf | Integer Overflow vulnerability in Xpdf/CUPS pdftops Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf. | 7.2 |
2002-12-31 | CVE-2002-2396 | Remi Lefebvre | Buffer Errors vulnerability in Remi Lefebvre Advanced Tftp 0.5/0.6 Buffer overflow in Advanced TFTP (atftp) 0.5 and 0.6, if installed setuid or setgid, may allow local users to execute arbitrary code via a long argument to the -g option. | 7.2 |
2002-12-31 | CVE-2002-2382 | Cvsup | Link Following vulnerability in Cvsup 1.2 cvsupd.sh in CVSup 1.2 allows local users to overwrite arbitrary files and gain privileges via a symlink attack on /var/tmp/cvsupd.out. | 7.2 |
2002-12-31 | CVE-2002-2363 | HP | Permissions, Privileges, and Access Controls vulnerability in HP Hp-Ux 11.00 VJE.VJE-RUN in HP-UX 11.00 adds bin to /etc/PATH, which could allow local users to gain privileges. | 7.2 |
2002-12-31 | CVE-2002-2324 | Microsoft | Permissions, Privileges, and Access Controls vulnerability in Microsoft Windows XP The "System Restore" directory and subdirectories, and possibly other subdirectories in the "System Volume Information" directory on Windows XP Professional, have insecure access control list (ACL) permissions, which allows local users to access restricted files and modify registry settings. | 7.2 |
2002-12-31 | CVE-2002-2267 | Bogofilter | Unspecified vulnerability in Bogofilter Bogopass Email Filter 0.9.0.4 bogopass in bogofilter 0.9.0.4 allows local users to overwrite arbitrary files via a symlink attack on the bogopass temporary file. | 7.2 |
2002-12-31 | CVE-2002-2259 | Suse Gnuplot | Buffer Errors vulnerability in Gnuplot 3.7 Buffer overflow in the French documentation patch for Gnuplot 3.7 in SuSE Linux before 8.0 allows local users to execute arbitrary code as root via unknown attack vectors. | 7.2 |
2002-12-31 | CVE-2002-2197 | SUN | Denial Of Service vulnerability in Sun Solaris /dev/poll Null Pointer Dereference Unknown vulnerability in Sun Solaris 8.0 allows local users to cause a denial of service (kernel panic) via a program that uses /dev/poll, triggering a NULL pointer dereference. | 7.2 |
2002-12-31 | CVE-2002-2099 | GNU | Local Security vulnerability in GNU Data Display Debugger 3.3.1 Buffer overflow in the GNU DataDisplay Debugger (DDD) 3.3.1 allows local users to execute arbitrary code and possibly gain privileges via a long HOME environment variable. | 7.2 |
2002-12-31 | CVE-2002-2042 | QNX | Unspecified vulnerability in QNX Rtos 4.25/6.1.0 ptrace in the QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows programs to attach to privileged processes, which could allow local users to execute arbitrary code by modifying running processes. | 7.2 |
2002-12-31 | CVE-2002-2041 | QNX | Buffer Overflow vulnerability in QNX Rtos 6.1.0 Multiple buffer overflows in realtime operating system (RTOS) 6.1.0 allows local users to execute arbitrary code via (1) a long ABLANG environment variable in phlocale or (2) a long -u option to pkg-installer. | 7.2 |
2002-12-31 | CVE-2002-2040 | QNX | Unspecified vulnerability in QNX Rtos 4.25/6.1.0 The (1) phrafx and (2) phgrafx-startup programs in QNX realtime operating system (RTOS) 4.25 and 6.1.0 do not properly drop privileges before executing the system command, which allows local users to execute arbitrary commands by modifying the PATH environment variable to reference a malicious crttrap program. | 7.2 |
2002-12-31 | CVE-2002-2022 | Kaffe | Unspecified vulnerability in Kaffe Openvm 1.0.6 Format string vulnerability in Kaffe OpenVM 1.0.6 and earlier allows local users to execute arbitrary code, when a java.lang.NoClassDefFoundError is thrown, via format specifiers in the forName attribute. | 7.2 |
2002-12-31 | CVE-2002-2018 | SAS | Unspecified vulnerability in SAS Base and Integration Technologies sastcpd in SAS/Base 8.0 might allow local users to gain privileges by setting the netencralg environment variable, which causes a segmentation fault. | 7.2 |
2002-12-31 | CVE-2002-2016 | User Mode Linux | Unspecified vulnerability in User-Mode Linux User-Mode Linux 2.4.17.8 User-mode Linux (UML) 2.4.17-8 does not restrict access to kernel address space, which allows local users to execute arbitrary code. | 7.2 |
2002-12-31 | CVE-2002-1980 | SUN | Local Buffer Overflow vulnerability in Sun Solaris Volume Manager Buffer overflow in Volume Manager daemon (vold) of Sun Solaris 2.5.1 through 8 allows local users to execute arbitrary code via unknown attack vectors. | 7.2 |
2002-12-31 | CVE-2002-1948 | Gringotts | Buffer Overflow vulnerability in Gringotts 0.5.9 Multiple buffer overflows in Gringotts 0.5.9 allows local users to execute arbitrary commands via unknown attack vectors. | 7.2 |
2002-12-31 | CVE-2002-1933 | Microsoft | Unspecified vulnerability in Microsoft Windows 2000 Terminal Services The terminal services screensaver for Microsoft Windows 2000 does not automatically lock the terminal window if the window is minimized, which could allow local users to gain access to the terminal server window. | 7.2 |
2002-12-31 | CVE-2002-1896 | Alsaplayer | Unspecified vulnerability in Alsaplayer 0.99.71 Buffer overflow in Alsaplayer 0.99.71, when installed setuid root, allows local users to execute arbitrary code via a long (1) -f or (2) -o command line argument. | 7.2 |
2002-12-31 | CVE-2002-1871 | SUN | Unspecified vulnerability in SUN Solaris and Sunos pkgadd in Sun Solaris 2.5.1 through 8 installs files setuid/setgid root if the pkgmap file contains a "?" (question mark) in the (1) mode, (2) owner, or (3) group fields, which allows attackers to elevate privileges. | 7.2 |
2002-12-31 | CVE-2002-1812 | Gdam | Buffer Overflow vulnerability in Gdam 0.933/0.942 Buffer overflow in gdam123 0.933 and 0.942 allows local users to execute arbitrary code via a long filename parameter. | 7.2 |
2002-12-31 | CVE-2002-1789 | Newsx | Unspecified vulnerability in Newsx 1.4Pl6 Format string vulnerability in newsx NNTP client before 1.4.8 allows local users to execute arbitrary code via format string specifiers that are not properly handled in a call to the syslog function. | 7.2 |
2002-12-31 | CVE-2002-1767 | Oracle | Local Command Parameter Buffer Overflow vulnerability in Oracle Database Server 8.1.5 Buffer overflow in tnslsnr of Oracle 8i Database Server 8.1.5 for Linux allows local users to execute arbitrary code as the oracle user via a long command line argument. | 7.2 |
2002-12-31 | CVE-2002-1749 | Microsoft | Unspecified vulnerability in Microsoft Windows 2000 Windows 2000 Terminal Services, when using the disconnect feature of the client, does not properly lock itself if it is left idle until the screen saver activates and the user disconnects, which could allow attackers to gain administrator privileges. | 7.2 |
2002-12-31 | CVE-2002-1748 | Open Source Development Network | Unspecified vulnerability in Open Source Development Network Slashcode Unknown vulnerability in Slash 2.1.x and 2.2 through 2.2.2, as used in Slashcode, allows remote authenticated users to gain access to arbitrary accounts. | 7.2 |
2002-12-31 | CVE-2002-1741 | ALT N | Unspecified vulnerability in Alt-N Worldclient Directory traversal vulnerability in WorldClient.cgi in WorldClient for Alt-N Technologies MDaemon 5.0.5.0 and earlier allows local users to delete arbitrary files via a ".." (dot dot) in the Attachments parameter. | 7.2 |
2002-12-31 | CVE-2002-1735 | Davin Mccall | Buffer Overflow vulnerability in Davin Mccall Dlogin 1.0A Buffer overflow in dlogin 1.0a could allow local users to gain privileges via unknown attack vectors. | 7.2 |
2002-12-31 | CVE-2002-1715 | SSH | Unspecified vulnerability in SSH and Ssh2 SSH 1 through 3, and possibly other versions, allows local users to bypass restricted shells such as rbash or rksh by uploading a script to a world-writeable directory, then executing that script to gain normal shell access. | 7.2 |
2002-12-31 | CVE-2002-1617 | HP | Unspecified vulnerability in HP Tru64 5.1Bpk2Bl22 Multiple buffer overflows in HP Tru64 UNIX 5.x allow local users to execute arbitrary code via (1) a long -contextDir argument to dtaction, (2) a long -p argument to dtprintinfo, (3) a long -customization argument to dxterm, or (4) a long DISPLAY environment variable to dtterm. | 7.2 |
2002-12-31 | CVE-2002-2355 | Netgear | Credentials Management vulnerability in Netgear Fm114P Netgear FM114P firmware 1.3 wireless firewall, when configured to backup configuration information, stores DDNS (DynDNS) user name and password, MAC address filtering table and possibly other information in cleartext, which could allow local users to obtain sensitive information. | 7.1 |
2002-12-31 | CVE-2002-2328 | Microsoft | Improper Input Validation vulnerability in Microsoft Windows 2000 Active Directory in Windows 2000, when supporting Kerberos V authentication and GSSAPI, allows remote attackers to cause a denial of service (hang) via an LDAP client that sets the page length to zero during a large request. | 7.1 |
432 Medium Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2002-12-31 | CVE-2002-2407 | QNX | Permissions, Privileges, and Access Controls vulnerability in QNX Rtos 6.2/6.2A Certain patches for QNX Neutrino realtime operating system (RTOS) 6.2.0 set insecure permissions for the files (1) /sbin/io-audio by OS Update Patch A, (2) /bin/shutdown, (3) /sbin/fs-pkg, and (4) phshutdown by QNX experimental patches, (5) cpim, (6) vpim, (7) phrelaycfg, and (8) columns, (9) othello, (10) peg, (11) solitaire, and (12) vpoker in the games pack 2.0.3, which allows local users to gain privileges by modifying the files before permissions are changed. | 6.9 |
2002-12-31 | CVE-2002-2282 | Mcafee | Unspecified vulnerability in Mcafee Virusscan 4.5.1 McAfee VirusScan 4.5.1, when the WebScanX.exe module is enabled, searches for particular DLLs from the user's home directory, even when browsing the local hard drive, which allows local users to run arbitrary code via malicious versions of those DLLs. | 6.9 |
2002-12-31 | CVE-2002-2415 | Alliedtelesyn | Improper Input Validation vulnerability in Alliedtelesyn At-8024 and Rapier 24 Allied Telesyn AT-8024 1.3.1 and Rapier 24 switches allow remote authenticated users to cause a denial of service in the management interface via a stream of zero (null) bytes sent via UDP to a running service. | 6.8 |
2002-12-31 | CVE-2002-2366 | Cerulean Studios | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Cerulean Studios Trillian 0.6351/0.725/0.73 Buffer overflow in the XML parser of Trillian 0.6351, 0.725 and 0.73 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a skin with a long colors file name in trillian.xml. | 6.8 |
2002-12-31 | CVE-2002-2299 | Atthat COM | Code Injection vulnerability in Atthat.Com Thatware PHP remote file inclusion vulnerability in thatfile.php in Thatware 0.3 through 0.5.2 allows remote attackers to execute arbitrary PHP code via the root_path parameter. | 6.8 |
2002-12-31 | CVE-2002-2298 | Atthat COM | Code Injection vulnerability in Atthat.Com Thatware PHP remote file inclusion vulnerability in config.php in Thatware 0.3 through 0.5.3 allows remote attackers to execute arbitrary PHP code via the root_path parameter. | 6.8 |
2002-12-31 | CVE-2002-2297 | Atthat COM | Code Injection vulnerability in Atthat.Com Thatware 0.5.2/0.5.3 PHP remote file inclusion vulnerability in artlist.php in Thatware 0.5.2 and 0.5.3 allows remote attackers to execute arbitrary PHP code via the root_path parameter. | 6.8 |
2002-12-31 | CVE-2002-2180 | Openbsd | Unspecified vulnerability in Openbsd The setitimer(2) system call in OpenBSD 2.0 through 3.1 does not properly check certain arguments, which allows local users to write to kernel memory and possibly gain root privileges, possibly via an integer signedness error. | 6.8 |
2002-12-31 | CVE-2002-1729 | Aspjar | HTML Injection vulnerability in Aspjar Guestbook 1.0 Cross-site scripting vulnerability (XSS) in ASPjar Guestbook 1.00 allows remote attackers to execute arbitrary script as other users via the "web site" parameter in a guestbook message. | 6.8 |
2002-12-31 | CVE-2002-1727 | Asksam Systems | Cross-Site Scripting vulnerability in askSam Web Publisher 1.0/4.0 Cross-site scripting vulnerability (XSS) in (1) as_web.exe and (2) as_web4.exe in askSam Web Publisher 1 and 4 allows remote attackers to execute arbitrary script as other users via a URL. | 6.8 |
2002-12-31 | CVE-2002-1724 | Onlinetools ORG | Cross-Site Scripting vulnerability in Onlinetools.Org PHPimageview 1.0 Cross-site scripting vulnerability (XSS) in phpimageview.php for PHPImageView 1.0 allows remote attackers to execute arbitrary script as other users via the pic parameter. | 6.8 |
2002-12-31 | CVE-2002-1708 | Basilix | Unspecified vulnerability in Basilix Webmail 1.1.0 Cross-site scripting vulnerability (XSS) in BasiliX Webmail 1.10 allows remote attackers to execute arbitrary script as other users by injecting script into the (1) subject or (2) message fields. | 6.8 |
2002-12-31 | CVE-2002-1703 | Mewsoft | Cross-Site Scripting vulnerability in Mewsoft Netauction 3.0 Cross-site scripting vulnerability (XSS) in auction.cgi for Mewsoft NetAuction 3.0 allows remote attackers to execute arbitrary script as other users via the Term parameter. | 6.8 |
2002-12-31 | CVE-2002-1681 | Open Source Development Network | Unspecified vulnerability in Open Source Development Network Slashcode Cross-site scripting (XSS) vulnerability in Slashcode CVS releases June 17 through July 1 2002 allows remote attackers to execute arbitrary script as other users by injecting script into the paragraph <P> tag. | 6.8 |
2002-12-31 | CVE-2002-1662 | Mambo | HTML Injection vulnerability in Mambo Site Server 4.0.11 Multiple cross-site scripting (XSS) vulnerabilities in Mambo Site Server 4.0.11 allow remote attackers to execute arbitrary script on other clients via (1) search.php and (2) the "Your name" field during account registration. | 6.8 |
2002-12-31 | CVE-2002-2263 | HP | Configuration vulnerability in HP Visualize Conference FTP B.11.00.11 The installation program for HP-UX Visualize Conference B.11.00.11 running on HP-UX 11.00 and 11.11 installs /etc/dt and its subdirecties with insecure permissions, which allows local users to read or write arbitrary files. | 6.6 |
2002-12-31 | CVE-2002-2423 | Sendmail | Improper Input Validation vulnerability in Sendmail Sendmail 8.12.0 through 8.12.6 truncates log messages longer than 100 characters, which allows remote attackers to prevent the IP address from being logged via a long IDENT response. | 6.4 |
2002-12-31 | CVE-2002-2399 | Cascadesoft | Path Traversal vulnerability in Cascadesoft W3Mail 1.0.6 Directory traversal vulnerability in viewAttachment.cgi in W3Mail 1.0.6 allows remote attackers to read arbitrary files via a .. | 6.4 |
2002-12-31 | CVE-2002-2392 | Nullsoft | Unspecified vulnerability in Nullsoft Winamp Winamp 2.65 through 3.0 stores skin files in a predictable file location, which allows remote attackers to execute arbitrary code via a URL reference to (1) wsz and (2) wal files that contain embedded code. | 6.4 |
2002-12-31 | CVE-2002-2380 | Arescom Microsoft | Information Exposure vulnerability in Microsoft Network Firmware 5.5.11 NetDSL ADSL Modem 800 with Microsoft Network firmware 5.5.11 allows remote attackers to gain access to configuration menus by sniffing undocumented usernames and passwords from network traffic. | 6.4 |
2002-12-31 | CVE-2002-2356 | Hamweather | Permissions, Privileges, and Access Controls vulnerability in Hamweather HAMweather 2.x allows remote attackers to modify administrative settings and obtain sensitive information via a direct request to hwadmin.cgi. | 6.4 |
2002-12-31 | CVE-2002-2353 | Tftpd32 | Permissions, Privileges, and Access Controls vulnerability in Tftpd32 2.50/2.50.2 tftpd32 2.50 and 2.50.2 allows remote attackers to read or write arbitrary files via a full pathname in GET and PUT requests. | 6.4 |
2002-12-31 | CVE-2002-2351 | Qualcomm | Path Traversal vulnerability in Qualcomm Eudora Eudora 5.1 allows remote attackers to bypass security warnings and possibly execute arbitrary code via attachments with names containing a trailing "." (dot). | 6.4 |
2002-12-31 | CVE-2002-2311 | Microsoft Opera Software | Permissions, Privileges, and Access Controls vulnerability in multiple products Microsoft Internet Explorer 6.0 and possibly others allows remote attackers to upload arbitrary file contents when users press a key corresponding to the JavaScript (1) event.ctrlKey or (2) event.shiftKey onkeydown event contained in a webpage. | 6.4 |
2002-12-31 | CVE-2002-2302 | 3D3 COM | Permissions, Privileges, and Access Controls vulnerability in 3D3.Com Shopfactory 5.5/5.6/5.8 3D3.Com ShopFactory 5.5 through 5.8 allows remote attackers to modify the prices in their shopping carts by modifying the price in a hidden form field. | 6.4 |
2002-12-31 | CVE-2002-2284 | Netscape | Unspecified vulnerability in Netscape Communicator Netscape Communicator 4.0 through 4.79 allows remote attackers to bypass JVM security and execute arbitrary Java code via an applet that loads user-supplied Java classes. | 6.4 |
2002-12-31 | CVE-2002-2265 | HP Open Source Internet Solutions | Permissions, Privileges, and Access Controls vulnerability in Open Source Internet Solutions Open Source Internet Solutions 5.4 Unspecified vulnerability in LDAP Module in System Authentication of Open Source Internet Solutions (OSIS) 5.4 running on Tru64 UNIX 4.0G and 4.0F allows remote attackers to gain access to arbitrary files or gain privileges via unknown attack vectors. | 6.4 |
2002-12-31 | CVE-2002-2242 | Kismac | Permissions, Privileges, and Access Controls vulnerability in Kismac The Apple Package Manager in KisMAC 0.02a and earlier modifies file permissions of sensitive files after installation, which could allow attackers to conduct unauthorized activities on those files. | 6.4 |
2002-12-31 | CVE-2002-2228 | Mailscanner | Improper Input Validation vulnerability in Mailscanner MailScanner before 4.0 5-1 and before 3.2 6-1 allows remote attackers to bypass protection via attachments with a filename with (1) extra leading spaces, (2) extra trailing spaces, or (3) alternate character encodings that cannot be processed by MailScanner. | 6.4 |
2002-12-31 | CVE-2002-2182 | Seunghyun SEO | Remote Buffer Overflow vulnerability in Seunghyun Seo Msn666 1.0/1.0.1 Buffer overflow in Seunghyun Seo's MSN666 MSN Sniffer 1.0 and 1.0.1 allows remote attackers to execute arbitrary code via a long MSN packet. | 6.4 |
2002-12-31 | CVE-2002-2139 | Cisco | Unspecified vulnerability in Cisco PIX Firewall Software Cisco PIX Firewall 6.0.3 and earlier, and 6.1.x to 6.1.3, do not delete the duplicate ISAKMP SAs for a user's VPN session, which allows local users to hijack a session via a man-in-the-middle attack. | 6.4 |
2002-12-31 | CVE-2002-2125 | Microsoft | Unspecified vulnerability in Microsoft IE and Internet Explorer Internet Explorer 6.0 does not warn users when an expired certificate authority (CA) certificate is submitted to the user and a newer CA certificate is in the user's local repository, which could allow remote attackers to decrypt web sessions via a man-in-the-middle (MITM) attack. | 6.4 |
2002-12-31 | CVE-2002-2045 | Xqus | Path Disclosure vulnerability in X-Stat 2.2/2.3 x_stat_admin.php in x-stat 2.3 and earlier allows remote attackers to (1) execute PHP commands such as phpinfo or (2) obtain the full path of the web server via an invalid action parameter, which leaks the pathname in an error message. | 6.4 |
2002-12-31 | CVE-2002-1947 | Webmin | Unspecified vulnerability in Webmin Webmin 0.21 through 1.0 uses the same built-in SSL key for all installations, which allows remote attackers to eavesdrop or highjack the SSL session. | 6.4 |
2002-12-31 | CVE-2002-1883 | Trolltech | Unspecified vulnerability in Trolltech QT Assistant 1.0 Trolltech Qt Assistant 1.0 in Trolltech Qt 3.0.3, when loaded from the Designer, opens port 7358 for interprocess communication, which allows remote attackers to open arbitrary HTML pages and cause a denial of service. | 6.4 |
2002-12-31 | CVE-2002-1834 | Xerox | Unspecified vulnerability in Xerox Docutech 6110 and Docutech 6115 The default configuration of Xerox DocuTech 6110 and DocuTech 6115 allows remote attackers to connect to the web server and (1) submit print jobs directly into the "print now" queue or (2) read the scanner job history. | 6.4 |
2002-12-31 | CVE-2002-1825 | Wasd | Unspecified vulnerability in Wasd Http Server Format string vulnerability in PerlRTE_example1.pl in WASD 7.1, 7.2.0 through 7.2.3, and 8.0.0 allows remote attackers to execute arbitrary commands or crash the server via format strings in the $name variable. | 6.4 |
2002-12-31 | CVE-2002-1819 | Tinyhttpd | Unspecified vulnerability in Tinyhttpd 0.1.0 Directory traversal vulnerability in TinyHTTPD 0.1 .0 allows remote attackers to read or execute arbitrary files via a ".." (dot dot) in the URL. | 6.4 |
2002-12-31 | CVE-2002-1709 | Basilix | SQL Injection vulnerability in Basilix Webmail 1.1.0 SQL injection vulnerability in BasiliX Webmail 1.10 allows remote attackers to obtain sensitive information or possibly modify data via the id variable. | 6.4 |
2002-12-31 | CVE-2002-1675 | Unreal | Denial-Of-Service vulnerability in Unreal Unrealircd 3.1.1 Format string vulnerability in the Cio_PrintF function of cio_main.c in Unreal IRCd 3.1.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers. | 6.4 |
2002-12-31 | CVE-2002-1664 | Yahoo | Information Disclosure vulnerability in Yahoo Messenger 5.0 Yahoo! Messenger before February 2002 allows remote attackers to add arbitrary users to another user's buddy list and possibly obtain sensitive information. | 6.4 |
2002-12-31 | CVE-2002-1632 | Oracle | Information Disclosure vulnerability in Oracle 9i Application Server Sample Scripts Oracle 9i Application Server (9iAS) installs multiple sample pages that allow remote attackers to obtain environment variables and other sensitive information via (1) info.jsp, (2) printenv, (3) echo, or (4) echo2. | 6.4 |
2002-12-31 | CVE-2002-2221 | Chetcpasswd | Local Privilege Escalation vulnerability in Chetcpasswd 2.3.1/2.3.3/2.4.1 Untrusted search path vulnerability in Pedro Lineu Orso chetcpasswd 2.4.1 and earlier allows local users to gain privileges via a modified PATH that references a malicious cp binary. | 6.2 |
2002-12-31 | CVE-2002-2220 | Chetcpasswd | Local Security vulnerability in Chetcpasswd 1.12 Buffer overflow in Pedro Lineu Orso chetcpasswd before 1.12, when configured for access from 0.0.0.0, allows local users to gain privileges via unspecified vectors. | 6.2 |
2002-12-31 | CVE-2002-2210 | Openoffice | Symbolic Link vulnerability in Openoffice 1.0.1 The installation of OpenOffice 1.0.1 allows local users to overwrite files and possibly gain privileges via a symlink attack on the USERNAME_autoresponse.conf temporary file. | 6.2 |
2002-12-31 | CVE-2002-2361 | Yahoo | Permissions, Privileges, and Access Controls vulnerability in Yahoo Messenger 4.0/5.0/5.5 The installer in Yahoo! Messenger 4.0, 5.0 and 5.5 does not verify package signatures which could allow remote attackers to install trojan programs via DNS spoofing. | 5.8 |
2002-12-31 | CVE-2002-2352 | Neosoft | Unspecified vulnerability in Neosoft Neobook 4 The NBActiveX.ocx ActiveX control in NeoBook 4 allows remote attackers to install and execute arbitrary programs. | 5.8 |
2002-12-31 | CVE-2002-2331 | Cascadesoft | Configuration vulnerability in Cascadesoft W3Mail W3Mail 1.0.2 through 1.0.5 with server side scripting (SSI) enabled in the attachments directory does not properly restrict the types of files that can be uploaded as attachments, which allows remote attackers to execute arbitrary code by sending code in MIME attachments, then requesting the attachments. | 5.8 |
2002-12-31 | CVE-2002-2312 | Opera Software | Unspecified vulnerability in Opera Software Opera 6.0.1 Opera 6.0.1 allows remote attackers to upload arbitrary file contents when users press a key corresponding to the JavaScript (1) event.ctrlKey or (2) event.shiftKey onkeydown event contained in a webpage. | 5.8 |
2002-12-31 | CVE-2002-1975 | Sharp | Inadequate Encryption Strength vulnerability in Sharp Zaurus Sl-5000D Firmware and Zaurus Sl-5500 Firmware Sharp Zaurus PDA SL-5000D and SL-5500 uses a salt of "A0" to encrypt the screen-locking password as stored in the Security.conf file, which makes it easier for local users to guess the password via brute force methods. | 5.5 |
2002-12-31 | CVE-2002-1946 | Tata | Inadequate Encryption Strength vulnerability in Tata Integrated Dialer 1.2.000 Videsh Sanchar Nigam Limited (VSNL) Integrated Dialer Software 1.2.000, when the "Save Password" option is used, stores the password with a weak encryption scheme (one-to-one mapping) in a registry key, which allows local users to obtain and decrypt the password. | 5.5 |
2002-12-31 | CVE-2002-1915 | Openbsd Netbsd Freebsd | Improper Locking vulnerability in multiple products tip on multiple BSD-based operating systems allows local users to cause a denial of service (execution prevention) by using flock() to lock the /var/log/acculog file. | 5.5 |
2002-12-31 | CVE-2002-1914 | Dump Project | Improper Locking vulnerability in Dump Project Dump 0.4 dump 0.4 b10 through b29 allows local users to cause a denial of service (execution prevention) by using flock() to lock the /etc/dumpdates file. | 5.5 |
2002-12-31 | CVE-2002-1739 | Mdaemon | Inadequate Encryption Strength vulnerability in Mdaemon Alt-N Technologies Mdaemon 5.0 through 5.0.6 uses a weak encryption algorithm to store user passwords, which allows local users to crack passwords. | 5.5 |
2002-12-31 | CVE-2002-1713 | Mandrakesoft | Incorrect Default Permissions vulnerability in Mandrakesoft Mandrake Linux 8.2 The Standard security setting for Mandrake-Security package (msec) in Mandrake 8.2 installs home directories with world-readable permissions, which could allow local users to read other user's files. | 5.5 |
2002-12-31 | CVE-2002-1696 | PGP | Cleartext Storage of Sensitive Information vulnerability in PGP Personal Privacy 7.0/7.0.3/7.0.4 Microsoft Outlook plug-in PGP version 7.0, 7.0.3, and 7.0.4 silently saves a decrypted copy of a message to hard disk when "Automatically decrypt/verify when opening messages" option is checked, "Always use Secure Viewer when decrypting" option is not checked, and the user replies to an encrypted message. | 5.5 |
2002-12-31 | CVE-2002-1682 | Daansystems | Inadequate Encryption Strength vulnerability in Daansystems Newsreactor 1.0 NewsReactor 1.0 uses a weak encryption scheme, which could allow local users to decrypt the passwords and gain access to other users' newsgroup accounts. | 5.5 |
2002-12-31 | CVE-2002-2225 | Safenet | Denial-Of-Service vulnerability in Softremote Vpn Client SafeNet VPN client allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange (IKE) response packets, possibly involving buffer overflows using (1) a large Security Parameter Index (SPI) field, (2) a large number of payloads, or (3) a long payload. | 5.1 |
2002-12-31 | CVE-2002-2224 | Network Associates | Buffer Overflow vulnerability in Network Associates PGP Freeware 7.03 Buffer overflow in PGPFreeware 7.03 running on Windows NT 4.0 SP6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange (IKE) response packets, possibly including (1) a large Security Parameter Index (SPI) field, (2) large number of payloads, or (3) a long payload. | 5.1 |
2002-12-31 | CVE-2002-2223 | Juniper | Unspecified vulnerability in Juniper products Buffer overflow in NetScreen-Remote 8.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange (IKE) response packets, possibly including (1) a large Security Parameter Index (SPI) field, (2) large number of payloads, or (3) a long payload. | 5.1 |
2002-12-31 | CVE-2002-2222 | Freebsd Openbsd | Denial-Of-Service vulnerability in OpenBSD isakmpd/message.c in isakmpd in FreeBSD before isakmpd-20020403_1, and in OpenBSD 3.1, allows remote attackers to cause a denial of service (crash) by sending Internet Key Exchange (IKE) payloads out of sequence. | 5.1 |
2002-12-31 | CVE-2002-2189 | Activxperts Software Microsoft | Cross-Site Scripting vulnerability in Activwebserver Cross-site scripting (XSS) vulnerability in ActiveXperts Software ActiveWebserver allows remote attackers to execute arbitrary web script via a link. | 5.1 |
2002-12-31 | CVE-2002-2416 | Zeroo | Path Traversal vulnerability in Zeroo Http Server 1.5 Directory traversal vulnerability in Zeroo web server 1.5 allows remote attackers to read arbitrary files via a .. | 5.0 |
2002-12-31 | CVE-2002-2413 | Microsoft Deerfield | Unspecified vulnerability in Deerfield Website PRO 3.1.11.0 WebSite Pro 3.1.11.0 on Windows allows remote attackers to read script source code for files with extensions greater than 3 characters via a URL request that uses the equivalent 8.3 file name. | 5.0 |
2002-12-31 | CVE-2002-2410 | Open Webmail | Information Exposure vulnerability in Open Webmail Open Webmail 1.7/1.71 openwebmail.pl in Open WebMail 1.7 and 1.71 reveals sensitive information in error messages and generates different responses whether a user exists or not, which allows remote attackers to identify valid usernames via brute force attacks and obtain certain configuration and version information. | 5.0 |
2002-12-31 | CVE-2002-2406 | Perception | Improper Input Validation vulnerability in Perception Liteserve 2.0/2.0.1/2.0.2 Buffer overflow in HTTP server in LiteServe 2.0, 2.0.1 and 2.0.2 allows remote attackers to cause a denial of service (hang) via a large number of percent characters (%) in an HTTP GET request. | 5.0 |
2002-12-31 | CVE-2002-2404 | Curtis Specialty Consulting | Buffer Errors vulnerability in Curtis Specialty Consulting Iispop 1.161/1.181 Buffer overflow in IISPop email server 1.161 and 1.181 allows remote attackers to cause a denial of service (crash) via a long request to the POP3 port (TCP port 110). | 5.0 |
2002-12-31 | CVE-2002-2403 | KEY Focus | Path Traversal vulnerability in KEY Focus KF web Server 1.0.8 Directory traversal vulnerability in KeyFocus web server 1.0.8 allows remote attackers to read arbitrary files for recognized MIME type files via "...", "....", ".....", and other multiple dot sequences. | 5.0 |
2002-12-31 | CVE-2002-2398 | APP | Unspecified vulnerability in APP Apboard 2.02/2.03 The new thread posting page in APBoard 2.02 and 2.03 allows remote attackers to post messages to protected forums by modifying the insertinto parameter. | 5.0 |
2002-12-31 | CVE-2002-2395 | Trend Micro | Permissions, Privileges, and Access Controls vulnerability in Trend Micro Interscan Viruswall 3.52 InterScan VirusWall 3.52 for Windows allows remote attackers to bypass virus protection and possibly execute arbitrary code via HTTP 1.1 gzip content encoding. | 5.0 |
2002-12-31 | CVE-2002-2394 | Trend Micro | Permissions, Privileges, and Access Controls vulnerability in Trend Micro Interscan Viruswall 3.52/3.6 InterScan VirusWall 3.6 for Linux and 3.52 for Windows allows remote attackers to bypass virus protection and possibly execute arbitrary code via HTTP 1.1 chunked transfer encoding. | 5.0 |
2002-12-31 | CVE-2002-2393 | Solarwinds | Improper Input Validation vulnerability in Solarwinds Serv-U File Server 3.1.0.0/4.0.0.4 Serv-U FTP server 3.0, 3.1 and 4.0.0.4 does not accept new connections while validating user folder access rights, which allows remote attackers to cause a denial of service (no new connections) via a series of MKD commands. | 5.0 |
2002-12-31 | CVE-2002-2389 | Fastlink Software | Credentials Management vulnerability in Fastlink Software the Server 1.74 TheServer 1.74 web server stores server.ini under the web document root with insufficient access control, which allows remote attackers to obtain cleartext passwords and gain access to server log files. | 5.0 |
2002-12-31 | CVE-2002-2388 | Inweb | Buffer Errors vulnerability in Inweb Mail Server 2.01 Buffer overflow in INweb POP3 mail server 2.01 allows remote attackers to cause a denial of service (crash) via a long HELO command. | 5.0 |
2002-12-31 | CVE-2002-2387 | Mollensoft Software | Path Traversal vulnerability in Mollensoft Software Hyperion FTP Server 2.8.1 Directory traversal vulnerability in Hyperion FTP server 2.8.1 allows remote attackers to read arbitrary files via a .. | 5.0 |
2002-12-31 | CVE-2002-2375 | Stalker | Path Traversal vulnerability in Stalker Communigate PRO Directory traversal vulnerability in CommuniGate Pro 4.0b4 and possibly earlier versions allows remote attackers to list the contents of the WebUser directory and its parent directory via a (1) .. | 5.0 |
2002-12-31 | CVE-2002-2372 | IBM | Buffer Errors vulnerability in IBM Infoprint 21 1.047012 The telnet server in Infoprint 21 running controller software before 1.056007 allows remote attackers to cause a denial of service (crash) via a long username, possibly due to a buffer overflow. | 5.0 |
2002-12-31 | CVE-2002-2370 | SWS | Denial Of Service vulnerability in SWS Simple web Server 0.0.3/0.0.4/0.1.0 SWS web server 0.0.4, 0.0.3 and 0.1.0 allows remote attackers to cause a denial of service (crash) via a URL request that does not end with a newline. | 5.0 |
2002-12-31 | CVE-2002-2369 | Perception | Information Exposure vulnerability in Perception Liteserve 2.0 Perception LiteServe 2.0 allows remote attackers to read password protected files via a leading "/./" in a URL. | 5.0 |
2002-12-31 | CVE-2002-2357 | Mailenable | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Mailenable MailEnable 1.5 015 through 1.5 018 allows remote attackers to cause a denial of service (crash) via a long USER string, possibly due to a buffer overflow. | 5.0 |
2002-12-31 | CVE-2002-2349 | Phpbb | Information Exposure vulnerability in PHPbb PHPbbmod 1.3.3 phpinfo.php in phpBBmod 1.3.3 executes the phpinfo function, which allows remote attackers to obtain sensitive environment information. | 5.0 |
2002-12-31 | CVE-2002-2346 | Phpbb | Information Exposure vulnerability in PHPbb phpBB 2.0 through 2.0.3 generates names for uploaded avatar files with the hex-encoded IP address of the client system, which allows remote attackers to obtain client IP addresses. | 5.0 |
2002-12-31 | CVE-2002-2344 | Ensim | Permissions, Privileges, and Access Controls vulnerability in Ensim Webppliance 3.0/3.1 Ensim WEBppliance 3.0 and 3.1 allows remote attackers to read mail intended for other users by defining an alias that is the target's email address. | 5.0 |
2002-12-31 | CVE-2002-2342 | JOE Depasquale | Information Exposure vulnerability in JOE Depasquale Bannermatic 1.0/2.0/3.0 Bannermatic 1, 2, and 3 stores the (1) ban.log, (2) ban.bak, (3) ban.dat and (4) banmat.pwd data files under the web document root with insufficient access control, which allows attackers to obtain sensitive information via a direct request for the files. | 5.0 |
2002-12-31 | CVE-2002-2338 | Mozilla Netscape | Improper Input Validation vulnerability in multiple products The POP3 mail client in Mozilla 1.0 and earlier, and Netscape Communicator 4.7 and earlier, allows remote attackers to cause a denial of service (no new mail) via a mail message containing a dot (.) at a newline, which is interpreted as the end of the message. | 5.0 |
2002-12-31 | CVE-2002-2337 | Kaspersky LAB | Unspecified vulnerability in Kaspersky LAB Kaspersky Anti-Hacker 1.0 Kaspersky Anti-Hacker 1.0, when configured to automatically block attacks, allows remote attackers to block IP addresses and cause a denial of service via spoofed packets. | 5.0 |
2002-12-31 | CVE-2002-2335 | John Drake | Configuration vulnerability in John Drake Killer Protection 1.0 Killer Protection 1.0 stores the vars.inc include file under the web root with insufficient access control, which allows remote attackers to obtain user names and passwords and log in using protection.php. | 5.0 |
2002-12-31 | CVE-2002-2333 | KDE | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in KDE Buffer overflow in konqueror in KDE 2.1 through 3.0 and 3.0.2 allows remote attackers to cause a denial of service (crash) via an IMG tag with large width and height attributes. | 5.0 |
2002-12-31 | CVE-2002-2332 | Opera Software | Buffer Errors vulnerability in Opera Software Opera web Browser 6.0.1 Buffer overflow in Opera 6.01 allows remote attackers to cause a denial of service (crash) via an IMG tag with large width and height attributes. | 5.0 |
2002-12-31 | CVE-2002-2330 | Uninet | Cross-Site Scripting vulnerability in Uninet Statsplus 1.25 Cross-site scripting (XSS) vulnerability in stat.pl in StatsPlus 1.25 allows remote attackers to inject arbitrary web script or HTML via (1) HTTP_USER_AGENT or (2) HTTP_REFERER, which is written to stats.html and executed in client browsers. | 5.0 |
2002-12-31 | CVE-2002-2326 | Apple | Cryptographic Issues vulnerability in Apple mac OS X The default configuration of Mail.app in Mac OS X 10.0 through 10.0.4 and 10.1 through 10.1.5 sends iDisk authentication credentials in cleartext when connecting to Mac.com, which could allow remote attackers to obtain passwords by sniffing network traffic. | 5.0 |
2002-12-31 | CVE-2002-2322 | Ultimate PHP Board | Improper Input Validation vulnerability in Ultimate PHP Board Ultimate PHP Board 1.0Beta Ultimate PHP Board (UPB) 1.0b stores the users.dat data file under the web root with insufficient access control, which allows remote attackers to obtain usernames and passwords. | 5.0 |
2002-12-31 | CVE-2002-2316 | Cisco | Unspecified vulnerability in Cisco Catos 5.5(5)/6.3(5)/7.1(2) Cisco Catalyst 4000 series switches running CatOS 5.5.5, 6.3.5, and 7.1.2 do not always learn MAC addresses from a single initial packet, which causes unicast traffic to be broadcast across the switch and allows remote attackers to obtain sensitive network information by sniffing. | 5.0 |
2002-12-31 | CVE-2002-2314 | Mozilla | Improper Input Validation vulnerability in Mozilla 1.0 Mozilla 1.0 allows remote attackers to steal cookies from other domains via a javascript: URL with a leading "//" and ending in a newline, which causes the host/path check to fail. | 5.0 |
2002-12-31 | CVE-2002-2310 | Kryptronic | Credentials Management vulnerability in Kryptronic Clickcartpro 4.0 ClickCartPro 4.0 stores the admin_user.db data file under the web document root with insufficient access control on servers other than Apache, which allows remote attackers to obtain usernames and passwords. | 5.0 |
2002-12-31 | CVE-2002-2308 | Netscape | Denial-Of-Service vulnerability in Netscape Communicator 6.2.1 Netscape Communicator 6.2.1 allows remote attackers to cause a denial of service in client browsers via a webpage containing a recursive META refresh tag where the content tag is blank and the URL tag references itself. | 5.0 |
2002-12-31 | CVE-2002-2307 | Pyramid | Unspecified vulnerability in Pyramid Benhur Software Update 66R3 The default configuration of BenHur Firewall release 3 update 066 fix 2 allows remote attackers to access arbitrary services by connecting from source port 20. | 5.0 |
2002-12-31 | CVE-2002-2294 | Symantec | Buffer Errors vulnerability in Symantec Enterprise Firewall, Raptor Firewall and Velociraptor Multiple buffer overflows in Symantec Raptor Firewall 6.5 and 6.5.3, Enterprise Firewall 6.5.2 and 7.0, VelociRaptor 500/700/1000 and 1100/1200/1300, and Gateway Security 5110/5200/5300 allow remote attackers to cause a denial of service (service termination) via (1) malformed RealAudio (rad) packets that are not properly handled by the RealAudio Proxy, or (2) crafted packets to the statistics service (statsd). | 5.0 |
2002-12-31 | CVE-2002-2292 | Halycon Software | Path Traversal vulnerability in Halycon Software Iasp 1.0.9 Directory traversal vulnerability in Remote Console Applet in Halycon Software iASP 1.0.9 allows remote attackers to read arbitrary files via a .. | 5.0 |
2002-12-31 | CVE-2002-2289 | Working Resources INC | Information Exposure vulnerability in Working Resources Inc. Badblue 1.7.1 soinfo.php in BadBlue 1.7.1 calls the phpinfo function, which allows remote attackers to gain sensitive information including ODBC passwords. | 5.0 |
2002-12-31 | CVE-2002-2288 | Mambo | Information Exposure vulnerability in Mambo Site Server 4.0.11 Mambo Site Server 4.0.11 allows remote attackers to obtain the physical path of the server via an HTTP request to index.php with a parameter that does not exist, which causes the path to be leaked in an error message. | 5.0 |
2002-12-31 | CVE-2002-2286 | APT WWW Proxy | Numeric Errors vulnerability in Apt-Www-Proxy 0.1 The parse-get function in utils.c for apt-www-proxy 0.1 allows remote attackers to cause a denial of service (crash) via an empty HTTP request, which causes a null dereference. | 5.0 |
2002-12-31 | CVE-2002-2276 | Ultimate PHP Board | Information Exposure vulnerability in Ultimate PHP Board Ultimate PHP Board 1.0 Ultimate PHP Board (UPB) 1.0 allows remote attackers to view the physical path of the message board via a direct request to add.php, which leaks the path in an error message. | 5.0 |
2002-12-31 | CVE-2002-2271 | Bigfun | Buffer Errors vulnerability in Bigfun 1.5.1 Buffer overflow in BigFun 1.51b IRC client, when the Direct Client Connection (DCC) option is used, allows remote attackers to cause a denial of service (crash) via a long string. | 5.0 |
2002-12-31 | CVE-2002-2266 | Netscreen | Denial Of Service vulnerability in NetScreen H.323 Control Session NetScreen ScreenOS 2.8 through 4.0, when forwarding H.323 or Netmeeting traffic, allows remote attackers to cause a denial of service (firewall session table consumption) by establishing multiple half-open H.323 sessions, which are not cleaned up on garbage removal and do not time out for 36 hours. | 5.0 |
2002-12-31 | CVE-2002-2262 | HP | Denial Of Service vulnerability in HP-UX xntpd Unspecified vulnerability in xntpd of HP-UX 10.20 through 11.11 allows remote attackers to cause a denial of service (hang) via unknown attack vectors. | 5.0 |
2002-12-31 | CVE-2002-2258 | Mobydisk | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Mobydisk Netsuite Moby NetSuite allows remote attackers to cause a denial of service (crash) via an HTTP POST request with a (1) large integer or (2) non-numeric value in the Content-Length header, which causes an access violation after a failed atoi function call. | 5.0 |
2002-12-31 | CVE-2002-2256 | Pwins | Path Traversal vulnerability in Pwins Directory traversal vulnerability in pWins Webserver 0.2.5 and earlier allows remote attackers to read arbitrary files via Unicode characters. | 5.0 |
2002-12-31 | CVE-2002-2247 | Mambo | Configuration vulnerability in Mambo Site Server 4.0.11 The administrator/phpinfo.php script in Mambo Site Server 4.0.11 allows remote attackers to obtain sensitive information such as the full web root path via phpinfo.php, which calls the phpinfo function. | 5.0 |
2002-12-31 | CVE-2002-2245 | Netbsd | Numeric Errors vulnerability in Netbsd Ftpd ftpd in NetBSD 1.5 through 1.5.3 and 1.6 does not properly quote a digit in response to a STAT command for a filename that contains a carriage return followed by a digit, which can cause firewalls and other intermediary devices to lose proper track of the FTP session. | 5.0 |
2002-12-31 | CVE-2002-2243 | Akfingerd | Remote Denial Of Service vulnerability in Akfingerd 0.5 Akfingerd 0.5 and possibly earlier versions only allows one connection at a time and does not time out connections, which allows remote attackers to cause a denial of service (refused connections) by opening a connection and not closing it. | 5.0 |
2002-12-31 | CVE-2002-2241 | Deerfield | Resource Management Errors vulnerability in Deerfield Visnetic Website Buffer overflow in httpd32.exe in Deerfield VisNetic WebSite before 3.5.15 allows remote attackers to cause a denial of service (crash) via a long HTTP OPTIONS request. | 5.0 |
2002-12-31 | CVE-2002-2240 | Myserver | Path Traversal vulnerability in Myserver 0.11/0.2 Directory traversal vulnerability in MyServer 0.11 and 0.2 allows remote attackers to read arbitrary files via a ".." (dot dot) in an HTTP GET request. | 5.0 |
2002-12-31 | CVE-2002-2238 | Kunani | Path Traversal vulnerability in Kunani Odbc FTP Server 1.0.10 Directory traversal vulnerability in the Kunani ODBC FTP Server 1.0.10 allows remote attackers to read arbitrary files via a "..\" (dot dot backslash) in a GET request. | 5.0 |
2002-12-31 | CVE-2002-2237 | Tftp | Improper Input Validation vulnerability in Tftp Server 2.21 tftp32 TFTP server 2.21 and earlier allows remote attackers to cause a denial of service via a GET request with a DOS device name such as com1 or aux. | 5.0 |
2002-12-31 | CVE-2002-2235 | Jelsoft | Numeric Errors vulnerability in Jelsoft Vbulletin member2.php in vBulletin 2.2.9 and earlier does not properly restrict the $perpage variable to be an integer, which causes an error message to be reflected back to the user without quoting, which facilitates cross-site scripting (XSS) and possibly other attacks. | 5.0 |
2002-12-31 | CVE-2002-2229 | Sapio Design LTD | Path Traversal vulnerability in Sapio Design LTD Webreflex 1.53 Directory traversal vulnerability in Sapio Design Ltd. | 5.0 |
2002-12-31 | CVE-2002-2216 | Soft3304 | Information Disclosure vulnerability in Soft3304 04Webserver 1.20 Soft3304 04WebServer before 1.20 does not properly process URL strings, which allows remote attackers to obtain unspecified sensitive information. | 5.0 |
2002-12-31 | CVE-2002-2215 | PHP | Denial-Of-Service vulnerability in PHP The imap_header function in the IMAP functionality for PHP before 4.3.0 allows remote attackers to cause a denial of service via an e-mail message with a large number of "To" addresses, which triggers an error in the rfc822_write_address function. | 5.0 |
2002-12-31 | CVE-2002-2214 | PHP | Denial-Of-Service vulnerability in PHP 4.2/4.2.0/4.2.1 The php_if_imap_mime_header_decode function in the IMAP functionality in PHP before 4.2.2 allows remote attackers to cause a denial of service (crash) via an e-mail header with a long "To" header. | 5.0 |
2002-12-31 | CVE-2002-2213 | Infoblox ISC | Remote Security vulnerability in BIND The DNS resolver in unspecified versions of Infoblox DNS One, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed responses, which increases the possibility of successfully spoofing a response in a way that is more efficient than brute force methods. | 5.0 |
2002-12-31 | CVE-2002-2212 | ISC Fujitsu | Remote Security vulnerability in BIND The DNS resolver in unspecified versions of Fujitsu UXP/V, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed responses, which increases the possibility of successfully spoofing a response in a way that is more efficient than brute force methods. | 5.0 |
2002-12-31 | CVE-2002-2211 | ISC | Remote Security vulnerability in BIND BIND 4 and BIND 8, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed responses, which increases the possibility of successfully spoofing a response in a way that is more efficient than brute force methods. | 5.0 |
2002-12-31 | CVE-2002-2205 | Webresolve | Buffer Overflow vulnerability in Webresolve Host Name Buffer overflow in Webresolve 0.1.0 and earlier allows remote attackers to execute arbitrary code by connecting to the server from an IP address that resolves to a long hostname. | 5.0 |
2002-12-31 | CVE-2002-2195 | Nullsoft | Buffer Overflow vulnerability in Nullsoft Winamp Automatic Update Check Buffer overflow in the version update check for Winamp 2.80 and earlier allows remote attackers who can spoof www.winamp.com to execute arbitrary code via a long server response. | 5.0 |
2002-12-31 | CVE-2002-2191 | Lotus | Information Disclosure vulnerability in Lotus Domino Non-existent NSF Database Banner Lotus Domino 5.0.9a and earlier, even when configured with the 'DominoNoBanner=1' option, allows remote attackers to obtain potential sensitive information such as the version via a request for a non-existent .nsf database, which leaks the version in the HTTP banner. | 5.0 |
2002-12-31 | CVE-2002-2187 | Macromedia | Unspecified vulnerability in Macromedia Jrun 3.0/3.1/4.0 Unknown "file disclosure" vulnerability in Macromedia JRun 3.0, 3.1, and 4.0, related to a log file or jrun.ini, with unknown impact. | 5.0 |
2002-12-31 | CVE-2002-2186 | Macromedia | Unspecified vulnerability in Macromedia Jrun 3.0/3.1/4.0 Macromedia JRun 3.0, 3.1, and 4.0 allow remote attackers to view the source code of .JSP files via Unicode encoded character values in a URL. | 5.0 |
2002-12-31 | CVE-2002-2184 | Digi NET Technologies | Information Disclosure vulnerability in Digi-Net Technologies Digichat 3.5 Digi-Net Technologies DigiChat 3.5 allows chat users to obtain the IP addresses of other chat users via a "Showip" parameter in the chat applet. | 5.0 |
2002-12-31 | CVE-2002-2181 | Sonicwall | Unspecified vulnerability in Sonicwall Content Filtering SonicWall Content Filtering allows local users to access prohibited web sites via requests to the web site's IP address instead of the domain name. | 5.0 |
2002-12-31 | CVE-2002-2174 | Software602 | Denial-Of-Service vulnerability in Software602 602Pro LAN Suite 2002 The Telnet proxy of 602Pro LAN SUITE 2002 does not restrict the number of outstanding connections to the local host, which allows remote attackers to create a denial of service (memory consumption) via a large number of connections. | 5.0 |
2002-12-31 | CVE-2002-2169 | AOL | Unspecified vulnerability in AOL Instant Messenger 4.5/4.7/4.7.2480 Cross-site scripting vulnerability AOL Instant Messenger (AIM) 4.5 and 4.7 for MacOS and Windows allows remote attackers to conduct unauthorized activities, such as adding buddies and groups to a user's buddy list, via a URL with a META HTTP-EQUIV="refresh" tag to an aim: URL. | 5.0 |
2002-12-31 | CVE-2002-2167 | Thorsten Korner | Unspecified vulnerability in Thorsten Korner 123Tkshop 0.2/0.3 Directory traversal vulnerability in function_foot_1.inc.php for Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to read arbitrary files via .. | 5.0 |
2002-12-31 | CVE-2002-2164 | Microsoft | Denial of Service vulnerability in Alleged Outlook Express Link Buffer overflow in Microsoft Outlook Express 5.0, 5.5, and 6.0 allows remote attackers to cause a denial of service (crash) via a long <A HREF> link. | 5.0 |
2002-12-31 | CVE-2002-2161 | Kerio | SYN Packet Denial Of Service vulnerability in Kerio Personal Firewall Kerio Personal Firewall (KPF) 2.1.4 and earlier allows remote attackers to cause a denial of service (hang and CPU consumption) via a SYN packet flood. | 5.0 |
2002-12-31 | CVE-2002-2158 | Zendocs | Information Disclosure vulnerability in ZenTrack zenTrack 2.0.3 and earlier allows remote attackers to obtain the full path to the web root via an invalid ticket ID, which leaks the path in an error message. | 5.0 |
2002-12-31 | CVE-2002-2154 | Monkey Project | Path Traversal vulnerability in Monkey-Project Monkey 0.1.4 Directory traversal vulnerability in Monkey HTTP Daemon 0.1.4 allows remote attackers to read arbitrary files via .. | 5.0 |
2002-12-31 | CVE-2002-2150 | Juniper | Unspecified vulnerability in Juniper Netscreen Screenos Firewalls from multiple vendors empty state tables more slowly than they are filled, which allows remote attackers to flood state tables with packet flooding attacks such as (1) TCP SYN flood, (2) UDP flood, or (3) Crikey CRC Flood, which causes the firewall to refuse any new connections. | 5.0 |
2002-12-31 | CVE-2002-2149 | Lucent | Denial Of Service vulnerability in Lucent products Buffer overflow in Lucent Access Point 300, 600, and 1500 Service Routers allows remote attackers to cause a denial of service (reboot) via a long HTTP request to the administrative interface. | 5.0 |
2002-12-31 | CVE-2002-2148 | Lucent | Information Disclosure vulnerability in Lucent products Lucent Ascend MAX Router 5.0 and earlier, Lucent Ascend Pipeline Router 6.0.2 and earlier and Lucent DSLTerminator allows remote attackers to obtain sensitive information such as hostname, MAC, and IP address of the Ethernet interface via a discard (UDP port 9) packet, which causes the device to leak the information in the response. | 5.0 |
2002-12-31 | CVE-2002-2144 | Free Peers | Unspecified vulnerability in Free Peers Bearshare 4.0.5/4.0.6 Directory traversal vulnerability in BearShare 4.0.5 and 4.0.6 allows remote attackers to read files outside of the web root by hex-encoding the "/" (forward slash) or "." (dot) characters. | 5.0 |
2002-12-31 | CVE-2002-2140 | Cisco | Buffer Overrun vulnerability in Cisco PIX TACACS+/RADIUS HTTP Proxy Buffer overflow in Cisco PIX Firewall 5.2.x to 5.2.8, 6.0.x to 6.0.3, 6.1.x to 6.1.3, and 6.2.x to 6.2.1 allows remote attackers to cause a denial of service via HTTP traffic authentication using (1) TACACS+ or (2) RADIUS. | 5.0 |
2002-12-31 | CVE-2002-2138 | HP | Denial Of Service vulnerability in HP Advanced Server 9000 and Hp-Ux RFC-NETBIOS in HP Advanced Server/9000 B.04.05 through B.04.09, when running HP-UX 11.00 or 11.11, allows remote attackers to cause a denial of service (panic) via a malformed UDP packet on port 139. | 5.0 |
2002-12-31 | CVE-2002-2137 | Alloy D Link Eusso Linksys Wisecom | Information Disclosure vulnerability in GlobalSunTech Access Point GlobalSunTech Wireless Access Points (1) WISECOM GL2422AP-0T, and possibly OEM products such as (2) D-Link DWL-900AP+ B1 2.1 and 2.2, (3) ALLOY GL-2422AP-S, (4) EUSSO GL2422-AP, and (5) LINKSYS WAP11-V2.2, allow remote attackers to obtain sensitive information like WEP keys, the administrator password, and the MAC filter via a "getsearch" request to UDP port 27155. | 5.0 |
2002-12-31 | CVE-2002-2134 | Peel | Remote File Include vulnerability in Peel 1.0B haut.php in PEEL 1.0b allows remote attackers to execute arbitrary PHP code by modifying the dirroot parameter to reference a URL on a remote web server that contains the code in a lang.php file. | 5.0 |
2002-12-31 | CVE-2002-2131 | Perl Httpd | Unspecified vulnerability in Perl-Httpd 1.0/1.0.1 Directory traversal vulnerability in Perl-HTTPd before 1.0.2 allows remote attackers to view arbitrary files via a .. | 5.0 |
2002-12-31 | CVE-2002-2124 | Nylon | Denial Of Service vulnerability in Nylon 0.2 The recvn and sendn functions in nylon 0.2 do not check when the recv function call returns 0, which allows remote attackers to cause a denial of service (infinite loop and CPU consumption) by closing the connection while recv is executing. | 5.0 |
2002-12-31 | CVE-2002-2121 | Surfcontrol | Denial of Service vulnerability in Surfcontrol Superscout Email Filter 3.5.1 SurfControl SuperScout Email filter for SMTP 3.5.1 allows remote attackers to cause a denial of service (crash) via a long SMTP (1) HELO or (2) RCPT TO command, possibly due to a buffer overflow. | 5.0 |
2002-12-31 | CVE-2002-2118 | Blue World Communications | Unspecified vulnerability in Blue World Communications Lasso web Data Engine 3.6.5 Buffer overflow in Blue World Lasso Web Data Engine 3.6.5 allows remote attackers to cause a denial of service via a long URL. | 5.0 |
2002-12-31 | CVE-2002-2116 | Netgear | Denial Of Service vulnerability in Netgear Rm356 and Rt338 Netgear RM-356 and RT-338 series SOHO routers allow remote attackers to cause a denial of service (crash) via a UDP port scan, as demonstrated using nmap. | 5.0 |
2002-12-31 | CVE-2002-2112 | RCA | Unspecified vulnerability in RCA Digital Cable Modem Dcm225/Dcm225E RCA Digital Cable Modem DCM225 and DCM225E, and other modems that must conform to the Data-over-Cable Service Interface Specifications DOCSIS standard, uses the "public" community string for SNMP access, which allows remote attackers to read or write MIB information. | 5.0 |
2002-12-31 | CVE-2002-2111 | Gianni Tedesco | Denial of Service vulnerability in fwmon Oversized Packet Fwmon before 1.0.10 allows remote attackers to cause a denial of service (crash) by causing the kernel to return a large packet. | 5.0 |
2002-12-31 | CVE-2002-2110 | RCA | Remote Reset Denial of Service vulnerability in RCA Digital Cable Modem Dcm225/Dcm225E The RCA Digital Cable Modems DCM225 and DCM225E allow remote attackers to cause a denial of service (modem device reset) by connecting to port 80 on the 10.0.0.0/8 device. | 5.0 |
2002-12-31 | CVE-2002-2108 | Sony | Unspecified vulnerability in Sony Vaio Manual Cybersupport 3.0/3.1 Unknown vulnerability in the "VAIO Manual" software in certain Sony VAIO personal computers sold from November 2001 to January 2002, allows remote attackers to modify data via a web page or HTML e-mail. | 5.0 |
2002-12-31 | CVE-2002-2103 | Apache | Unspecified vulnerability in Apache Http Server Apache before 1.3.24, when writing to the log file, records a spoofed hostname from the reverse lookup of an IP address, even when a double-reverse lookup fails, which allows remote attackers to hide the original source of activities. | 5.0 |
2002-12-31 | CVE-2002-2102 | Jcraft | Denial Of Service vulnerability in JZLib InfBlocks.java in JCraft JZlib before 0.0.7 allow remote attackers to cause a denial of service (NullPointerException) via an invalid block of deflated data. | 5.0 |
2002-12-31 | CVE-2002-2100 | Microsoft | Unspecified vulnerability in Microsoft Outlook 2000/2002 Microsoft Outlook 2002 allows remote attackers to embed bypass the file download restrictions for attachments via an HTML email message that uses an IFRAME to reference malicious content. | 5.0 |
2002-12-31 | CVE-2002-2097 | Maradns | Denial of Service vulnerability in MaraDNS The compression code in MaraDNS before 0.9.01 allows remote attackers to cause a denial of service via crafted DNS packets. | 5.0 |
2002-12-31 | CVE-2002-2095 | JOE Testa | Unspecified vulnerability in JOE Testa Hellbent 0.1 Joe Testa hellbent 01 webserver allows attackers to read files that are specified in the hellbent.prefs file by creating a file with a similar name in the web root, as demonstrated using (1) index.webroot and (2) index.ipallow. | 5.0 |
2002-12-31 | CVE-2002-2090 | Caucho Technology | Path Disclosure vulnerability in Caucho Technology Resin Server Device Name Caucho Technology Resin server 2.1.1 to 2.1.2 allows remote attackers to obtain server's root path via requests for MS-DOS device names such as lpt9.xtp. | 5.0 |
2002-12-31 | CVE-2002-2085 | Wwwebbb | Directory Traversal vulnerability in Wwwebbb Forum Directory traversal vulnerability in page.cgi of WWWeBBB Forum 3.82 beta and earlier allows remote attackers to read arbitrary files via a .. | 5.0 |
2002-12-31 | CVE-2002-2084 | Portix PHP | Directory Traversal vulnerability in Portix-PHP 0.4.2 Directory traversal vulnerability in index.php of Portix 0.4.02 allows remote attackers to read arbitrary files via a .. | 5.0 |
2002-12-31 | CVE-2002-2081 | Microsoft | Denial of Service vulnerability in Microsoft Site Server 3.0 Content Upload cphost.dll in Microsoft Site Server 3.0 allows remote attackers to cause a denial of service (disk consumption) via an HTTP POST of a file with a long TargetURL parameter, which causes Site Server to abort and leaves the uploaded file in c:\temp. | 5.0 |
2002-12-31 | CVE-2002-2080 | Floosietek | Denial of Service vulnerability in Floosietek Ftgatepro 1.05 Floositek FTGate PRO 1.05 allows remote attackers to cause a denial of service (memory and CPU consumption) via a large number of RCPT TO: messages during an SMTP session. | 5.0 |
2002-12-31 | CVE-2002-2079 | Mosix Project Openmosix Project | Denial Of Service vulnerability in Mosix Malformed Packet Handling mosix-protocol-stack in Multicomputer Operating System for UnIX (MOSIX) 1.5.7 allows remote attackers to cause a denial of service via malformed packets. | 5.0 |
2002-12-31 | CVE-2002-2076 | Summit Computer Networks | Directory Traversal vulnerability in Summit Computer Networks LIL Http 2.1/2.2 Directory traversal vulnerability in Lil' HTTP server 2.1 and 2.2 allows remote attackers to read arbitrary files via a .. | 5.0 |
2002-12-31 | CVE-2002-2075 | Mirabilis | Denial-Of-Service vulnerability in Mirabilis ICQ 2001A/2002B ICQ 2001a and 2002b allows remote attackers to cause a denial of service (memory consumption and hang) via a contact message with a large contacts number. | 5.0 |
2002-12-31 | CVE-2002-2072 | SUN | Unspecified vulnerability in SUN JRE 1.2.2/1.3.1 java.security.AccessController in Sun Java Virtual Machine (JVM) in JRE 1.2.2 and 1.3.1 allows remote attackers to cause a denial of service (JVM crash) via a Java program that calls the doPrivileged method with a null argument. | 5.0 |
2002-12-31 | CVE-2002-2071 | Compaq | Denial Of Service vulnerability in Compaq Tru64 4.0E Compaq Tru64 4.0 d allows remote attackers to cause a denial of service in (1) telnet, (2) FTP, (3) ypbind, (4) rpc.lockd, (5) snmp, (6) ttdbserverd, and possibly other services via a TCP SYN scan, as demonstrated using nmap. | 5.0 |
2002-12-31 | CVE-2002-2065 | Webcalendar | Information Disclosure vulnerability in WebCalendar Include Files WebCalendar 0.9.34 and earlier with 'browsing in includes directory' enabled allows remote attackers to read arbitrary include files with .inc extensions from the web root. | 5.0 |
2002-12-31 | CVE-2002-2057 | Teekai | Unspecified vulnerability in Teekai Forum 1.2 TeeKai Forum 1.2 uses weak encryption of web usage statistics in data/member_log.txt, which is stored under the web document root with insufficient access control, which allows remote attackers to identify IP's visiting the site by dividing each octet by the MD5 hash of '20'. | 5.0 |
2002-12-31 | CVE-2002-2053 | Cisco | Denial Of Service vulnerability in Cisco IOS 12.1 The design of the Hot Standby Routing Protocol (HSRP), as implemented on Cisco IOS 12.1, when using IRPAS, allows remote attackers to cause a denial of service (CPU consumption) via a router with the same IP address as the interface on which HSRP is running, which causes a loop. | 5.0 |
2002-12-31 | CVE-2002-2052 | Cisco | Denial of Service vulnerability in Cisco IOS 12.1(6.5) Cisco 2611 router running IOS 12.1(6.5), possibly an interim release, allows remote attackers to cause a denial of service via port scans such as (1) scanning all ports on a single host and (2) scanning a network of hosts for a single open port through the router. | 5.0 |
2002-12-31 | CVE-2002-2037 | Cisco | Unspecified vulnerability in Cisco products The Cisco Media Gateway Controller (MGC) in (1) SC2200 7.4 and earlier, (2) VSC3000 9.1 and earlier, (3) PGW 2200 9.1 and earlier, (4) Billing and Management Server (BAMS) and (5) Voice Services Provisioning Tool (VSPT) runs on default installations of Solaris 2.6 with unnecessary services and without the latest security patches, which allows attackers to exploit known vulnerabilities. | 5.0 |
2002-12-31 | CVE-2002-2033 | Faqmanager | Unspecified vulnerability in Faqmanager Faqmanager.Cgi faqmanager.cgi in FAQManager 2.2.5 and earlier allows remote attackers to read arbitrary files by specifying the filename in the toc parameter with a trailing null character (%00). | 5.0 |
2002-12-31 | CVE-2002-2031 | Microsoft | Unspecified vulnerability in Microsoft Internet Explorer Internet Explorer 5.0, 5.0.1 and 5.5 with JavaScript execution enabled allows remote attackers to determine the existence of arbitrary files via a script tag with a src parameter that references a non-JavaScript file, then using the onError event handler to monitor the results. | 5.0 |
2002-12-31 | CVE-2002-2024 | Horde | Path Disclosure vulnerability in Horde IMP 2.2.7 Horde IMP 2.2.7 allows remote attackers to obtain the full web root pathname via an HTTP request for (1) poppassd.php3, (2) login.php3?reason=chpass2, (3) spelling.php3, and (4) ldap.search.php3?ldap_serv=nonsense which leaks the information in error messages. | 5.0 |
2002-12-31 | CVE-2002-2014 | IBM | Unspecified vulnerability in IBM Lotus Domino 5.0.8 Lotus Domino 5.0.8 web server returns different error messages when a valid or invalid user is provided in HTTP requests, which allows remote attackers to determine valid user names and makes it easier to conduct brute force attacks. | 5.0 |
2002-12-31 | CVE-2002-2013 | Mozilla Netscape | Mozilla 0.9.6 and earlier and Netscape 6.2 and earlier allows remote attackers to steal cookies from another domain via a link with a hex-encoded null character (%00) followed by the target domain. | 5.0 |
2002-12-31 | CVE-2002-2012 | Apache | Unspecified vulnerability in Apache Http Server 1.3.19 Unknown vulnerability in Apache 1.3.19 running on HP Secure OS for Linux 1.0 allows remote attackers to cause "unexpected results" via an HTTP request. | 5.0 |
2002-12-31 | CVE-2002-2007 | Apache | Information Disclosure vulnerability in Apache Tomcat 3.2.3/3.2.4 The default installations of Apache Tomcat 3.2.3 and 3.2.4 allows remote attackers to obtain sensitive system information such as directory listings and web root path, via erroneous HTTP requests for Java Server Pages (JSP) in the (1) test/jsp, (2) samples/jsp and (3) examples/jsp directories, or the (4) test/realPath.jsp servlet, which leaks pathnames in error messages. | 5.0 |
2002-12-31 | CVE-2002-2004 | Compaq | Denial-Of-Service vulnerability in Compaq Tru64 4.0G/5.0A portmapper in Compaq Tru64 4.0G and 5.0A allows remote attackers to cause a denial of service via a flood of packets. | 5.0 |
2002-12-31 | CVE-2002-2003 | Compaq | Remote Security vulnerability in Tru64 ypbind in Compaq Tru64 4.0F, 4.0G, 5.0A, 5.1 and 5.1A allows remote attackers to cause the process to core dump via certain network packets generated by nmap. | 5.0 |
2002-12-31 | CVE-2002-1999 | HP | Unspecified vulnerability in HP Praesidium Webproxy 1.0 HP Praesidium Webproxy 1.0 running on HP-UX 11.04 VVOS could allow remote attackers to cause Webproxy to forward requests to the internal network via crafted HTTP requests. | 5.0 |
2002-12-31 | CVE-2002-1994 | Gamecheats | Denial Of Service vulnerability in Gamecheats Advanced web Server Professional 1.030000 advserver.exe in Advanced Web Server (AdvServer) Professional 1.030000 allows remote attackers to cause a denial of service via multiple HTTP requests containing a single carriage return/line feed (CRLF) sequence. | 5.0 |
2002-12-31 | CVE-2002-1992 | Macromedia | Buffer Overrun vulnerability in Macromedia Coldfusion and Coldfusion Professional Buffer overflow in jrun.dll in ColdFusion MX, when used with IIS 4 or 5, allows remote attackers to cause a denial of service in IIS via (1) a long template file name or (2) a long HTTP header. | 5.0 |
2002-12-31 | CVE-2002-1990 | Caucho Technology | Path Disclosure vulnerability in Caucho Technology Resin 2.0/2.1.1/2.1.2 Resin 2.0.5 through 2.1.2 allows remote attackers to reveal physical path information via a URL request for the example Java class file HelloServlet. | 5.0 |
2002-12-31 | CVE-2002-1989 | Caucho Technology | Denial-Of-Service vulnerability in Caucho Technology Resin 2.1.1 Resin 2.1.1 allows remote attackers to cause a denial of service (thread and connection consumption) via multiple URL requests containing the DOS 'CON' device name and a registered file extension such as .jsp or .xtp. | 5.0 |
2002-12-31 | CVE-2002-1988 | Caucho Technology | Denial Of Service vulnerability in Caucho Technology Resin 2.1.1 Resin 2.1.1 allows remote attackers to cause a denial of service (memory consumption and hang) via a URL with long variables for non-existent resources. | 5.0 |
2002-12-31 | CVE-2002-1987 | Caucho Technology | Unspecified vulnerability in Caucho Technology Resin 2.1.2 Directory traversal vulnerability in view_source.jsp in Resin 2.1.2 allows remote attackers to read arbitrary files via a "\.." (backslash dot dot). | 5.0 |
2002-12-31 | CVE-2002-1986 | Perception | Unspecified vulnerability in Perception Liteserve 2.0/2.0.1/2.0.2 Perception LiteServe 2.0 through 2.0.1 allows remote attackers to obtain the source code of CGI scripts via an HTTP request with a trailing dot ("."). | 5.0 |
2002-12-31 | CVE-2002-1985 | Incognito Software INC | Buffer Overflow vulnerability in Incognito Software INC Ismtp Gateway 5.0.1 iSMTP 5.0.1 allows remote attackers to cause a denial of service via a long "MAIL FROM" command, possibly triggering a buffer overflow. | 5.0 |
2002-12-31 | CVE-2002-1984 | Microsoft | Unspecified vulnerability in Microsoft Internet Explorer 5.0.1/5.5/6.0 Microsoft Internet Explorer 5.0.1 through 6.0 on Windows 2000 or Windows XP allows remote attackers to cause a denial of service (crash) via an OBJECT tag that contains a crafted CLASSID (CLSID) value of "CLSID:00022613-0000-0000-C000-000000000046". | 5.0 |
2002-12-31 | CVE-2002-1982 | Icecast | Directory Traversal Information Disclosure vulnerability in Icecast 1.3.12 Directory traversal vulnerability in the list_directory function in Icecast 1.3.12 allows remote attackers to determine if a directory exists via a .. | 5.0 |
2002-12-31 | CVE-2002-1981 | Microsoft | Unspecified vulnerability in Microsoft SQL Server 2000 Microsoft SQL Server 2000 through SQL Server 2000 SP2 allows the "public" role to execute the (1) sp_MSSetServerProperties or (2) sp_MSsetalertinfo stored procedures, which allows attackers to modify configuration including SQL server startup and alert settings. | 5.0 |
2002-12-31 | CVE-2002-1969 | THE Magic Notebook | Denial Of Service vulnerability in The Magic Notebook Invalid Username Magic Notebook 1.0b and 1.1b allows remote attackers to cause a denial of service (crash) via an invalid username during login. | 5.0 |
2002-12-31 | CVE-2002-1967 | Mark Hanson | Denial of Service vulnerability in Mark Hanson Xircon 1.0Beta4 Buffer overflow in XiRCON 1.0 Beta 4 allows remote attackers to cause a denial of service (disconnect) via a long (1) ctcp, (2) primsg, (3) msg, or (4) notice command. | 5.0 |
2002-12-31 | CVE-2002-1966 | MY Postcards | Unspecified vulnerability in MY Postcards MY Postcards Platinum 5.0/6.0 Directory traversal vulnerability in magiccard.cgi in My Postcards Platinum 5.0 and 6.0 allows remote attackers to read arbitrary files via a .. | 5.0 |
2002-12-31 | CVE-2002-1955 | Iomega | Authentication vulnerability in Iomega NAS A300U Iomega NAS A300U uses cleartext LANMAN authentication when mounting CIFS/SMB drives, which allows remote attackers to perform a man-in-the-middle attack. | 5.0 |
2002-12-31 | CVE-2002-1953 | AOL | Remote Heap Overflow vulnerability in AOL Instant Messenger Link Special Character Heap-based buffer overflow in the goim handler of AOL Instant Messenger (AIM) 4.4 through 4.8.2616 allows remote attackers to cause a denial of service (crash) via escaping of the screen name parameter, which triggers the overflow when the user selects "Get Info" on the buddy. | 5.0 |
2002-12-31 | CVE-2002-1945 | Virtualzone | Denial Of Service vulnerability in Virtualzone Smartmail Server 1.0Beta10 Buffer overflow in SmartMail Server 1.0 Beta 10 allows remote attackers to cause a denial of service (crash) via a long request to (1) TCP port 25 (SMTP) or (2) TCP port 110 (POP3). | 5.0 |
2002-12-31 | CVE-2002-1944 | Motorola | Denial-Of-Service vulnerability in Motorola Surfboard 4200 Motorola Surfboard 4200 cable modem allows remote attackers to cause a denial of service (crash) by performing a SYN scan using a tool such as nmap. | 5.0 |
2002-12-31 | CVE-2002-1943 | Safetp | Unspecified vulnerability in Safetp Server 1.46 SafeTP 1.46, when network address translation (NAT) is being used, leaks the internal IP address of the FTP server in a response to a passive mode (PASV) file transfer request. | 5.0 |
2002-12-31 | CVE-2002-1942 | Imatix | Denial Of Service vulnerability in Imatix Xitami 2.5B5 Imatix Xitami 2.5 b5 does not properly terminate certain Keep-Alive connections that have been broken or closed early, which allows remote attackers to cause a denial of service (crash) via a large number of concurrent sessions. | 5.0 |
2002-12-31 | CVE-2002-1941 | Radiobird Software | Buffer Overflow vulnerability in Radiobird Software web Server 4 Everyone 1.28 Buffer overflow in RadioBird WebServer 4 Everyone 1.28 allows remote attackers to cause a denial of service (crash) via a long HTTP GET request with the Host header set. | 5.0 |
2002-12-31 | CVE-2002-1940 | Jacob Navia | Unspecified vulnerability in Jacob Navia Lcc-Win32 3.2 LCC-Win32 3.2 compiler, when running on Windows 95, 98, or ME, writes portions of previously used memory after the import table, which could allow attackers to gain sensitive information. | 5.0 |
2002-12-31 | CVE-2002-1937 | Symantec | Remote Security vulnerability in Symantec products Symantec Firewall/VPN Appliance 100 through 200R hardcodes the administrator's MAC address inside the firewall's configuration, which allows remote attackers to spoof the administrator's MAC address and perform an ARP poisoning man-in-the-middle attack to obtain the administrator's password. | 5.0 |
2002-12-31 | CVE-2002-1928 | Software602 | Remote Security vulnerability in Software602 602Pro LAN Suite 2002 602Pro LAN SUITE 2002 allows remote attackers to view the directory tree via an HTTP GET request with a trailing "~" (tilde) or ".bak" extension. | 5.0 |
2002-12-31 | CVE-2002-1926 | Aquonics Scripting | Directory Traversal vulnerability in Aquonics Scripting Aquonics File Manager 1.5 Directory traversal vulnerability in source.php in Aquonics File Manager 1.5 allows remote attackers to read arbitrary files via a .. | 5.0 |
2002-12-31 | CVE-2002-1925 | Tiny Software | Denial Of Service vulnerability in Tiny Software Tiny Personal Firewall 3.0/3.0.5/3.0.6 Tiny Personal Firewall 3.0 through 3.0.6 allows remote attackers to cause a denial of service (crash) by via SYN, UDP, ICMP and TCP portscans when the administrator selects the Log tab of the Personal Firewall Agent module. | 5.0 |
2002-12-31 | CVE-2002-1924 | APC | Unspecified vulnerability in APC Powerchute 5.0.2 PowerChute plus 5.0.2 creates a "Pwrchute" directory during installation that is shared and world writeable, which could allow remote attackers to modify or create files in that directory. | 5.0 |
2002-12-31 | CVE-2002-1920 | Datawizard | Buffer Overflow vulnerability in Datawizard Ftpxq 2.5 Buffer overflow in FtpXQ 2.5 allows remote attackers to cause a denial of service (crash) via a MKD command with a long directory name. | 5.0 |
2002-12-31 | CVE-2002-1917 | Geeklog | Unspecified vulnerability in Geeklog 1.3.5Sr1/1.35 CRLF injection vulnerability in the "User Profile: Send Email" feature in Geeklog 1.35 and 1.3.5sr1 allows remote attackers to obtain e-mail addresses by injecting a CRLF into the Subject field and adding a BCC mail header. | 5.0 |
2002-12-31 | CVE-2002-1916 | Pirch | Denial-Of-Service vulnerability in Ruspirch Pirch and RusPirch, when auto-log is enabled, allows remote attackers to cause a denial of service (crash) via a nickname containing an MS-DOS device name such as AUX, which is inserted into a filename for saving queries. | 5.0 |
2002-12-31 | CVE-2002-1913 | Myphpnuke | Unspecified vulnerability in Myphpnuke 1.8.8 phptonuke.php in myPHPNuke 1.8.8 allows remote attackers to read arbitrary files via a full pathname in the filnavn variable. | 5.0 |
2002-12-31 | CVE-2002-1911 | Zonelabs | Denial Of Service vulnerability in Zone Labs ZoneAlarm Syn Flood ZoneAlarm Pro 3.0 and 3.1, when configured to block all traffic, allows remote attackers to cause a denial of service (CPU and memory consumption) via a large number of SYN packets (SYN flood). | 5.0 |
2002-12-31 | CVE-2002-1909 | Click2Learn | Information Disclosure vulnerability in Click2Learn Ingenium Learning Management System 5.1/6.1 Click2Learn Ingenium Learning Management System 5.1 and 6.1 stores the hashed administrative password in a config.txt file under the htdocs directory, which allows remote attackers to obtain the administrative password. | 5.0 |
2002-12-31 | CVE-2002-1908 | Microsoft | Unspecified vulnerability in Microsoft Internet Information Services 5.0 Microsoft IIS 5.0 and 5.1 allows remote attackers to cause a denial of service (CPU consumption) via an HTTP request with a Host header that contains a large number of "/" (forward slash) characters. | 5.0 |
2002-12-31 | CVE-2002-1907 | Telcondex | Denial Of Service vulnerability in Telcondex Simplewebserver 2.06.20817 TelCondex SimpleWebServer 2.06.20817 allows remote attackers to cause a denial of service (crash) via a long HTTP GET request. | 5.0 |
2002-12-31 | CVE-2002-1903 | University OF Washington | Unspecified vulnerability in University of Washington Pine Pine 4.2.1 through 4.4.4 puts Unix usernames and/or uid into Sender: and X-Sender: headers, which could allow remote attackers to obtain sensitive information. | 5.0 |
2002-12-31 | CVE-2002-1902 | Markus Triska | Denial of Service vulnerability in CGIForum Infinite Recursion CGIForum 1.0 through 1.05 allows remote attackers to cause a denial of service (infinite recursion) by creating a message board post that is a child of an outdated parent. | 5.0 |
2002-12-31 | CVE-2002-1897 | Mywebserver | Denial Of Service vulnerability in Mywebserver 1.0.0/1.0.1/1.0.2 MyWebServer LLC MyWebServer 1.0.2 allows remote attackers to cause a denial of service (crash) via a long HTTP request, possibly triggering a buffer overflow. | 5.0 |
2002-12-31 | CVE-2002-1889 | Logsurfer | Buffer Overflow vulnerability in Logsurfer 1.41/1.5/1.5A Off-by-one buffer overflow in the context_action function in context.c of Logsurfer 1.41 through 1.5a allows remote attackers to cause a denial of service (crash) via a malformed log entry. | 5.0 |
2002-12-31 | CVE-2002-1886 | Tightauction | Information Disclosure vulnerability in Tightauction 3.0 TightAuction 3.0 stores config.inc under the web document root with insufficient access control, which allows remote attackers to obtain the database username and password. | 5.0 |
2002-12-31 | CVE-2002-1881 | Macromedia | Denial Of Service vulnerability in Macromedia Flash Malformed SWF Macromedia Flash Player 4.0 r12 through 6.0.47.0 allows remote attackers to cause a denial of service (web browser crash) via malformed content in a Flash Shockwave (.SWF) file, as demonstrated by by ROT13 encoding the body of the file but not the headers. | 5.0 |
2002-12-31 | CVE-2002-1880 | Lokwa | Remote Security vulnerability in Lokwa Lokwabb 1.2.2 LokwaBB 1.2.2 allows remote attackers to read arbitrary messages by modifying the pmid parameter to pm.php. | 5.0 |
2002-12-31 | CVE-2002-1878 | W Agora | Remote File Include vulnerability in W-Agora 4.1.1/4.1.2/4.1.3 PHP remote file inclusion vulnerability in w-Agora 4.1.3 allows remote attackers to execute arbitrary PHP code via the inc_dir parameter. | 5.0 |
2002-12-31 | CVE-2002-1873 | Microsoft | Resource Exhaustion vulnerability in Microsoft Exchange Server 2000 Microsoft Exchange 2000, when used with Microsoft Remote Procedure Call (MSRPC), allows remote attackers to cause a denial of service (crash or memory consumption) via malformed MSRPC calls. | 5.0 |
2002-12-31 | CVE-2002-1866 | SWS | Denial Of Service vulnerability in SWS Simple Web Server Non-existent File Request Simple Web Server (SWS) 0.0.4 through 0.1.0 does not close file descriptors for 404 error messages, which could allow remote attackers to cause a denial of service (file descriptor exhaustion) via multiple requests for pages that do not exist. | 5.0 |
2002-12-31 | CVE-2002-1865 | D Link Linksys | Denial of Service vulnerability in Multiple Vendor Access Point Embedded HTTP Server Buffer overflow in the Embedded HTTP server, as used in (1) D-Link DI-804 4.68, Dl-704 V2.56b6, and Dl-704 V2.56b5 and (2) Linksys Etherfast BEFW11S4 Wireless AP + Cable/DSL Router 1.37.2 through 1.42.7 and Linksys WAP11 1.3 and 1.4, allows remote attackers to cause a denial of service (crash) via a long header, as demonstrated using the Host header. | 5.0 |
2002-12-31 | CVE-2002-1864 | SWS | Unspecified vulnerability in SWS Simple web Server Directory traversal vulnerability in Simple Web Server (SWS) 0.0.4 through 0.1.0 allows remote attackers to read arbitrary files via a ".." (dot dot) in an HTTP request. | 5.0 |
2002-12-31 | CVE-2002-1862 | Virtualzone | Denial Of Service vulnerability in Virtualzone Smartmail Server 2.0 SmartMail Server 2.0 allows remote attackers to cause a denial of service (crash) by sending data and closing the connection before all the data has been sent. | 5.0 |
2002-12-31 | CVE-2002-1861 | Sybase | Unspecified vulnerability in Sybase Easerver 4.0 Sybase Enterprise Application Server 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF."). | 5.0 |
2002-12-31 | CVE-2002-1860 | Pramati | Unspecified vulnerability in Pramati Server 3.0 Pramati Server 3.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF."). | 5.0 |
2002-12-31 | CVE-2002-1859 | Orionserver | Unspecified vulnerability in Orionserver Orion Application Server 1.5.3 Orion Application Server 1.5.3, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF."). | 5.0 |
2002-12-31 | CVE-2002-1858 | Oracle | Unspecified vulnerability in Oracle Application Server Oracle Oracle9i Application Server 1.0.2.2 and 9.0.2 through 9.0.2.0.1, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF."). | 5.0 |
2002-12-31 | CVE-2002-1857 | JO | Unspecified vulnerability in JO Webserver 1.0Rc1 jo! jo Webserver 1.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF."). | 5.0 |
2002-12-31 | CVE-2002-1856 | HP | Unspecified vulnerability in HP Application Server 8.0 HP Application Server 8.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF."). | 5.0 |
2002-12-31 | CVE-2002-1855 | Macromedia | Unspecified vulnerability in Macromedia Jrun 3.0/3.1/4.0 Macromedia JRun 3.0 through 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF."). | 5.0 |
2002-12-31 | CVE-2002-1849 | Parachat | Denial Of Service vulnerability in Parachat Server 4.0 ParaChat Server 4.0 does not log users off if the browser's back button is used, which allows remote attackers to cause a denial of service by repeatedly logging into a chat room, hitting the back button, then logging into the same chat room as a different user, which fills the chat room with invalid users. | 5.0 |
2002-12-31 | CVE-2002-1846 | Yabb | Denial-Of-Service vulnerability in Yabb 1.40/1.41 Yet Another Bulletin Board (YaBB) 1.40 and 1.41 does not require a user to submit the correct password before changing it to a new password, which allows remote attackers to modify passwords by stealing the cookie of another user, modifying the expiretime setting, and submitting the change in a profile2 action to index.php. | 5.0 |
2002-12-31 | CVE-2002-1839 | Trend Micro | Unspecified vulnerability in Trend Micro Interscan Viruswall for Windows NT 3.52 Trend Micro InterScan VirusWall for Windows NT 3.52 does not record the sender's IP address in the headers for a mail message when it is passed from VirusWall to the MTA, which allows remote attackers to hide the origin of the message. | 5.0 |
2002-12-31 | CVE-2002-1838 | Steve Sachs | Unspecified vulnerability in Steve Sachs Charities.Cron Charities.cron 1.0.2 through 1.6.0 allows local users to write to arbitrary files via a symlink attack on temporary files. | 5.0 |
2002-12-31 | CVE-2002-1837 | IDS | Unspecified vulnerability in IDS 0.8.1 The getAlbumToDisplay function in idsShared.pm for Image Display System (IDS) 0.81 allows remote attackers to determine the existence of arbitrary directories via ".." sequences in the album parameter, which generates different error messages depending on whether the directory exists or not. | 5.0 |
2002-12-31 | CVE-2002-1836 | Xerox | Unspecified vulnerability in Xerox Docutech 6110 and Docutech 6115 The default configuration of Xerox DocuTech 6110 and DocuTech 6115 exports certain NFS shares to the world with world writable permissions, which may allow remote attackers to modify sensitive files. | 5.0 |
2002-12-31 | CVE-2002-1832 | Scaramanga | Denial Of Service vulnerability in Scaramanga Firestorm IDS 0.4.0/0.4.1/0.4.2 Unknown vulnerability in the "ipopts decode" functionality in Firestorm IDS 0.4.0 through 0.4.2 allows remote attackers to cause a denial of service (crash) via certain IP options. | 5.0 |
2002-12-31 | CVE-2002-1831 | Microsoft | Unspecified vulnerability in Microsoft MSN Messenger Microsoft MSN Messenger Service 1.0 through 4.6 allows remote attackers to cause a denial of service (crash) via an invite request that contains hex-encoded spaces (%20) in the Invitation-Cookie field. | 5.0 |
2002-12-31 | CVE-2002-1830 | Openbb | Unspecified vulnerability in Openbb 1.0.0Rc1/1.0.0Rc2/1.0.0Rc3 Open Bulletin Board (OpenBB) 1.0.0 RC3 allows remote attackers to bypass authentication and access modifier options via a direct request to moderator.php with the action and ismod parameters. | 5.0 |
2002-12-31 | CVE-2002-1828 | Savant | Denial Of Service vulnerability in Savant Webserver 3.1 Savant Webserver 3.1 allows remote attackers to cause a denial of service (crash) via an HTTP GET request with a negative Content-Length value. | 5.0 |
2002-12-31 | CVE-2002-1824 | Microsoft | Unspecified vulnerability in Microsoft IE and Internet Explorer Microsoft Internet Explorer 6.0, when handling an expired CA-CERT in a webserver's certificate chain during a SSL/TLS handshake, does not prompt the user before searching for and finding a newer certificate, which may allow attackers to perform a man-in-the-middle attack. | 5.0 |
2002-12-31 | CVE-2002-1822 | IBM | Information Disclosure vulnerability in IBM Http Server 1.0 IBM HTTP Server 1.0 on AS/400 allows remote attackers to obtain the path to the web root directory and other sensitive information, which is leaked in an error mesage when a request is made for a non-existent Java Server Page (JSP). | 5.0 |
2002-12-31 | CVE-2002-1818 | EZ Systems | Information Disclosure vulnerability in EZ Systems Httpbench 1.1 ezhttpbench.php in eZ httpbench 1.1 allows remote attackers to read arbitrary files via a full pathname in the AnalyseSite parameter. | 5.0 |
2002-12-31 | CVE-2002-1815 | Aquonics Scripting | Directory Traversal vulnerability in Aquonics Scripting Aquonics File Manager 1.5 Directory traversal vulnerability in source.php and source.cgi in Aquonics File Manager 1.5 allows remote attackers to read arbitrary files via a .. | 5.0 |
2002-12-31 | CVE-2002-1811 | Belkin | Denial Of Service vulnerability in Belkin F5D6130 Wnap Ap14G8 Belkin F5D6130 Wireless Network Access Point running firmware AP14G8 allows remote attackers to cause a denial of service (connection loss) by sending several SNMP GetNextRequest requests. | 5.0 |
2002-12-31 | CVE-2002-1801 | Bizdesign | Unspecified vulnerability in Bizdesign Imagefolio ImageFolio 2.23 through 2.27 allows remote attackers to obtain sensitive information via a nonexistent image category, which leaks the web root in the resulting error message. | 5.0 |
2002-12-31 | CVE-2002-1793 | HP | Denial Of Service vulnerability in HP Virtualvault and Vvos HTTP Server mod_ssl module running on HP-UX 11.04 with Virtualvault OS (VVOS) 4.5 through 4.6 closes the connection when the Apache server times out during an SSL request, which may allow attackers to cause a denial of service. | 5.0 |
2002-12-31 | CVE-2002-1790 | Microsoft | Unspecified vulnerability in Microsoft products The SMTP service in Microsoft Internet Information Services (IIS) 4.0 and 5.0 allows remote attackers to bypass anti-relaying rules and send spam or spoofed messages via encapsulated SMTP addresses, a similar vulnerability to CVE-1999-0682. | 5.0 |
2002-12-31 | CVE-2002-1784 | HP | Denial Of Service vulnerability in Tru64 InetD Unknown vulnerability in inetd in HP Tru64 Unix 4.0f through 5.1a allows remote attackers to cause a denial of service via unknown attack vectors. | 5.0 |
2002-12-31 | CVE-2002-1783 | PHP | Unspecified vulnerability in PHP CRLF injection vulnerability in PHP 4.2.1 through 4.2.3, when allow_url_fopen is enabled, allows remote attackers to modify HTTP headers for outgoing requests by causing CRLF sequences to be injected into arguments that are passed to the (1) fopen or (2) file functions. | 5.0 |
2002-12-31 | CVE-2002-1780 | Alcatech Gmbh | Denial-Of-Service vulnerability in Alcatech Gmbh BPM Studio PRO 4.2 BPM Studio Pro 4.2 by ALCATech GmbH includes a webserver that allows a remote attacker to cause a denial of service (crash) by sending a URL request for a MS-DOS device such as con. | 5.0 |
2002-12-31 | CVE-2002-1771 | Matt Wright | Unspecified vulnerability in Matt Wright Formmail Matt Wright FormMail 1.9 and earlier allows remote attackers to send spam or anonymous e-mail by injecting a newline character followed by CC:, BCC:, or additional TO: fields in the email and realname CGI variables. | 5.0 |
2002-12-31 | CVE-2002-1770 | Qualcomm | Unspecified vulnerability in Qualcomm Eudora 5.1 Qualcomm Eudora 5.1 allows remote attackers to execute arbitrary code via an HTML e-mail message that uses a file:// URL in a t:video tag to reference an attached Windows Media Player file containing JavaScript code, which is launched and executed in the My Computer zone by Internet Explorer. | 5.0 |
2002-12-31 | CVE-2002-1768 | Cisco | Denial of Service vulnerability in Cisco Malformed HSRP Traffic Cisco IOS 11.1 through 12.2, when HSRP support is not enabled, allows remote attackers to cause a denial of service (CPU consumption) via randomly sized UDP packets to the Hot Standby Routing Protocol (HSRP) port 1985. | 5.0 |
2002-12-31 | CVE-2002-1765 | Ximian | Denial Of Service vulnerability in Ximian Evolution 1.0.3/1.0.4 Evolution 1.0.3 and 1.0.4 allows remote attackers to cause a denial of service (memory consumption and crash) via an email with a malformed MIME header. | 5.0 |
2002-12-31 | CVE-2002-1762 | Microsoft | Unspecified vulnerability in Microsoft Baseline Security Analyzer 1.0 Microsoft Baseline Security Analyzer (MBSA) 1.0 stores security scans in a known location C:\Documents and Settings\username\SecurityScans in plaintext, which could allow remote attackers to obtain sensitive information about the system via malicious active content such as ActiveX controls or Java. | 5.0 |
2002-12-31 | CVE-2002-1761 | Phprojekt | Directory Traversal vulnerability in PHProjekt Directory traversal vulnerability in PHProjekt 2.0 through 3.1 allows remote attackers to read arbitrary files via .. | 5.0 |
2002-12-31 | CVE-2002-1759 | Phprojekt | Unspecified vulnerability in PHProjekt The upload function in PHProjekt 2.0 through 3.1 does not properly verify certain variables related to uploaded data, which allows remote attackers to cause PHProjekt to process arbitrary files. | 5.0 |
2002-12-31 | CVE-2002-1758 | Phprojekt | Unspecified vulnerability in PHProjekt PHProjekt 2.0 through 3.1 allows remote attackers to view or modify data via requests to certain scripts that do not verify if the user is logged in. | 5.0 |
2002-12-31 | CVE-2002-1756 | ACD Systems | Buffer Overflow vulnerability in ACD Systems Acdsee 4.0 ACDSee 4.0 allows remote attackers to cause a denial of service (crash) via an .ais file with a long file description field, which is not properly handled when the file properties of the file are viewed. | 5.0 |
2002-12-31 | CVE-2002-1755 | Tinc | Remote Security vulnerability in Tinc 1.0Pre3/1.0Pre4 tinc 1.0pre3 and 1.0pre4 VPN does not authenticate forwarded packets, which allows remote attackers to inject data into user sessions without detection, and possibly control the data contents via cut-and-paste attacks on CBC. | 5.0 |
2002-12-31 | CVE-2002-1751 | Cgiscript NET | Remote Command Execution vulnerability in Cgiscript.Net Cslivesupport 1.0 csLiveSupport.cgi in CGIScript.net csLiveSupport allows remote attackers to execute arbitrary Perl code via the setup parameter, which is processed by the Perl eval function. | 5.0 |
2002-12-31 | CVE-2002-1747 | Maxim Krasnyansky | Remote Security vulnerability in Maxim Krasnyansky Vtun 2.5B1 Vtun 2.5b1 does not authenticate forwarded packets, which allows remote attackers to inject data into user sessions without detection, and possibly control the data contents via cut-and-paste attacks on ECB. | 5.0 |
2002-12-31 | CVE-2002-1746 | Maxim Krasnyansky | Remote Security vulnerability in Maxim Krasnyansky Vtun 2.5B1 Vtun 2.5b1 allows remote attackers to inject data into user sessions by sniffing and replaying packets. | 5.0 |
2002-12-31 | CVE-2002-1744 | Microsoft | Unspecified vulnerability in Microsoft Internet Information Services 5.0 Directory traversal vulnerability in CodeBrws.asp in Microsoft IIS 5.0 allows remote attackers to view source code and determine the existence of arbitrary files via a hex-encoded "%c0%ae%c0%ae" string, which is the Unicode representation for ".." (dot dot). | 5.0 |
2002-12-31 | CVE-2002-1743 | Mirabilis | Denial of Service vulnerability in Mirabilis ICQ 2002Abuild3722 AOL ICQ 2002a Build 3722 allows remote attackers to cause a denial of service (crash) via a malformed .hpf file. | 5.0 |
2002-12-31 | CVE-2002-1742 | Paul Kulchenko | Remote Arbitrary Command Execution vulnerability in SOAP::Lite 0.50/0.51/0.52 SOAP::Lite 0.50 through 0.52 allows remote attackers to load arbitrary Perl functions by suppling a non-existent function in a script using a SOAP::Lite module, which causes the AUTOLOAD subroutine to trigger. | 5.0 |
2002-12-31 | CVE-2002-1738 | ALT N | Unspecified vulnerability in Alt-N Mdaemon Alt-N Technologies MDaemon 5.0.5.0 and earlier creates a default MDaemon mail account with a password of MServer, which could allow remote attackers to send anonymous email. | 5.0 |
2002-12-31 | CVE-2002-1736 | Markus Triska | Remote Security vulnerability in CGINews Unknown vulnerability in CGINews before 1.06 allow remote attackers to read arbitrary files via "unfiltered user input." | 5.0 |
2002-12-31 | CVE-2002-1730 | Aspjar | HTML Injection vulnerability in Aspjar Guestbook 1.0 ASPjar Guestbook 1.00 allows remote attackers to delete arbitrary messages accessing the delete.asp administrative script with certain cookie values set to "true". | 5.0 |
2002-12-31 | CVE-2002-1728 | Asksam Systems | Cross-Site Scripting vulnerability in askSam Web Publisher 1.0/4.0 askSam Web Publisher 1.0 and 4.0 allows remote attackers to determine the full path to the web root directory via a request for a file that does not exist, which generates an error message that reveals the full path. | 5.0 |
2002-12-31 | CVE-2002-1725 | Onlinetools ORG | Cross-Site Scripting vulnerability in Onlinetools.Org PHPimageview 1.0 phpimageview.php in PHPImageView 1.0 allows remote attackers to obtain sensitive information via the pw=show option, which invokes the phpinfo function. | 5.0 |
2002-12-31 | CVE-2002-1723 | Powerboards | Remote Security vulnerability in Powerboards 2.2B Powerboards 2.2b allows remote attackers to view the full path to the backend database by sending a cookie containing a non-existent username to profiles.php, which displays the full path in the error message. | 5.0 |
2002-12-31 | CVE-2002-1719 | Bavo | Unspecified vulnerability in Bavo 0.3 Unknown vulnerability in Bavo 0.3 allows remote attackers to modify posted messages. | 5.0 |
2002-12-31 | CVE-2002-1718 | Microsoft | Information Exposure vulnerability in Microsoft Internet Information Services 5.1 Microsoft Internet Information Server (IIS) 5.1 may allow remote attackers to view the contents of a Frontpage Server Extension (FPSE) file, as claimed using an HTTP request for colegal.htm that contains .. | 5.0 |
2002-12-31 | CVE-2002-1717 | Microsoft | Information Exposure vulnerability in Microsoft Internet Information Services 5.1 Microsoft Internet Information Server (IIS) 5.1 allows remote attackers to view path information via a GET request to (1) /_vti_pvt/access.cnf, (2) /_vti_pvt/botinfs.cnf, (3) /_vti_pvt/bots.cnf, or (4) /_vti_pvt/linkinfo.cnf. | 5.0 |
2002-12-31 | CVE-2002-1714 | Microsoft | Unspecified vulnerability in Microsoft IE and Internet Explorer Microsoft Internet Explorer 5.0 through 6.0 allows remote attackers to cause a denial of service (crash) via an object of type "text/html" with the DATA field that identifies the HTML document that contains the object, which may cause infinite recursion. | 5.0 |
2002-12-31 | CVE-2002-1707 | Phpbb Group | Remote File Include vulnerability in PHPBB2 Install.PHP install.php in phpBB 2.0 through 2.0.1, when "allow_url_fopen" and "register_globals" variables are set to "on", allows remote attackers to execute arbitrary PHP code by modifying the phpbb_root_dir parameter to reference a URL on a remote web server that contains the code. | 5.0 |
2002-12-31 | CVE-2002-1705 | Microsoft | Unspecified vulnerability in Microsoft Internet Explorer 5.5/6.0 Microsoft Internet Explorer 5.5 through 6.0 allows remote attackers to cause a denial of service (crash) via a Cascading Style Sheet (CSS) with the p{cssText} element declared and a bold font weight. | 5.0 |
2002-12-31 | CVE-2002-1704 | Zeroboard | Unspecified vulnerability in Zeroboard 4.1Pl2 Zeroboard 4.1, when the "allow_url_fopen" and "register_globals" variables are enabled, allows remote attackers to execute arbitrary PHP code by modifying the _zb_path parameter to reference a URL on a remote web server that contains the code. | 5.0 |
2002-12-31 | CVE-2002-1698 | Microsoft | Denial Of Service vulnerability in Microsoft MSN Messenger Font Tag Buffer overflow in Microsoft MSN Messenger Service 1.0 through 4.6 allows remote attackers to cause a denial of service (crash) via a long FN (font) argument in the message header. | 5.0 |
2002-12-31 | CVE-2002-1695 | Microsoft Symantec | Norton Internet Security 2001 opens log files with FILE_SHARE_READ and FILE_SHARE_WRITE permissions, which could allow remote attackers to modify the log file contents while Norton Internet Security is running. | 5.0 |
2002-12-31 | CVE-2002-1694 | Microsoft | Unspecified vulnerability in Microsoft products Microsoft Internet Information Server (IIS) 4.0 opens log files with FILE_SHARE_READ and FILE_SHARE_WRITE permissions, which could allow remote attackers to modify the log file contents while IIS is running. | 5.0 |
2002-12-31 | CVE-2002-1688 | Microsoft | Unspecified vulnerability in Microsoft Internet Explorer 5.5/6.0 The browser history feature in Microsoft Internet Explorer 5.5 through 6.0 allows remote attackers to execute arbitrary script as other users and steal authentication information via cookies by injecting JavaScript into the URL, which is executed when the user hits the Back button. | 5.0 |
2002-12-31 | CVE-2002-1684 | Deerfield Working Resources INC | Directory Traversal vulnerability in Working Resources BadBlue Directory traversal vulnerability in (1) Deerfield D2Gfx 1.0.2 or (2) BadBlue Enterprise Edition 1.5.x and BadBlue Personal Edition 1.5.6 allows remote attackers to read arbitrary files via a ../ (dot dot slash) in the script used to read Microsoft Office documents. | 5.0 |
2002-12-31 | CVE-2002-1677 | Mrtg | Path Disclosure vulnerability in Mrtg Mrtgconfig 0.5.9 14all.cgi 1.1p15 in mrtgconfig allows remote attackers to determine the physical path to the web root directory via a request with an invalid cfg parameter, which generates an error message that reveals the path. | 5.0 |
2002-12-31 | CVE-2002-1671 | Microsoft | Unspecified vulnerability in Microsoft Internet Explorer Microsoft Internet Explorer 5.0, 5.01, and 5.5 allows remote attackers to monitor the contents of the clipboard via the getData method of the clipboardData object. | 5.0 |
2002-12-31 | CVE-2002-1666 | Oracle | Unspecified vulnerability in Oracle E-Business Suite Unknown vulnerability in Oracle E-Business Suite 11i.1 through 11i.6 allows remote attackers to execute unauthorized PL/SQL procedures by modifying the Oracle Applications URL. | 5.0 |
2002-12-31 | CVE-2002-1663 | Monkey Project | Improper Input Validation vulnerability in Monkey-Project Monkey 0.1.1 The Post_Method function in method.c for Monkey HTTP Daemon before 0.5.1 allows remote attackers to cause a denial of service (crash) via a POST request with an invalid or missing Content-Length header value. | 5.0 |
2002-12-31 | CVE-2002-1661 | Leafnode | Denial Of Service vulnerability in Leafnode Resource Exhaustion The leafnode server in leafnode 1.9.20 to 1.9.29 allows remote attackers to cause a denial of service (infinite loop) when leafnode requests a cross-posted article to one group whose name is a prefix of another group. | 5.0 |
2002-12-31 | CVE-2002-1655 | Iplanet Netscape | The Web Publishing feature in Netscape Enterprise Server 3.x and iPlanet Web Server 4.x allows remote attackers to cause a denial of service (crash) via a wp-html-rend request. | 5.0 |
2002-12-31 | CVE-2002-1653 | Farm9 | Unspecified vulnerability in Farm9 Cryptcat 1.10 Farm9 Cryptcat, when started in server mode with the -e option, does not enable encryption, which allows clients to communicate without encryption despite intended configuration, and may allow remote attackers to sniff sensitive information. | 5.0 |
2002-12-31 | CVE-2002-1647 | Slashcode COM | Remote Security vulnerability in Slash The quick login feature in Slash Slashcode does not redirect the user to an alternate URL when the wrong password is provided, which makes it easier for remote web sites to guess the proper passwords by reading the username and password from the Referrer URL. | 5.0 |
2002-12-31 | CVE-2002-1635 | Oracle | Unspecified vulnerability in Oracle Application Server The Apache configuration file (httpd.conf) in Oracle 9i Application Server (9iAS) uses a Location alias for /perl directory instead of a ScriptAlias, which allows remote attackers to read the source code of arbitrary CGI files via a URL containing the /perl directory instead of /cgi-bin. | 5.0 |
2002-12-31 | CVE-2002-1634 | Novell | Information Disclosure vulnerability in Netscape Enterprise Web Server for Netware 5.0/5.1 Novell NetWare 5.1 installs sample applications that allow remote attackers to obtain sensitive information via (1) ndsobj.nlm, (2) allfield.jse, (3) websinfo.bas, (4) ndslogin.pl, (5) volscgi.pl, (6) lancgi.pl, (7) test.jse, or (8) env.pl. | 5.0 |
2002-12-31 | CVE-2002-1628 | Mike Spice | Unspecified vulnerability in Mike Spice Mikes Vote CGI 1.0/1.1/1.2 Directory traversal vulnerability in vote.cgi for Mike Spice Mike's Vote CGI before 1.3 allows remote attackers to write arbitrary files via .. | 5.0 |
2002-12-31 | CVE-2002-1627 | Mike Spice | Unspecified vulnerability in Mike Spice Quiz ME 0.5 Directory traversal vulnerability in quiz.cgi for Mike Spice Quiz Me! before 0.6 allows remote attackers to write arbitrary files via .. | 5.0 |
2002-12-31 | CVE-2002-1626 | Mike Spice | Unspecified vulnerability in Mike Spice MY Calendar Directory traversal vulnerability in Mike Spice My Calendar before 1.5 allows remote attackers to write arbitrary files via .. | 5.0 |
2002-12-31 | CVE-2002-1625 | Macromedia | Unspecified vulnerability in Macromedia Flash Player 6.0 Macromedia Flash Player 6 does not terminate connections when the user leaves the web page, which allows remote attackers to cause a denial of service (bandwidth, resource, and CPU consumption) via the (1) loadMovie or (2) loadSound commands, which continue to execute until the browser is closed. | 5.0 |
2002-12-31 | CVE-2002-1624 | IBM | Buffer Overflow vulnerability in Lotus Domino HTTP Authentication Logging Buffer overflow in Lotus Domino web server before R5.0.10, when logging to DOMLOG.NSF, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP Authenticate header containing certain non-ASCII characters. | 5.0 |
2002-12-31 | CVE-2002-1623 | Checkpoint | Denial-Of-Service vulnerability in Vpn-1 Firewall-1 The design of the Internet Key Exchange (IKE) protocol, when using Aggressive Mode for shared secret authentication, does not encrypt initiator or responder identities during negotiation, which may allow remote attackers to determine valid usernames by (1) monitoring responses before the password is supplied or (2) sniffing, as originally reported for FireWall-1 SecuRemote. | 5.0 |
2002-12-31 | CVE-2002-2405 | Checkpoint | Permissions, Privileges, and Access Controls vulnerability in Checkpoint Firewall-1 4.1/Ng Check Point FireWall-1 4.1 and Next Generation (NG), with UserAuth configured to proxy HTTP traffic only, allows remote attackers to pass unauthorized HTTPS, FTP and possibly other traffic through the firewall. | 4.9 |
2002-12-31 | CVE-2002-2327 | SUN | Permissions, Privileges, and Access Controls vulnerability in SUN Sunos 5.8 Unspecified vulnerability in the environmental monitoring subsystem in Solaris 8 running on Sun Fire 280R, V480 and V880 allows local users to cause a denial of service by setting volatile properties. | 4.9 |
2002-12-31 | CVE-2002-2203 | SUN | Unspecified vulnerability in SUN Solaris and Sunos Unknown vulnerability in the System Serial Console terminal in Solaris 2.5.1, 2.6, and 7 allows local users to monitor keystrokes and possibly steal sensitive information. | 4.9 |
2002-12-31 | CVE-2002-2188 | Openbsd | Denial of Service vulnerability in OpenBSD getrlimit(2) OpenBSD before 3.2 allows local users to cause a denial of service (kernel crash) via a call to getrlimit(2) with invalid arguments, possibly due to an integer signedness error. | 4.9 |
2002-12-31 | CVE-2002-2185 | SGI Debian Mandrakesoft Microsoft Redhat Suse | Denial Of Service vulnerability in Multiple Vendor Spoofed IGMP Report The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the router and effectively disconnect the group from the network. | 4.9 |
2003-01-02 | CVE-2002-1389 | Typespeed | Local Buffer Overflow vulnerability in Typespeed 0.4/0.4.1 Buffer overflow in typespeed 0.4.2 and earlier allows local users to gain privileges via long input. | 4.6 |
2003-01-02 | CVE-2002-1387 | Ehud Gavron | Unspecified vulnerability in Ehud Gavron Tracesroute 6.0/6.1/6.1.1 The spray mode in traceroute-nanog (aka traceroute-ng) may allow local users to overwrite arbitrary memory locations via an array index overflow using the nprobes (number of probes) argument. | 4.6 |
2003-01-02 | CVE-2002-1386 | Ehud Gavron | Buffer Overflow vulnerability in Ehud Gavron Tracesroute 6.0/6.1/6.1.1 Buffer overflow in traceroute-nanog (aka traceroute-ng) may allow local users to execute arbitrary code via a long hostname argument. | 4.6 |
2002-12-31 | CVE-2002-2293 | Twofold Photos | Unspecified vulnerability in Twofold Photos Webshots Desktop Webshots Desktop screensaver allows local users to bypass the password on the screensaver by pressing CTRL-ALT-DELETE and (1) hitting the cancel button or (2) killing the screensaver from the task manager. | 4.6 |
2002-12-31 | CVE-2002-2199 | Freebsd | Unspecified vulnerability in Freebsd Advanced Intrusion Detection Environment The default aide.conf file in Advanced Intrusion Detection Environment (AIDE) before 0.7_1 on FreeBSD before 2002-08-28 does not properly check subdirectories, which could allow local users to bypass detection. | 4.6 |
2002-12-31 | CVE-2002-2162 | Cerulean Studios | Unspecified vulnerability in Cerulean Studios Trillian 0.6351/0.725/0.73 Cerulean Studios Trillian 0.73 and earlier use weak encrypttion (XOR) for storing user passwords in .ini files in the Trillian directory, which allows local users to gain access to other user accounts. | 4.6 |
2002-12-31 | CVE-2002-2128 | W Agora | Unspecified vulnerability in W-Agora 4.1.5 editform.php in w-Agora 4.1.5 allows local users to execute arbitrary PHP code via .. | 4.6 |
2002-12-31 | CVE-2002-2120 | QNX | Buffer Overflow vulnerability in QNX Rtos 4.25 Multiple buffer overflows in QNX RTOS 4.25 may allow attackers to execute arbitrary code via long filename arguments to (1) Watcom or (2) int10. | 4.6 |
2002-12-31 | CVE-2002-2089 | SUN | Buffer Overflow vulnerability in SUN Solaris 9.0 Buffer overflow in rcp in Solaris 9.0 allows local users to execute arbitrary code via a long command line argument. | 4.6 |
2002-12-31 | CVE-2002-2087 | Borland Software | Buffer Overflow vulnerability in Borland Software Interbase 6.0 Buffer overflow in Borland InterBase 6.0 allows local users to execute arbitrary code via a long INTERBASE environment variable when calling (1) gds_drop, (2) gds_lock_mgr, or (3) gds_inet_server. | 4.6 |
2002-12-31 | CVE-2002-2059 | Intel | Unspecified vulnerability in Intel products BIOS D845BG, D845HV, D845PT and D845WN on Intel motherboards does not properly restrict access to configuration information when BIOS passwords are enabled, which could allow local users to change the default boot device via the F8 key. | 4.6 |
2002-12-31 | CVE-2002-1972 | Sebastian Dehne | Local Security vulnerability in Sebastian Dehne PP Powerswitch 0.1 Unknown vulnerability in Parallel port powerSwitch (aka pp_powerSwitch) 0.1 does not properly enforce access controls, which allows local users to access arbitrary ports. | 4.6 |
2002-12-31 | CVE-2002-1875 | Mcafee | Unspecified vulnerability in Mcafee Entercept Agent 2.5 Entercept Agent 2.5 agent for Windows, released before May 21, 2002, allows local administrative users to obtain the entercept agent password, which could allow the administrators to log on as the entercept_agent account and conceal their identity. | 4.6 |
2002-12-31 | CVE-2002-1863 | Iomega | Local Security vulnerability in Iomega Network Attached Storage A300U Iomega Network Attached Storage (NAS) A300U, and possibly other models, does not allow the FTP service to be disabled, which allows local users to access home directories via FTP even when access to all shared directories have been disabled. | 4.6 |
2002-12-31 | CVE-2002-1826 | Grsecurity | Unspecified vulnerability in Grsecurity Kernel Patch 1.9.4 grsecurity 1.9.4 for Linux kernel 2.4.18 allows local users to bypass read-only permissions by using mmap to directly map /dev/mem or /dev/kmem to kernel memory. | 4.6 |
2002-12-31 | CVE-2002-1821 | Ultimate PHP Board | Unspecified vulnerability in Ultimate PHP Board Ultimate PHP Board 1.0/1.0Beta Ultimate PHP Board (UPB) 1.0 and 1.0b allows remote authenticated users to gain privileges and perform unauthorized actions via direct requests to (1) admin_members.php, (2) admin_config.php, (3) admin_cat.php, or (4) admin_forum.php. | 4.6 |
2002-12-31 | CVE-2002-1814 | Gnome Mandrakesoft Redhat Slackware | Buffer Overflow vulnerability in Bonobo EFSTool Commandline Argument Buffer overflow in efstools in Bonobo, when installed setuid, allows local users to execute arbitrary code via long command line arguments. | 4.6 |
2002-12-31 | CVE-2002-1797 | HP | Unspecified vulnerability in HP Chaivm ChaiVM for HP color LaserJet 4500 and 4550 or HP LaserJet 4100 and 8150 does not properly enforce access control restrictions, which could allow local users to add, delete, or modify any services hosted by the ChaiServer. | 4.6 |
2002-12-31 | CVE-2002-1787 | SGI | Buffer Overflow vulnerability in IRIX uux Buffer overflow in uux in eoe.sw.uucp package of SGI IRIX 6.5 through 6.5.17 allows local users to execute arbitrary code via unknown attack vectors. | 4.6 |
2002-12-31 | CVE-2002-1772 | Novell | Unspecified vulnerability in Novell Netware 5.0/5.1 Novell Netware 5.0 through 5.1 may allow local users to gain "Domain Admin" rights by logging into a Novell Directory Services (NDS) account, and executing "net use" on an NDS_ADM account that is not in the NT domain but has domain access rights, which allows the user to enter a null password. | 4.6 |
2002-12-31 | CVE-2002-1766 | Netscape | Buffer Overflow vulnerability in Netscape Communicator 4.77 Buffer overflow in Composer in Netscape 4.77 allows local users to overwrite process memory and execute arbitrary code via a font tag with a long face attribute. | 4.6 |
2002-12-31 | CVE-2002-1763 | SUN | Authentication Bypass vulnerability in SUN Sunos 5.8 The dtscreen Sun Solaris 8 CDE screensaver crashes when the "Shift" and "Return" keys are pressed repeatedly and quickly, which allows local users to access the current session. | 4.6 |
2002-12-31 | CVE-2002-1722 | Logitech | Unspecified vulnerability in Logitech products Logitech iTouch keyboards allows attackers with physical access to the system to bypass the screen locking function and execute user-defined commands that have been assigned to a button. | 4.6 |
2002-12-31 | CVE-2002-1670 | Microsoft | Unspecified vulnerability in Microsoft Internet Explorer and Windows XP Microsoft Windows XP Professional upgrade edition overwrites previously installed patches for Internet Explorer 6.0, leaving Internet Explorer unpatched. | 4.6 |
2002-12-31 | CVE-2002-1658 | Apache | Buffer Overflow vulnerability in Multiple Apache HTDigest Buffer overflow in htdigest in Apache 1.3.26 and 1.3.27 may allow attackers to execute arbitrary code via a long user argument. | 4.6 |
2002-12-31 | CVE-2002-1633 | QNX | Local Buffer Overflow vulnerability in QNX Rtos 4.25 Multiple buffer overflows in QNX 4.25 may allow local users to execute arbitrary code via long command line arguments to (1) sample, (2) ex, (3) du, (4) find, (5) lex, (6) mkdir, (7) rm, (8) serserv, (9) tcpserv, (10) termdef, (11) time, (12) unzip, (13) use, (14) wcc, (15) wcc386, (16) wd, (17) wdisasm, (18) which, (19) wlib, (20) wlink, (21) wpp, (22) wpp386, (23) wprof, (24) write, or (25) wstrip. | 4.6 |
2002-12-31 | CVE-2002-2426 | Citrix | Cross-Site Request Forgery (CSRF) vulnerability in Citrix products Cross-site request forgery (CSRF) vulnerability in Citrix Presentation Server 4.0 and 4.5, MetaFrame Presentation Server 3.0, and Access Essentials 1.0 through 2.0 allows remote attackers to execute arbitrary published applications, and possibly other programs, as authenticated users via the InitialProgram key in an ICA connection. | 4.3 |
2002-12-31 | CVE-2002-2424 | Ekilat LLC | Cross-Site Scripting vulnerability in Ekilat LLC PHP(Reactor) 1.27Pl1 Cross-site scripting (XSS) vulnerability in PHP(Reactor) 1.2.7 pl1 allows remote attackers to inject arbitrary web script or HTML via Javascript in the style attribute of an HTML tag. | 4.3 |
2002-12-31 | CVE-2002-2422 | Compaq | Cross-Site Scripting vulnerability in Compaq Insight Management Agent Cross-site scripting (XSS) vulnerability in Compaq Insight Management Agents 2.0, 2.1, 3.6.0, 4.2 and 4.3.7 allows remote attackers to inject arbitrary web script or HTML via a URL, which inserts the script into the resulting error message. | 4.3 |
2002-12-31 | CVE-2002-2418 | Acfp Project | Cross-Site Scripting vulnerability in Acfp Project Acfreeproxy 1.33Beta7 Cross-site scripting (XSS) vulnerability in acFreeProxy (aka acFP) 1.33 beta 7 allows remote attackers to inject arbitrary web script or HTML via the URL, which is inserted into an error page. | 4.3 |
2002-12-31 | CVE-2002-2414 | Opera Software Squid | Denial of Service vulnerability in Opera HTTPS Proxy Opera 6.0.3, when using Squid 2.4 for HTTPS proxying, does not properly handle when accepting a non-global certificate authority (CA) certificate from a site and establishing a subsequent HTTPS connection, which allows remote attackers to cause a denial of service (crash). | 4.3 |
2002-12-31 | CVE-2002-2386 | Xoops | Cross-Site Scripting vulnerability in Xoops 1.0Rc3 Cross-site scripting (XSS) vulnerability in the Quizz module for XOOPS 1.0, when allowing on-line question development, allows remote attackers to inject arbitrary web script or HTML via a javascript: URL in the SRC attribute of an IMG tag. | 4.3 |
2002-12-31 | CVE-2002-2378 | Nakata | Cross-Site Scripting vulnerability in Nakata AN Httpd 1.41D Cross-site scripting (XSS) vulnerability in AN HTTP 1.41d allows remote attackers to inject arbitrary web script or HTML via a colon (:) in the query string, which is inserted into the resulting error page. | 4.3 |
2002-12-31 | CVE-2002-2377 | Sephiroth32 | Cross-Site Scripting vulnerability in Sephiroth32 ZAP Book 1.0.3 Cross-site scripting (XSS) vulnerability in addentry.cgi in ZAP 1.0.3 allows remote attackers to inject arbitrary SSi directives, web script, and HTML via the entry field. | 4.3 |
2002-12-31 | CVE-2002-2376 | Leung | Cross-Site Scripting vulnerability in Leung E-Guest 1.1 Cross-site scripting (XSS) vulnerability in E-Guest_sign.pl in E-Guest 1.1 allows remote attackers to inject arbitrary SSI directives, web script, and HTML via the (1) full name, (2) email, (3) homepage, and (4) location parameters. | 4.3 |
2002-12-31 | CVE-2002-2364 | Sourceforge | Cross-Site Scripting vulnerability in Sourceforge PHP Ticket Cross-site scripting (XSS) vulnerability in PHP Ticket 0.5 and earlier allows remote attackers to inject arbitrary web script or HTML via a help ticket. | 4.3 |
2002-12-31 | CVE-2002-2362 | Sourceforge | Cross-Site Scripting vulnerability in Sourceforge Mymarket 1.71 Cross-site scripting (XSS) vulnerability in form_header.php in MyMarket 1.71 allows remote attackers to inject arbitrary web script or HTML via the noticemsg parameter. | 4.3 |
2002-12-31 | CVE-2002-2359 | Mozilla | Cross-Site Scripting vulnerability in Mozilla 1.0/1.1 Cross-site scripting (XSS) vulnerability in the FTP view feature in Mozilla 1.0 allows remote attackers to inject arbitrary web script or HTML via the title tag of an ftp URL. | 4.3 |
2002-12-31 | CVE-2002-2358 | Opera Software | Cross-Site Scripting vulnerability in Opera Software Opera web Browser Cross-site scripting (XSS) vulnerability in the FTP view feature in Opera 6.0 and 6.01 through 6.04 allows remote attackers to inject arbitrary web script or HTML via the title tag of an FTP URL. | 4.3 |
2002-12-31 | CVE-2002-2350 | Phpoutsourcing | Cross-Site Scripting vulnerability in PHPoutsourcing Zorum 2.4 Cross-site scripting (XSS) vulnerability in z_user_show.php in dbtreelistproperty_method.php in Zorum 2.4 allows remote attackers to inject arbitrary web script or HTML via the class parameter. | 4.3 |
2002-12-31 | CVE-2002-2348 | Authoria | Cross-Site Scripting vulnerability in Authoria Authoriahrsuite Cross-site scripting (XSS) vulnerability in athcgi.exe in Authoria HR allows remote attackers to inject arbitrary web script or HTML via the command parameter. | 4.3 |
2002-12-31 | CVE-2002-2347 | Oracle | Cross-Site Scripting vulnerability in Oracle Application Server Cross-site scripting (XSS) vulnerability in Oracle Java Server Page (OJSP) demo files (1) hellouser.jsp, (2) welcomeuser.jsp and (3) usebean.jsp in Oracle 9i Application Server 9.0.2, 1.0.2.2, 1.0.2.1s and 1.0.2 allows remote attackers to inject arbitrary web script or HTML via the text entry field. | 4.3 |
2002-12-31 | CVE-2002-2343 | Nocc | Cross-Site Scripting vulnerability in Nocc Cross-site scripting (XSS) vulnerability in NOCC 0.9 through 0.9.5 allows remote attackers to inject arbitrary web script or HTML via email messages. | 4.3 |
2002-12-31 | CVE-2002-2341 | Sonicwall | Cross-Site Scripting vulnerability in Sonicwall Soho3 6.3.0.0 Cross-site scripting (XSS) vulnerability in content blocking in SonicWALL SOHO3 6.3.0.0 allows remote attackers to inject arbitrary web script or HTML via a blocked URL. | 4.3 |
2002-12-31 | CVE-2002-2340 | Phorum | Cross-Site Scripting vulnerability in Phorum 3.3.2A Cross-site scripting (XSS) vulnerability in read.php in Phorum 3.3.2a allows remote attackers to inject arbitrary web script or HTML via (1) the t parameter or (2) the body of an email response. | 4.3 |
2002-12-31 | CVE-2002-2339 | Script Shed | Cross-Site Scripting vulnerability in Script Shed Ssgbook 1.0 Cross-site scripting (XSS) vulnerability in configure.asp in Script-Shed GuestBook 1.0 allows remote attackers to inject arbitrary web script or HTML via a javascript: URL in (1) image, (2) img, (3) image=right, (4) img=right, (5) image=left, and (6) img=left tags. | 4.3 |
2002-12-31 | CVE-2002-2336 | Symantec | Configuration vulnerability in Symantec Norton Personal Firewall 2002 Norton Personal Firewall 2002 4.0, when configured to automatically block attacks, allows remote attackers to block IP addresses and cause a denial of service via spoofed packets. | 4.3 |
2002-12-31 | CVE-2002-2321 | Phplinkat | Cross-Site Scripting vulnerability in PHPlinkat 0.1.0 Cross-site scripting (XSS) vulnerability in (1) showcat.php and (2) addyoursite.php in phpLinkat 0.1.0 allows remote attackers to inject arbitrary web script or HTML via the catid parameter. | 4.3 |
2002-12-31 | CVE-2002-2318 | Blueface | Cross-Site Scripting vulnerability in Blueface Falcon web Server Cross-site scripting (XSS) vulnerability in Falcon web server 2.0.0.1009 through 2.0.0.1021 allows remote attackers to inject arbitrary web script or HTML via the URI, which is inserted into 301 error messages and executed by 404 error messages. | 4.3 |
2002-12-31 | CVE-2002-2296 | Yabb | Cross-Site Scripting vulnerability in Yabb 1Goldsp1 Cross-site scripting (XSS) vulnerability in YaBB.pl in Yet Another Bulletin Board (YaBB) 1 Gold SP 1 allows remote attackers to inject arbitrary web script or HTML via the num parameter. | 4.3 |
2002-12-31 | CVE-2002-2285 | Broadcom | Configuration vulnerability in Broadcom Inoculateit 6.0 eTrust InoculateIT 6.0 with the "Incremental Scan" option enabled may certify that a file is free of viruses before the file has been completely downloaded, which allows remote attackers to bypass virus detection. | 4.3 |
2002-12-31 | CVE-2002-2278 | Portail WEB PHP | Cross-Site Scripting vulnerability in Portail web PHP Portail web PHP 0.99 Cross-site scripting (XSS) vulnerability in mod_search/index.php in PortailPHP 0.99 allows remote attackers to inject arbitrary web script or HTML via the (1) $App_Theme, (2) $Rub_Search, (3) $Rub_News, (4) $Rub_File, (5) $Rub_Liens, or (6) $Rub_Faq variables. | 4.3 |
2002-12-31 | CVE-2002-2273 | Webster | Cross-Site Scripting vulnerability in Webster Http Server Cross-site scripting (XSS) vulnerability in Webster HTTP Server allows remote attackers to inject arbitrary web script or HTML via the URL. | 4.3 |
2002-12-31 | CVE-2002-2260 | Mozilla | Cross-Site Scripting vulnerability in Mozilla Bugzilla Cross-site scripting (XSS) vulnerability in the quips feature in Mozilla Bugzilla 2.10 through 2.17 allows remote attackers to inject arbitrary web script or HTML via the "show all quips" page. | 4.3 |
2002-12-31 | CVE-2002-2255 | Phpbb | Cross-Site Scripting vulnerability in PHPbb 2.0.3 Cross-site scripting (XSS) vulnerability in search.php in phpBB 2.0.3 and possibly earlier versions allows remote attackers to inject arbitrary web script or HTML via the search_username parameter in searchuser mode. | 4.3 |
2002-12-31 | CVE-2002-2246 | Deerfield | Cross-Site Scripting vulnerability in Deerfield Visnetic Website Cross-site scripting (XSS) vulnerability in VisNetic Website before 3.5.15 allows remote attackers to inject arbitrary web script or HTML via the HTTP referer header (HTTP_REFERER) to a non-existent page, which is injected into the resulting 404 error page. | 4.3 |
2002-12-31 | CVE-2002-2234 | Netscreen | Configuration vulnerability in Netscreen Screenos NetScreen ScreenOS before 4.0.1 allows remote attackers to bypass the Malicious-URL blocking feature by splitting the URL into fragmented IP requests. | 4.3 |
2002-12-31 | CVE-2002-2231 | Ikonboard | Cross-Site Scripting vulnerability in Ikonboard 3.1.1 Cross-site scripting (XSS) vulnerability in Ikonboard 3.1.1 allows remote attackers to inject arbitrary web script or HTML via (1) a javascript: URL in a photo URL or (2) an X-Forwarded-For: header. | 4.3 |
2002-12-31 | CVE-2002-2230 | Ikonboard | Cross-Site Scripting vulnerability in Ikonboard 3.1.1 Cross-site scripting (XSS) vulnerability in Ikonboard 3.1.1 allows remote attackers to inject arbitrary web script or HTML via a private message with a javascript: URL in the IMG tag, in which the URL ends in a ".gif" or ".jpg" string, a variant of CVE-2002-0328. | 4.3 |
2002-12-31 | CVE-2002-2193 | Mojo Mail | Cross-Site Scripting vulnerability in Mojo Mail Mojo Mail 2.7 Cross-site scripting (XSS) vulnerability in mojo.cgi for Mojo Mail 2.7 allows remote attackers to inject arbitrary web script via the email parameter. | 4.3 |
2002-12-31 | CVE-2002-2192 | Perception | Cross-Site Scripting vulnerability in Perception Liteserve 2.0.1 Cross-site scripting (XSS) vulnerability in Perception LiteServe 2.0.1 allows remote attackers to execute arbitrary web script via (1) a Host: header when DNS wildcards are supported or (2) the query string in a "dir" request to indexed folders. | 4.3 |
2002-12-31 | CVE-2002-2178 | Phpwebsite | Cross-Site Scripting vulnerability in PHPwebsite 0.8.3 Cross-site scripting (XSS) vulnerability in article.php module for phpWebSite 0.8.3 allows remote attackers to execute arbitrary Javascript script via the sid parameter, as demonstrated using an IMG tag. | 4.3 |
2002-12-31 | CVE-2002-2171 | Andrey Cherezov | Cross-Site Scripting vulnerability in Andrey Cherezov Acweb 1.14/1.8 Cross-site scripting (XSS) vulnerability in acWEB 1.8 and 1.14 allows remote attackers to insert arbitrary HTML and web script via a URL, possibly via a "%db" request in a URL. | 4.3 |
2002-12-31 | CVE-2002-2166 | E Zone Media INC | Cross-Site Scripting vulnerability in E-Zone Media Inc. Fusetalk 2.0/3.0 Cross-site scripting (XSS) vulnerability in FuseTalk 2.0 and 3.0 allows remote attackers to insert arbitrary HTML and web script. | 4.3 |
2002-12-31 | CVE-2002-2129 | W Agora | Cross-Site Scripting vulnerability in W-Agora 4.1.5 Cross-site scripting vulnerability (XSS) in editform.php for w-Agora 4.1.5 allows remote attackers to execute arbitrary web script via an arbitrary form field name containing the script, which is echoed back to the user when displaying the form. | 4.3 |
2002-12-31 | CVE-2002-2115 | HNS | Cross-Site Scripting vulnerability in HNS and Hns-Lite Cross-site scripting (XSS) vulnerability in Hyper NIKKI System (HNS) Lite before 0.9 and HNS before 2.10-pl2 allows remote attackers to inject arbitrary web script or HTML. | 4.3 |
2002-12-31 | CVE-2002-2107 | Veridis | Cross-Site Scripting vulnerability in Veridis Openkeyserver 1.2 Cross-site scripting (XSS) vulnerability in the lookup script in Veridis OpenKeyServer (OKS) 1.2 allows remote attackers to inject arbitrary web script or HTML via the search parameter. | 4.3 |
2002-12-31 | CVE-2002-2086 | Squirrelmail | Unspecified vulnerability in Squirrelmail Multiple cross-site scripting (XSS) vulnerabilities in magicHTML of SquirrelMail before 1.2.6 allow remote attackers to inject arbitrary web script or HTML via (1) "<<script" in unspecified input fields or (2) a javascript: URL in the src attribute of an IMG tag. | 4.3 |
2002-12-31 | CVE-2002-2073 | Microsoft | Cross-Site Scripting vulnerability in Microsoft Site Server 3.0 Cross-site scripting (XSS) vulnerability in the default ASP pages on Microsoft Site Server 3.0 on Windows NT 4.0 allows remote attackers to inject arbitrary web script or HTML via the (1) ctr parameter in Default.asp and (2) the query string to formslogin.asp. | 4.3 |
2002-12-31 | CVE-2002-2062 | Microsoft | Unspecified vulnerability in Microsoft Internet Explorer 5.5/6.0 Cross-site scripting (XSS) vulnerability in ftp.htt in Internet Explorer 5.5 and 6.0, when running on Windows 2000 with "Enable folder view for FTP sites" and "Enable Web content in folders" selected, allows remote attackers to inject arbitrary web script or HTML via the hostname portion of an FTP URL. | 4.3 |
2002-12-31 | CVE-2002-2056 | Teekai | Cross-Site Scripting vulnerability in Teekai Forum 1.2 Cross-site scripting (XSS) vulnerability in TeeKai Forum 1.2 allows remote attackers to inject arbitrary web script or HTML via the valid_username_online cookie. | 4.3 |
2002-12-31 | CVE-2002-2055 | Teekai | Cross-Site Scripting vulnerability in Teekai Tracking Online 1.0 Cross-site scripting (XSS) vulnerability in userlog.php in TeeKai Tracking Online 1.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter. | 4.3 |
2002-12-31 | CVE-2002-2044 | Xqus | Cross-Site Scripting vulnerability in X-Stat 2.2/2.3 Cross-site scripting (XSS) vulnerability in x_stat_admin.php in x-stat 2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the phpinfo action. | 4.3 |
2002-12-31 | CVE-2002-2021 | Woltlab | Unspecified vulnerability in Woltlab Burning Board 1.1.1 Cross-site scripting (XSS) vulnerability in WoltLab Burning Board (wbboard) 1.1.1 allows remote attackers to inject arbitrary web script or HTML via the message parameter. | 4.3 |
2002-12-31 | CVE-2002-2011 | JON Howell | Cross-Site Scripting vulnerability in Faq-O-Matic 2.711/2.712 Cross-site scripting (XSS) vulnerability in the fom CGI program (fom.cgi) in Faq-O-Matic 2.711 and 2.712 allows remote attackers to inject arbitrary web script or HTML via the file parameter. | 4.3 |
2002-12-31 | CVE-2002-2010 | Htdig | Cross-Site Scripting vulnerability in ht://Dig htsearch Cross-site scripting (XSS) vulnerability in htsearch.cgi in htdig (ht://Dig) 3.1.5, 3.1.6, and 3.2 allows remote attackers to inject arbitrary web script or HTML via the words parameter. | 4.3 |
2002-12-31 | CVE-2002-1995 | Lebios | Cross-Site Scripting vulnerability in Lebios PHPtonuke.PHP 1.0 Cross-site scripting (XSS) vulnerability in phptonuke.php for PHP-Nuke allows remote attackers to inject arbitrary web script or HTML via the filnavn parameter. | 4.3 |
2002-12-31 | CVE-2002-1965 | Imatix | Cross-Site Scripting vulnerability in Imatix Xitami 2.5B4/2.5B5 Cross-site scripting (XSS) vulnerability in Errors.gsl in Imatix Xitami 2.5b4 and 2.5b5 allows remote attackers to inject arbitrary web script or HTML via the (1) Javascript events, as demonstrated via an onerror event in an IMG SRC tag or (2) User-Agent field in an HTTP GET request. | 4.3 |
2002-12-31 | CVE-2002-1960 | Cybozu | Cross-Site Scripting vulnerability in Cybozu Share360 1.1 Cross-site scripting (XSS) vulnerability in Cybozu Share360 1.1 allows remote attackers to inject arbitrary web script or HTML via an HTML link. | 4.3 |
2002-12-31 | CVE-2002-1958 | Kmmail | Cross-Site Scripting vulnerability in Kmmail 1.0/1.0A/1.0B Cross-site scripting (XSS) vulnerability in kmMail 1.0, 1.0a, and 1.0b allows remote attackers to inject arbitrary web script or HTML via (1) javascript in onmouseover or other attributes in "safe" HTML tags such as the "b" tag, or (2) the Subject field. | 4.3 |
2002-12-31 | CVE-2002-1954 | PHP | Cross-Site Scripting vulnerability in PHP 4.2.3 Cross-site scripting (XSS) vulnerability in the phpinfo function in PHP 4.2.3 allows remote attackers to inject arbitrary web script or HTML via the query string argument, as demonstrated using soinfo.php. | 4.3 |
2002-12-31 | CVE-2002-1950 | Phprank | Unspecified vulnerability in PHPrank 1.8 Cross-site scripting (XSS) vulnerability in phpRank 1.8 allows remote attackers to inject arbitrary web script or HTML via the (1) the email parameter of add.php or (2) the banner URL (banurl parameter) in the main list. | 4.3 |
2002-12-31 | CVE-2002-1931 | PHP Arena | Cross-Site Scripting vulnerability in PHP Arena Pafiledb 1.1.3/2.1.1 Cross-site scripting (XSS) vulnerability in PHP Arena paFileDB 1.1.3 and 2.1.1 allows remote attackers to inject arbitrary web script or HTML via Javascript in the search string. | 4.3 |
2002-12-31 | CVE-2002-1929 | PHP Arena | Cross-Site Scripting vulnerability in PHP Arena Pafiledb 1.1.3/2.1.1/3.0 Cross-site scripting (XSS) vulnerability in pafiledb.php in PHP Arena paFileDB 1.1.3 through 3.0 allows remote attackers to inject arbitrary web script or HTML via the query string in the (1) rate, (2) email, or (3) download actions. | 4.3 |
2002-12-31 | CVE-2002-1922 | Jelsoft | Cross-Site Scripting vulnerability in Multiple VBulletin Cross-site scripting (XSS) vulnerability in global.php in Jelsoft vBulletin 2.0.0 through 2.2.8 allows remote attackers to inject arbitrary web script or HTML via the (1) $scriptpath or (2) $url variables. | 4.3 |
2002-12-31 | CVE-2002-1901 | Bodo Bauer | HTML Injection vulnerability in Bodo Bauer Bbgallery 1.0 Cross-site scripting (XSS) vulnerability in Bodo Bauer BBGallery 1.0 allows remote attackers to inject arbitrary web script or HTML via image tags. | 4.3 |
2002-12-31 | CVE-2002-1900 | Pinboard | HTML Injection vulnerability in Pinboard 1.0 Cross-site scripting (XSS) vulnerability in Pinboard 1.0 allows remote attackers to inject arbitrary web script or HTML via tasklists. | 4.3 |
2002-12-31 | CVE-2002-1899 | Icewarp | Cross-Site Scripting vulnerability in Web Mail 3.3.3/3.3.5 Cross-site scripting (XSS) vulnerability in IceWarp Web Mail 3.3.3 and 3.4.5 allows remote attackers to inject arbitrary web script or HTML via the "Full Name" (addressname) parameter. | 4.3 |
2002-12-31 | CVE-2002-1894 | Phpbb Group | Cross-Site Scripting vulnerability in PHPbb Group PHPbb 2.0.3 Cross-site scripting (XSS) vulnerability in viewtopic.php in phpBB 2.0.3 allows remote attackers to inject arbitrary web script or HTML via the highlight parameter. | 4.3 |
2002-12-31 | CVE-2002-1893 | Argosoft | HTML Injection vulnerability in Argosoft Mail Server 1.8.1.9 Cross-site scripting (XSS) vulnerability in ArGoSoft Mail Server Pro 1.8.1.9 allows remote attackers to inject arbitrary web script or HTML via the e-mail message. | 4.3 |
2002-12-31 | CVE-2002-1853 | Carlos Sanchez Valle | HTML Injection vulnerability in MyNewsGroups Subject Header Cross-site scripting (XSS) vulnerability in MyNewsGroups 0.4 and 0.4.1 allows remote attackers to inject arbitrary web script or HTML via the subject of a newsgroup post, which is not properly handled by (1) myarticles.php, (2) search.php, (3) stats.php, or (4) standard.lib.php. | 4.3 |
2002-12-31 | CVE-2002-1852 | Monkey Project | Cross-Site Scripting vulnerability in Monkey-Project Monkey 0.5.0 Cross-site scripting (XSS) vulnerability in Monkey 0.5.0 allows remote attackers to inject arbitrary web script or HTML via (1) the URL or (2) a parameter to test2.pl. | 4.3 |
2002-12-31 | CVE-2002-1845 | Yabb | Cross-Site Scripting vulnerability in YaBB Login Cross-site scripting (XSS) vulnerability in index.php in Yet Another Bulletin Board (YaBB) 1.40 and 1.41 allows remote attackers to inject arbitrary web script or HTML via the password (passwrd) parameter. | 4.3 |
2002-12-31 | CVE-2002-1829 | Openbb | HTML Injection vulnerability in Openbb 1.0.0Rc3 Cross-site scripting (XSS) vulnerability in codeparse.php in Open Bulletin Board (OpenBB) 1.0.0 RC3 allows remote attackers to inject arbitrary web script or HTML via (1) myhome.php, (2) an onerror attribute in an IMG tag (a variant of CVE-2002-0330), or (3) a glow tag. | 4.3 |
2002-12-31 | CVE-2002-1808 | Zack Coburn | Unspecified vulnerability in Zack Coburn Meunity Community System 1.0 Cross-site scripting (XSS) vulnerability in Meunity Community System 1.1 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag when creating a topic. | 4.3 |
2002-12-31 | CVE-2002-1807 | Phpwebsite | HTML Injection vulnerability in PHPwebsite 0.8.3 Cross-site scripting (XSS) vulnerability in phpWebSite 0.8.3 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag. | 4.3 |
2002-12-31 | CVE-2002-1806 | Drupal | HTML Injection vulnerability in Drupal 4.0.0 Cross-site scripting (XSS) vulnerability in Drupal 4.0.0 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag. | 4.3 |
2002-12-31 | CVE-2002-1805 | Dacode | HTML Injection vulnerability in Dacode 1.2.0 Cross-site scripting (XSS) vulnerability in DaCode 1.2.0 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag. | 4.3 |
2002-12-31 | CVE-2002-1804 | Npds | HTML Injection vulnerability in Npds 4.8 Cross-site scripting (XSS) vulnerability in NPDS 4.8 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag. | 4.3 |
2002-12-31 | CVE-2002-1803 | Francisco Burzi | HTML Injection vulnerability in Francisco Burzi PHP-Nuke 6.0 Cross-site scripting (XSS) vulnerability in PHP-Nuke 6.0 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag. | 4.3 |
2002-12-31 | CVE-2002-1802 | Xoops | HTML Injection vulnerability in Xoops 1.0Rc3 Cross-site scripting (XSS) vulnerability in Xoops 1.0 RC3 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag when submitting news. | 4.3 |
2002-12-31 | CVE-2002-1799 | Phprank | Cross-Site Scripting vulnerability in PHPrank 1.8 Cross-site scripting (XSS) vulnerability in phpRank 1.8 allows remote attackers to inject arbitrary web script or HTML via the (1) email parameter to add.php or (2) banurl parameter. | 4.3 |
2002-12-31 | CVE-2002-1795 | Microsoft | Cross-Site Scripting vulnerability in Microsoft TSAC ActiveX Control Cross-site scripting (XSS) vulnerability in connect.asp in Microsoft Terminal Services Advanced Client (TSAC) ActiveX control allows remote attackers to inject arbitrary web script or HTML via unknown vectors. | 4.3 |
2002-12-31 | CVE-2002-1733 | Prospero Technologies | Unspecified vulnerability in Prospero Technologies Prospero Message Board Cross-site scripting (XSS) vulnerability in the web-based message board in Prospero Technologies allows remote attackers to inject arbitrary web script or HTML via a message board post. | 4.3 |
2002-12-31 | CVE-2002-1732 | Actinic | Cross-Site Scripting vulnerability in Actinic Catalog 4.7 Multiple cross-site scripting (XSS) vulnerabilities in Actinic Catalog 4.7.0 allow remote attackers to inject arbitrary web script or HTML via (1) the query string argument to certain .pl files, (2) the REFPAGE parameter to ca000007.pl, (3) PRODREF parameter to ss000007.pl, or (4) hop parameter to ca000001.pl. | 4.3 |
2002-12-31 | CVE-2002-1702 | Deltascripts | Cross-Site Scripting vulnerability in Deltascripts PHP Classifieds 6.0.5 Cross-site scripting vulnerability (XSS) in DeltaScripts PHP Classifieds 6.0.5 allows remote attackers to execute arbitrary script as other users via the URL parameter. | 4.3 |
2002-12-31 | CVE-2002-1700 | Macromedia Microsoft | Cross-Site Scripting vulnerability in multiple products Cross-site scripting vulnerability (XSS) in the missing template handler in Macromedia ColdFusion MX allows remote attackers to execute arbitrary script as other users by injecting script into the HTTP request for the name of a template, which is not filtered in the resulting 404 error message. | 4.3 |
2002-12-31 | CVE-2002-1685 | Working Resources INC | Cross-Site Scripting vulnerability in Working Resources Inc. Badblue Enterprise1.7.2/Personal1.7/Personal1.7.2 Cross-site scripting vulnerability (XSS) in BadBlue Enterprise Edition and Personal Edition 1.7 and 1.7.2 allows remote attackers to execute arbitrary script as other users by injecting script into ext.dll ISAPI. | 4.3 |
2002-12-31 | CVE-2002-1683 | Working Resources INC | Cross-Site Scripting vulnerability in Working Resources Inc. Badblue Personal1.7.3 Cross-site scripting (XSS) vulnerability in BadBlue Personal Edition 1.7.3 allows remote attackers to execute arbitrary script as other users by injecting script into the cleanSearchString() function. | 4.3 |
2002-12-31 | CVE-2002-1680 | Cows | Cross-Site Scripting vulnerability in Cows CGI Online Worldweb Shopping 1.1 Cross-site scripting (XSS) vulnerability in CGI Online Worldweb Shopping 1.1 (a.k.a. | 4.3 |
2002-12-31 | CVE-2002-1679 | Jelsoft | Unspecified vulnerability in Jelsoft Vbulletin 2.2.0 Cross-site scripting (XSS) vulnerability in Jelsoft vBulletin 2.2.0 allows remote attackers to execute arbitrary script as other users by injecting script into a bulletin board message. | 4.3 |
2002-12-31 | CVE-2002-1678 | Jelsoft | Cross-Site Scripting vulnerability in VBulletin Cross-site scripting (XSS) vulnerability in memberlist.php in Jelsoft vBulletin 2.0 rc 2 through 2.2.4 allows remote attackers to steal authentication credentials by injecting script into $letterbits. | 4.3 |
2002-12-31 | CVE-2002-1651 | Verity | Cross-Site Scripting vulnerability in Verity Search97 2.1 Cross-site scripting (XSS) vulnerability in Verity Search97 allows remote attackers to insert arbitrary web content and steal sensitive information from other clients, possibly due to certain error messages from template pages that use the (1) vformat or (2) vfilter functions. | 4.3 |
2002-12-31 | CVE-2002-1649 | Squirrelmail | Unspecified vulnerability in Squirrelmail 1.2.2 Cross-site scripting (XSS) vulnerability in read_body.php in SquirrelMail before 1.2.3 allows remote attackers to execute arbitrary Javascript via a javascript: URL in an IMG tag. | 4.3 |
2002-12-31 | CVE-2002-1636 | Oracle | Cross-Site Scripting vulnerability in Oracle Application Server 1.0.2 Cross-site scripting (XSS) vulnerability in the htp PL/SQL package for Oracle 9i Application Server (9iAS) allows remote attackers to inject arbitrary web script or HTML via the cbuf parameter to htp.print. | 4.3 |
2002-12-31 | CVE-2002-2175 | PHP | Unspecified vulnerability in PHP PHPsquidpass phpSquidPass before 0.2 uses an incomplete regular expression to find a matching username in its database, which allows remote authenticated attackers to effectively delete other usernames via a short username that matches the end of the targeted username. | 4.0 |
2002-12-31 | CVE-2002-2163 | Killervault | Unspecified vulnerability in Killervault Kvpoll 1.1 KvPoll 1.1 allows remote authenticated users to vote more than once by setting the "already_voted" cookie by various methods, including a direct call to clear_cookies.php. | 4.0 |
70 Low Vulnerabilities
DATE | CVE | VENDOR | VULNERABILITY | CVSS |
---|---|---|---|---|
2002-12-31 | CVE-2002-2202 | Microsoft | Local Security vulnerability in Microsoft Outlook Express 6.0 Outlook Express 6.0 does not delete messages from dbx files, even when a user empties the Deleted items folder, which allows local users to read other users email. | 3.8 |
2002-12-31 | CVE-2002-2092 | Freebsd Netbsd Openbsd | Race condition in exec in OpenBSD 4.0 and earlier, NetBSD 1.5.2 and earlier, and FreeBSD 4.4 and earlier allows local users to gain privileges by attaching a debugger to a process before the kernel has determined that the process is setuid or setgid. | 3.7 |
2002-12-31 | CVE-2002-2384 | Hotfoon Corporation | Credentials Management vulnerability in Hotfoon Corporation Hotfoon 4.0 hotfoon4.exe in Hotfoon 4.00 stores user names and passwords in cleartext in the hotfoon2 registry key, which allows local users to gain access to user accounts and steal phone service. | 3.6 |
2002-12-31 | CVE-2002-2334 | Joseph Allen | Permissions, Privileges, and Access Controls vulnerability in Joseph Allen JOE Joe text editor 2.8 through 2.9.7 does not remove the group and user setuid bits for backup files, which could allow local users to execute arbitrary setuid and setgid root programs when root edits scripts owned by other users. | 3.6 |
2002-12-31 | CVE-2002-2270 | HP | Permissions, Privileges, and Access Controls vulnerability in HP Hp-Ux 10.10/10.20/11.00 Unspecified vulnerability in the ied command in HP-UX 10.10, 10.20, and 11.0 allows local users to view "normally invisible data" via unknown attack vectors. | 3.6 |
2002-12-31 | CVE-2002-2038 | Bill ABT | Denial of Service vulnerability in Bill ABT Next Generation Posix Threading 1.9.0 Next Generation POSIX Threading (NGPT) 1.9.0 uses a filesystem-based shared memory entry, which allows local users to cause a denial of service or in threaded processes or spoof files via unknown methods. | 3.6 |
2002-12-31 | CVE-2002-1710 | Basilix | Unspecified vulnerability in Basilix Webmail 1.1.0 The attachment capability in Compose Mail in BasiliX Webmail 1.1.0 does not check whether the attachment was uploaded by the user or came from a HTTP POST, which could allow local users to steal sensitive information like a password file. | 3.6 |
2002-12-31 | CVE-2002-1692 | Microsoft | Buffer Overflow vulnerability in Microsoft Backup for Windows 95 Buffer overflow in backup utility of Microsoft Windows 95 allows attackers to execute arbitrary code by causing a filename with a long extension to be placed in a folder to be backed up. | 3.6 |
2002-12-31 | CVE-2002-1673 | Webmin | Unspecified vulnerability in Webmin The web interface for Webmin 0.92 does not properly quote or filter script code in files that are displayed to the interface, which allows local users to execute script and possibly steal cookies by inserting the script into certain files or fields, such as a real user name entry in the passwd file. | 3.6 |
2002-12-31 | CVE-2002-2409 | QNX | Information Exposure vulnerability in QNX Neutrino Rtos and Photon Microgui Photon microGUI in QNX Neutrino realtime operating system (RTOS) 6.1.0 and 6.2.0 allows attackers to read user clipboard information via a direct request to the 1.TEXT file in a directory whose name is a hex-encoded user ID. | 3.5 |
2002-12-31 | CVE-2002-2301 | Lawson Software | Credentials Management vulnerability in Lawson Software Lawson Financials 8.0 Lawson Financials 8.0, when configured to use a third party relational database, stores usernames and passwords in a world-readable file, which allows local users to read the passwords and log onto the database. | 3.3 |
2002-12-31 | CVE-2002-1869 | Heysoft | Improper Locking vulnerability in Heysoft Eventsave and Eventsave+ Heysoft EventSave 5.1 and 5.2 and Heysoft EventSave+ 5.1 and 5.2 does not check whether the log file can be written to, which allows attackers to prevent events from being recorded by opening the log file using an application such as Microsoft's Event Viewer. | 3.3 |
2002-12-31 | CVE-2002-2177 | BEA | Information Disclosure vulnerability in BEA Weblogic Server 6.1/7.0/7.0.0.1 BEA WebLogic Server and Express 6.1 through 7.0.0.1 buffers HTTP requests in a way that can cause BEA to send the same response for two different HTTP requests, which could allow remote attackers to obtain sensitive information that was intended for other users. | 2.6 |
2002-12-31 | CVE-2002-1996 | Postnuke Software Foundation | Cross-Site Scripting vulnerability in PostNuke Cross-site scripting (XSS) vulnerability in PostNuke 0.71 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) name parameter in modules.php and (2) catid parameter in index.php. | 2.6 |
2002-12-31 | CVE-2002-1813 | AOL | Local File Execution vulnerability in AOL Instant Messenger Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8.2790 allows remote attackers to execute arbitrary programs by specifying the program in the href attribute of a link. | 2.6 |
2003-01-03 | CVE-2003-1071 | SUN | Unspecified vulnerability in SUN Solaris and Sunos rpc.walld (wall daemon) for Solaris 2.6 through 9 allows local users to send messages to logged on users that appear to come from arbitrary user IDs by closing stderr before executing wall, then supplying a spoofed from header. | 2.1 |
2002-12-31 | CVE-2002-2412 | Nullsoft | Credentials Management vulnerability in Nullsoft Winamp 2.80 Winamp 2.80 stores authentication credentials in plaintext in the (1) [HTTP-AUTH] and (2) [winamp] sections in winamp.ini, which allows local users to gain access to other accounts. | 2.1 |
2002-12-31 | CVE-2002-2280 | Openbsd | Configuration vulnerability in Openbsd syslogd on OpenBSD 2.9 through 3.2 does not change the source IP address of syslog packets when the machine's IP addressed is changed without rebooting, e.g. | 2.1 |
2002-12-31 | CVE-2002-2275 | Fortres Grand Corporation | Denial-Of-Service vulnerability in Fortres Grand Corporation Fortres 4.1 Fortres 101 4.1 allows local users to bypass Fortres by pressing the Windows and "F" key together for 30 seconds, which opens multiple windows and eventually causes explorer.exe to crash, which then opens an unrestricted explorer.exe. | 2.1 |
2002-12-31 | CVE-2002-2274 | Akfingerd | Unspecified vulnerability in Akfingerd 0.5 akfingerd 0.5 allows local users to read arbitrary files as the akfingerd user (nobody) via a symlink attack on the .plan file. | 2.1 |
2002-12-31 | CVE-2002-2254 | Linux | Permissions, Privileges, and Access Controls vulnerability in Linux Kernel The experimental IP packet queuing feature in Netfilter / IPTables in Linux kernel 2.4 up to 2.4.19 and 2.5 up to 2.5.31, when a privileged process exits and network traffic is not being queued, may allow a later process with the same Process ID (PID) to access certain network traffic that would otherwise be restricted. | 2.1 |
2002-12-31 | CVE-2002-2244 | Akfingerd | Race Condition vulnerability in Akfingerd 0.5 Akfingerd 0.5 and earlier versions allow local users to cause a denial of service (crash) via a .plan with a symlink to /dev/urandom or other device, then disconnecting while data is being transferred, which causes a SIGPIPE error that Akfingerd cannot handle. | 2.1 |
2002-12-31 | CVE-2002-2172 | Shana | Information Disclosure vulnerability in Shana Informed Informed (1) Designer and (2) Filler 3.05 does not zero out newly allocated disk blocks as an encrypted file grows in size, which may allow attackers to obtain sensitive information. | 2.1 |
2002-12-31 | CVE-2002-2165 | Imho | Unspecified vulnerability in Imho Webmail The IMHO Webmail module 0.97.3 and earlier for Roxen leaks the REFERER from the browser's previous login session in an error page, which allows local users to read another user's inbox. | 2.1 |
2002-12-31 | CVE-2002-2132 | Microsoft | Unspecified vulnerability in Microsoft Windows 2000 and Windows XP Windows File Protection (WFP) in Windows 2000 and XP does not remove old security catalog .CAT files, which could allow local users to replace new files with vulnerable old files that have valid hash codes. | 2.1 |
2002-12-31 | CVE-2002-2127 | Pedestal Software | Local Security vulnerability in Pedestal Software Integrity Protection Driver 1.2 Integrity Protection Driver (IPD) 1.2 and earlier blocks access to \Device\PhysicalMemory by its name, which could allow local privileged processes to overwrite kernel memory by accessing the device through a symlink. | 2.1 |
2002-12-31 | CVE-2002-2126 | Pedestal Software | Unspecified vulnerability in Pedestal Software Integrity Protection Driver 1.2 restrictEnabled in Integrity Protection Driver (IPD) 1.2 delays driver installation for 20 minutes, which allows local users to insert malicious code by setting system clock to an earlier time. | 2.1 |
2002-12-31 | CVE-2002-2122 | Pointsec Mobile Technologies | Unspecified vulnerability in Pointsec Mobile Technologies Pointsec 1.0 Pointsec before 1.2 for PalmOS stores a user's PIN number in memory in plaintext, which allows a local attacker who steals an unlocked Palm to retrieve the PIN by dumping memory. | 2.1 |
2002-12-31 | CVE-2002-2105 | Microsoft | Denial of Service vulnerability in Microsoft Windows XP .Manifest Microsoft Windows XP allows local users to prevent the system from booting via a corrupt explorer.exe.manifest file. | 2.1 |
2002-12-31 | CVE-2002-2093 | SGI | Information Disclosure vulnerability in SGI O2 Video Session Viewing The Video Control Panel on SGI O2/IRIX 6.5, when the Default Input is set to "Output Video", allows attackers to access a console session by running videoout then videoin. | 2.1 |
2002-12-31 | CVE-2002-2083 | Novell | Local Security vulnerability in Novell Netware The Novell Netware client running on Windows 95 allows local users to bypass the login and open arbitrary files via the "What is this?" help feature, which can be launched from the Novell Netware login screen. | 2.1 |
2002-12-31 | CVE-2002-2051 | Modlogan | Unspecified vulnerability in Modlogan The processor_web plugin for ModLogAn 0.5.0 through 0.7.11, when used with the splitby option, allows local users to overwrite arbitrary files via a symlink attack on files specified as hostnames in a log file. | 2.1 |
2002-12-31 | CVE-2002-2050 | Modlogan | Unspecified vulnerability in Modlogan Directory traversal vulnerability in processor_web plugin for ModLogAn 0.5.0 through 0.7.11, when used with the splitby option, allows local users to overwrite arbitrary files via a .. | 2.1 |
2002-12-31 | CVE-2002-2039 | QNX | Unspecified vulnerability in QNX Rtos 4.25/6.1.0 /bin/su in QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows local users to obtain sensitive information from core dump files by sending the SIGSERV (invalid memory reference) signal. | 2.1 |
2002-12-31 | CVE-2002-2023 | Yamaguchi | Unspecified vulnerability in Yamaguchi Shingo Beep2 The get_parameter_from_freqency_source function in beep2 1.0, 1.1 and 1.2, when installed setuid root, allows local users to read arbitrary files via unknown attack vectors. | 2.1 |
2002-12-31 | CVE-2002-2000 | Compaq | Unspecified vulnerability in Compaq Acms 4.3/4.4 ACMS 4.3 and 4.4 in OpenVMS Alpha 7.2 and 7.3 does not properly use process privileges, which allows attackers to access data. | 2.1 |
2002-12-31 | CVE-2002-1983 | QNX | Local Denial of Service vulnerability in QNX Rtos 6.1.0 The timer implementation in QNX RTOS 6.1.0 allows local users to cause a denial of service (hang) and possibly execute arbitrary code by creating multiple timers with a 1-ms tick. | 2.1 |
2002-12-31 | CVE-2002-1977 | PGP | Unspecified vulnerability in PGP 7.0.4/7.1 Network Associates PGP 7.0.4 and 7.1 does not time out according to the value set in the "Passphrase Cache" option, which could allow attackers to open encrypted files without providing a passphrase. | 2.1 |
2002-12-31 | CVE-2002-1976 | Linux | Unspecified vulnerability in Linux Kernel ifconfig, when used on the Linux kernel 2.2 and later, does not report when the network interface is in promiscuous mode if it was put in promiscuous mode using PACKET_MR_PROMISC, which could allow attackers to sniff the network without detection, as demonstrated using libpcap. | 2.1 |
2002-12-31 | CVE-2002-1970 | Snortcenter | Unspecified vulnerability in Snortcenter 0.9.5 SnortCenter 0.9.5, when configured to push Snort rules, stores the rules in a temporary file with world-readable and world-writable permissions, which allows local users to obtain usernames and passwords for the alert database servers. | 2.1 |
2002-12-31 | CVE-2002-1968 | Com21 | Local Security vulnerability in Com21 Doxport 1100 2.1.1.106 Com21 DOXport 1100 series cable modem running firmware 2.1.1.106, and possibly other versions before 2.1.1.108.003, downloads a DOCSIS configuration file from a TFTP server running on the internal network, which allows local users to modify configuration of the modem via a malicious TFTP server. | 2.1 |
2002-12-31 | CVE-2002-1963 | Linux | Unspecified vulnerability in Linux Kernel Linux kernel 2.4.1 through 2.4.19 sets root's NR_RESERVED_FILES limit to 10 files, which allows local users to cause a denial of service (resource exhaustion) by opening 10 setuid binaries. | 2.1 |
2002-12-31 | CVE-2002-1956 | ROX | Unspecified vulnerability in ROX Filer 1.1.9/1.2 ROX Filer 1.1.9 and 1.2 is installed with world writable permissions, which allows local users to write to arbitrary files. | 2.1 |
2002-12-31 | CVE-2002-1939 | Flashfxp | Unspecified vulnerability in Flashfxp 1.4 FlashFXP 1.4 prints FTP passwords in plaintext when there are transfers in the queue, which allows attackers to obtain FTP passwords of other users by editing the queue properties. | 2.1 |
2002-12-31 | CVE-2002-1927 | Aquonics Scripting | Local Security vulnerability in Aquonics Scripting Aquonics File Manager 1.5 Aquonics File Manager 1.5 allows users with edit privileges to modify user accounts by editing the userlist.cgi file. | 2.1 |
2002-12-31 | CVE-2002-1892 | Netgear | Unspecified vulnerability in Netgear Fvs318 1.1 NETGEAR FVS318 running firmware 1.1 stores the username and password in a readable format when a backup of the configuration file is made, which allows local users to obtain sensitive information. | 2.1 |
2002-12-31 | CVE-2002-1890 | Redhat | Local File Overwrite vulnerability in Redhat Rhmask 1.09 rhmask 1.0-9 in Red Hat Linux 7.1 allows local users to overwrite arbitrary files via a symlink attack on the mask file. | 2.1 |
2002-12-31 | CVE-2002-1888 | Commonname | Unspecified vulnerability in Commonname Toolbar 3.5.2.0 CommonName Toolbar 3.5.2.0 sends unqualified domain name requests to the CommonName organization and possibly other web servers for name resolution, which allows those organizations to obtain internal server names. | 2.1 |
2002-12-31 | CVE-2002-1876 | Microsoft | Resource Exhaustion vulnerability in Microsoft Exchange Server 2000 Microsoft Exchange 2000 allows remote authenticated attackers to cause a denial of service via a large number of rapid requests, which consumes all of the licenses that are granted to Exchange by IIS. | 2.1 |
2002-12-31 | CVE-2002-1848 | Tightvnc | Unspecified vulnerability in Tightvnc TightVNC before 1.2.4 running on Windows stores unencrypted passwords in the password text control of the WinVNC Properties dialog, which could allow local users to access passwords. | 2.1 |
2002-12-31 | CVE-2002-1827 | Sendmail | Denial Of Service vulnerability in Sendmail File Locking Sendmail 8.9.0 through 8.12.3 allows local users to cause a denial of service by obtaining an exclusive lock on the (1) alias, (2) map, (3) statistics, and (4) pid files. | 2.1 |
2002-12-31 | CVE-2002-1791 | SGI | Unspecified vulnerability in SGI Irix SGI IRIX 6.5 through 6.5.17 creates temporary desktop files with world-writable permissions, which allows local users to overwrite or corrupt those files. | 2.1 |
2002-12-31 | CVE-2002-1786 | SGI | Unspecified vulnerability in SGI Irix SGI IRIX 6.5 through 6.5.14 applies a umask of 022 to root core dumps, which allows local users to read the core dumps and possibly obtain sensitive information. | 2.1 |
2002-12-31 | CVE-2002-1782 | University OF Washington | Unspecified vulnerability in University of Washington Uw-Imap 2001.0A The default configuration of University of Washington IMAP daemon (wu-imapd), when running on a system that does not allow shell access, allows a local user with a valid IMAP account to read arbitrary files as that user. | 2.1 |
2002-12-31 | CVE-2002-1764 | Adobe | Unspecified vulnerability in Adobe Acrobat Reader 4.0.5 acroread in Adobe Acrobat Reader 4.05 on Linux allows local users to overwrite arbitrary files via a symlink attack on temporary files. | 2.1 |
2002-12-31 | CVE-2002-1754 | Novell | Denial-Of-Service vulnerability in Netware Client Buffer overflow in Novell NetWare Client 4.80 through 4.83 allows local users to cause a denial of service (crash) by using ping, traceroute, or a similar utility to force the client to resolve a large hostname. | 2.1 |
2002-12-31 | CVE-2002-1740 | ALT N | Buffer Overflow vulnerability in MDaemon WorldClient Folder Creation Buffer overflow in WorldClient.cgi in WorldClient in Alt-N Technologies MDaemon 5.0.5.0 and earlier allows local users to execute arbitrary code via a long folder name (NewFolder parameter). | 2.1 |
2002-12-31 | CVE-2002-1737 | Astaro | Unspecified vulnerability in Astaro Security Linux 2.01 Astaro Security Linux 2.016 creates world-writable files and directories, which allows local users to overwrite arbitrary files. | 2.1 |
2002-12-31 | CVE-2002-1731 | IBM | Unspecified vulnerability in IBM OS 400 The System Request menu in IBM AS/400 allows local users to list valid user accounts by viewing the object names that are type USRPRF. | 2.1 |
2002-12-31 | CVE-2002-1711 | Basilix | Unspecified vulnerability in Basilix Webmail 1.1.0 BasiliX 1.1.0 saves attachments in a world readable /tmp/BasiliX directory, which allows local users to read other users' attachments. | 2.1 |
2002-12-31 | CVE-2002-1687 | IBM | Local Security vulnerability in AIX Buffer overflow in the diagnostics library in AIX allows local users to "cause data and instructions to be overwritten" via a long DIAGNOSTICS environment variable. | 2.1 |
2002-12-31 | CVE-2002-1676 | Bindview | Unspecified vulnerability in Bindview Netinventory and Netrc BindView NetInventory 1.0, when used with NetRC 1.0, allows local users to read sensitive information (passwords) by deleting the HOSTCFG._NI file and forcing an audit, which rewrites the HOSTCFG._NI to HOSTCFG.INI and stores the passwords in cleartext until the audit is complete. | 2.1 |
2002-12-31 | CVE-2002-1672 | Webmin | Unspecified vulnerability in Webmin 0.92/0.92.1 Webmin 0.92, when installed from an RPM, creates /var/webmin with insecure permissions (world readable), which could allow local users to read the root user's cookie-based authentication credentials and possibly hijack the root user's session using the credentials. | 2.1 |
2002-12-31 | CVE-2002-1669 | Freebsd | Unspecified vulnerability in Freebsd 4.2/4.3/4.4 pkg_add in FreeBSD 4.2 through 4.4 creates a temporary directory with world-searchable permissions, which may allow local users to modify world-writable parts of the package during installation. | 2.1 |
2002-12-31 | CVE-2002-1668 | HP | Denial of Service vulnerability in HP Hp-Ux, Hp-Ux Series 700 and Hp-Ux Series 800 HP-UX 11.11 and earlier allows local users to cause a denial of service (kernel deadlock), due to a "file system weakness" that is possibly via an mmap() system call and performing an I/O operation using data from the mapped buffer on the file descriptor for the mapped file. | 2.1 |
2002-12-31 | CVE-2002-1667 | Freebsd | Denial-Of-Service vulnerability in Freebsd 4.5 The virtual memory management system in FreeBSD 4.5-RELEASE and earlier does not properly check the existence of a VM object during page invalidation, which allows local users to cause a denial of service (crash) by calling msync on an unaccessed memory map created with MAP_ANON and MAP_NOSYNC flags. | 2.1 |
2002-12-31 | CVE-2002-2283 | Microsoft | Permissions, Privileges, and Access Controls vulnerability in Microsoft Windows XP Microsoft Windows XP with Fast User Switching (FUS) enabled does not remove the "show processes from all users" privilege when the user is removed from the administrator group, which allows that user to view processes of other users. | 1.9 |
2002-12-31 | CVE-2002-1785 | Zeus Technologies | Cross-Site Scripting vulnerability in Zeus Web Server Admin Interface Cross-site scripting (XSS) vulnerability in Zeus Administration Server in Zeus Web Server 4.0 through 4.1r2 allows remote authenticated users to inject arbitrary web script or HTML via the section parameter to index.fcgi. | 1.9 |
2002-12-31 | CVE-2002-2001 | Jmcce Mandrakesoft | Symbolic Link Attack vulnerability in jmcce Predictable Log File jmcce 1.3.8 in Mandrake 8.1 creates log files in /tmp with predictable names, which allows local users to overwrite arbitrary files via a symlink attack. | 1.2 |
2002-12-31 | CVE-2002-1674 | Freebsd | Unspecified vulnerability in Freebsd procfs on FreeBSD before 4.5 allows local users to cause a denial of service (kernel panic) by removing a file that the fstatfs function refers to. | 1.2 |