Weekly Vulnerabilities Reports > December 30, 2002 to January 5, 2003

Overview

245 new vulnerabilities reported during this period, including 29 critical vulnerabilities and 59 high severity vulnerabilities. This weekly summary report vulnerabilities in 219 products from 171 vendors including Microsoft, SUN, HP, Symantec, and Cisco. Vulnerabilities are notably categorized as "Improper Restriction of Operations within the Bounds of a Memory Buffer", "Cross-site Scripting", "Permissions, Privileges, and Access Controls", "Improper Input Validation", and "Path Traversal".

  • 210 reported vulnerabilities are remotely exploitables.
  • 1 reported vulnerabilities have public exploit available.
  • 60 reported vulnerabilities are related to weaknesses in OWASP Top Ten.
  • 240 reported vulnerabilities are exploitable by an anonymous user.
  • Microsoft has the most reported vulnerabilities, with 9 reported vulnerabilities.
  • Webmin has the most reported critical vulnerabilities, with 2 reported vulnerabilities.

TOTAL
VULNERABILITIES
CRITICAL RISK
VULNERABILITIES
HIGH RISK
VULNERABILITIES
MEDIUM RISK
VULNERABILITIES
LOW RISK
VULNERABILITIES
REMOTELY
EXPLOITABLE
LOCALLY
EXPLOITABLE
EXPLOIT
AVAILABLE
EXPLOITABLE
ANONYMOUSLY
AFFECTING
WEB APPLICATION

Vulnerability Details

The following table list reported vulnerabilities for the period covered by this report:

Expand/Hide

57 Critical Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2002-12-31 CVE-2002-2425 SUN Permissions, Privileges, and Access Controls vulnerability in SUN Solaris Answerbook2

Sun AnswerBook2 1.2 through 1.4.2 allows remote attackers to execute administrative scripts such as (1) AdminViewError and (2) AdminAddadmin via a direct request.

10.0
2002-12-31 CVE-2002-2417 Acftp Improper Authentication vulnerability in Acftp 1.4

acFTP 1.4 does not properly handle when an invalid password is provided by the user during authentication, which allows remote attackers to hide or misrepresent certain activity from log files and possibly gain privileges.

10.0
2002-12-31 CVE-2002-2411 Bannerwheel Buffer Errors vulnerability in Bannerwheel 1.0

Buffer overflow in badmin.c in BannerWheel 1.0 allows remote attackers to execute arbitrary code via a long rcmd command.

10.0
2002-12-31 CVE-2002-2402 Surecom Unspecified vulnerability in Surecom Ep-4501

SURECOM broadband router EP-4501 uses a default SNMP read community string of "public" and a default SNMP read/write community string of "secret," which allows remote attackers to read and modify router configuration information.

10.0
2002-12-31 CVE-2002-2400 Hughes Technologies Buffer Errors vulnerability in Hughes Technologies Libhttpd 1.2

Buffer overflow in the httpdProcessRequest function in LibHTTPD 1.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP POST request.

10.0
2002-12-31 CVE-2002-2397 Symantec Improper Authentication vulnerability in Symantec Sygate Personal Firewall 5.0

Sygate personal firewall 5.0 could allow remote attackers to bypass firewall filters via spoofed (1) source IP address of 127.0.0.1 or (2) network address of 127.0.0.0.

10.0
2002-12-31 CVE-2002-2390 Cerulean Studios Buffer Errors vulnerability in Cerulean Studios Trillian and Trillian PRO

Buffer overflow in the IDENT daemon (identd) in Trillian 0.6351, 0.725, 0.73, 0.74 and 1.0 pro allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long request.

10.0
2002-12-31 CVE-2002-2374 SUN Race Condition vulnerability in SUN Patchpro 2.0

Unspecified vulnerability in pprosetup in Sun PatchPro 2.0 has unknown impact and attack vectors related to "unsafe use of temporary files."

10.0
2002-12-31 CVE-2002-2368 NEC Buffer Errors vulnerability in NEC Socks 5 1.0R11/1.0R5

Multiple buffer overflows in NEC SOCKS5 1.0 r11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via a long username to (1) the GetString function in proxy.c for the SOCKS5 module or (2) the HandleS4Connection function in proxy.c for the SOCKS4 module.

10.0
2002-12-31 CVE-2002-2365 Springer Verlag Berlin Heidelberg Improper Input Validation vulnerability in Springer Verlag Berlin Heidelberg Simple Wais 1.11

Simple WAIS (SWAIS) 1.11 allows remote attackers to execute arbitrary commands via the shell metacharacters in the search field, as demonstrated using the "|" (pipe) character.

10.0
2002-12-31 CVE-2002-2290 Mambo Credentials Management vulnerability in Mambo Site Server 4.0.11

Mambo Site Server 4.0.11 installs with a default username and password of admin, which allows remote attackers to gain privileges.

10.0
2002-12-31 CVE-2002-2281 Symantec Unspecified vulnerability in Symantec Java

Symantec Java! JIT (Just-In-Time) Compiler for Netscape Communicator 4.0 through 4.8 allows remote attackers to execute arbitrary Java commands via an applet that uses a jump call, which is not correctly compiled by the JIT compiler.

10.0
2002-12-31 CVE-2002-2279 Aldap Improper Authentication vulnerability in Aldap 0.09

Unspecified vulnerability in the bind function in config.inc of aldap 0.09 allows remote attackers to authenticate with Manager permissions.

10.0
2002-12-31 CVE-2002-2264 HP Denial-Of-Service vulnerability in Secure Web Server For Tru64 4.0/5.0/5.1

Unspecified vulnerability in Internet Group Management Protocol (IGMP) of HP Tru64 4.0F through 5.1A allows remote attackers to cause a denial of service via unknown attack vectors.

10.0
2002-12-31 CVE-2002-2257 Tuxbr Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Tuxbr Libcgi 1.0.2/1.0.3

Stack-based buffer overflow in the parse_field function in cgi_lib.c for LIBCGI 1.0.2 and 1.0.3 allows remote attackers to execute arbitrary code via a long argument.

10.0
2002-12-31 CVE-2002-2253 Cyrus Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Cyrus Libsieve

Multiple buffer overflows in Cyrus Sieve / libSieve 2.1.2 and earlier allow remote attackers to execute arbitrary code via (1) a long header name, (2) a long IMAP flag, or (3) a script that generates a large number of errors that overflow the resulting error string.

10.0
2002-12-31 CVE-2002-2251 Marcos Luiz Onisto Buffer Errors vulnerability in Marcos Luiz Onisto LIB CGI 0.1

Buffer overflow in the changevalue function in libcgi.h for Marcos Luiz Onisto Lib CGI 0.1 allows remote attackers to execute arbitrary code via a long argument.

10.0
2002-12-31 CVE-2002-2250 Sybase Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Sybase Adaptive Server 12.0/12.5

Multiple buffer overflows in Sybase Adaptive Server 12.0 and 12.5 allow remote attackers to execute arbitrary code via (1) a long parameter to the xp_freedll extended stored procedure or (2) a long database name argument to the DBCC CHECKVERIFY function.

10.0
2002-12-31 CVE-2002-2248 Netscape Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Netscape Communicator

Buffer overflow in the sun.awt.windows.WDefaultFontCharset Java class implementation in Netscape 4.0 allows remote attackers to execute arbitrary code via an applet that calls the WDefaultFontCharset constructor with a long string and invokes the canConvert method.

10.0
2002-12-31 CVE-2002-2236 APT WWW Proxy Improper Input Validation vulnerability in Apt-Www-Proxy 1.0

Format string vulnerability in the awp_log function in apt-www-proxy 0.1 allows remote attackers to execute arbitrary code.

10.0
2002-12-31 CVE-2002-2227 Rtfm Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Rtfm Ssldump

Buffer underflow in ssldump 0.9b2 and earlier allows remote attackers to cause a denial of service (memory corruption) via a crafted SSLv2 challenge value.

10.0
2002-12-31 CVE-2002-2218 Sips Remote Security vulnerability in SIPS

CRLF injection vulnerability in the setUserValue function in sipssys/code/site.inc.php in Haakon Nilsen simple, integrated publishing system (SIPS) before 20020209 has unknown impact, possibly gaining privileges or modifying critical configuration, via a CRLF sequence in a key value.

10.0
2002-12-31 CVE-2002-2209 Pablo Software Solutions Remote Security vulnerability in Baby FTP Server

Unspecified "security vulnerability" in Baby FTP Server versions before November 7, 2002 has unknown impact and attack vectors.

10.0
2002-12-31 CVE-2002-2207 Eric Rescorla Buffer Overflow vulnerability in Eric Rescorla Ssldump 0.9B1/0.9B2

Buffer overflow in ssldump 0.9b2 and earlier, when running in decryption mode, allows remote attackers to execute arbitrary code via a long RSA PreMasterSecret.

10.0
2002-12-31 CVE-2002-2201 Webmin Remote Security vulnerability in Webmin

The Printer Administration module for Webmin 0.990 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the printer name.

10.0
2002-12-31 CVE-2002-2198 Zmailer Buffer Overflow vulnerability in ZMailer SMTP IPv6 HELO Resolved Hostname

Buffer overflow in ZMailer before 2.99.51_1 allows remote attackers to execute arbitrary code during HELO processing from an IPv6 address, possibly using an address that resolves to a long hostname.

10.0
2002-12-31 CVE-2002-2176 Phpbb Group Remote SQL Injection vulnerability in phpBB2 Gender Mod

SQL injection vulnerability in Gender MOD 1.1.3 allows remote attackers to gain administrative access via the user_level parameter in the User Profile page.

10.0
2002-12-31 CVE-2002-2159 Linksys Remote Security vulnerability in Linksys Befsr11, Befsr41 and Befsru31

Linksys EtherFast Cable/DSL BEFSR11, BEFSR41 and BEFSRU31 with the firmware 1.42.7 upgrade installed opens TCP port 5678 for remote administration even when the "Block WAN" and "Remote Admin" options are disabled, which allows remote attackers to gain access.

10.0
2002-12-31 CVE-2002-2152 Software602 Unspecified vulnerability in Software602 602Pro LAN Suite 2002

The Czech edition of Software602's Web Server before 2002.0.02.0916 allows remote attackers to gain administrator privileges via direct HTTP requests to the /admin/ directory, which is not password protected.

10.0
2002-12-31 CVE-2002-2133 Telindus Unspecified vulnerability in Telindus 1120 Adsl Router 6.0.21Bfirmware

Telindus 1100 ASDL router running firmware 6.0.x uses weak encryption for UDP session traffic, which allows remote attackers to gain unauthorized access by sniffing and decrypting the administrative password.

10.0
2002-12-31 CVE-2002-2088 Mosix Project Unspecified vulnerability in Mosix Project Clump OS 5.4

The MOSIX Project clump/os 5.4 creates a default VNC account without a password, which allows remote attackers to gain root access.

10.0
2002-12-31 CVE-2002-2047 Sketch Unspecified vulnerability in Sketch 0.6.12

The file preview functionality in Sketch 0.6.12 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an encapsulated Postscript (EPS) file.

10.0
2002-12-31 CVE-2002-2017 SAS Local Root Code Execution vulnerability in SAS SASTCPD

sastcpd in SAS/Base 8.0 allows local users to execute arbitrary code by setting the authprog environment variable to reference a malicious program, which is then executed by sastcpd.

10.0
2002-12-31 CVE-2002-1993 Affordable WEB Space Design Remote Command Execution vulnerability in WebScripts WebBBS

webbbs_post.pl in WebBBS 4 and 5.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the followup parameter.

10.0
2002-12-31 CVE-2002-1974 Sharp Remote FTP Server Root Access vulnerability in Sharp Zaurus

The FTP service in Zaurus PDAs SL-5000D and SL-5500 does not require authentication, which allows remote attackers to access the file system as root.

10.0
2002-12-31 CVE-2002-1971 Sourcecraft Remote Command Execution vulnerability in Sourcecraft Networking Utils 1.0

The ping utility in networking_utils.php in Sourcecraft Networking_Utils 1.0 allows remote attackers to read arbitrary files via shell metacharacters in the Domain name or IP address argument.

10.0
2002-12-31 CVE-2002-1959 Nagios Unspecified vulnerability in Nagios 1.0B1/1.0B2/1.0B3

Nagios 1.0b1 through 1.0b3 allows remote attackers to execute arbitrary commands via shell metacharacters in plugin output.

10.0
2002-12-31 CVE-2002-1918 Microsoft Buffer Overflow vulnerability in Microsoft Data Access Components 2.5/2.6/2.7

Buffer overflow in Microsoft Active Data Objects (ADO) in Microsoft MDAC 2.5 through 2.7 allows remote attackers to have unknown impact with unknown attack vectors.

10.0
2002-12-31 CVE-2002-1874 Astrocam Improper Input Validation vulnerability in Astrocam

astrocam.cgi in AstroCam 0.9-1-1 through 1.4.0 allows remote attackers to execute arbitrary commands via shell metacharacters in an HTTP request.

10.0
2002-12-31 CVE-2002-1868 Daniel Stenberg Remote Command Execution vulnerability in Daniel Stenberg Dispair 0.1/0.2

Dispair 0.1 and 0.2 allows remote attackers to execute arbitrary shell commands via certain form fields.

10.0
2002-12-31 CVE-2002-1854 Rlaj Remote Shell Command Execution vulnerability in Rlaj Whois 1.0

Rlaj whois CGI script (whois.cgi) 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the domain name field.

10.0
2002-12-31 CVE-2002-1840 Irssi Unspecified vulnerability in Irssi 0.8.4

irssi IRC client 0.8.4, when downloaded after 14-March-2002, could contain a backdoor in the configuration file, which allows remote attackers to access the system.

10.0
2002-12-31 CVE-2002-1794 HP Privilege Escalation vulnerability in HP-UX LDAP-UX Integration Pam-Authz

Unknown vulnerability in pam_authz in the LDAP-UX Integration product on HP-UX 11.00 and 11.11 allows remote attackers to execute r-commands with privileges of other users.

10.0
2002-12-31 CVE-2002-1792 Fake Identd Remote Buffer Overflow vulnerability in Fake Identd Client Query

Buffer overflow in Fake Identd 0.9 through 1.4 allows remote attackers to execute arbitrary code as root via a long request that is split into multiple packets.

10.0
2002-12-31 CVE-2002-1734 Aspbin Unspecified vulnerability in Aspbin Newspro 1.0.1

NewsPro 1.01 allows remote attackers to gain unauthorized administrator access by setting their authentication cookie to "logged,true".

10.0
2002-12-31 CVE-2002-1699 Pascal Michaud SQL Injection vulnerability in Pascal Michaud ASP Client Check 1.3/1.5

SQL injection vulnerability in ASP Client Check (ASPCC) 1.3 and 1.5 allows remote attackers to bypass authentication and gain unauthorized access via the password field.

10.0
2002-12-31 CVE-2002-1691 Alcatel Lucent Unspecified vulnerability in Alcatel-Lucent Omnipcx 4400

Alcatel OmniPCX 4400 installs known user accounts and passwords in the /etc/password file by default, which allows remote attackers to gain unauthorized access.

10.0
2002-12-31 CVE-2002-1690 IBM Remote Security vulnerability in IBM AIX 3.2.5

Unknown vulnerability in AIX before 4.0 with unknown attack vectors and unknown impact, aka "security issue," as fixed by APAR IY28225.

10.0
2002-12-31 CVE-2002-1689 IBM Remote Security vulnerability in IBM AIX 3.2.5

Unknown vulnerability in the login program on AIX before 4.0 could allow remote users to specify 100 or more environment variables when logging on, which exceeds the length of a certain string, possibly triggering a buffer overflow.

10.0
2002-12-31 CVE-2002-1686 IBM Remote Security vulnerability in AIX

Buffer overflow in lscfg of unknown versions of AIX has unknown impact.

10.0
2002-12-31 CVE-2002-1659 Iatek Remote Security vulnerability in Iatek Portalapp 2.2

user_profile.asp in PortalApp 2.2 allows local users to gain privileges by modifying the user_id variable.

10.0
2002-12-31 CVE-2002-1629 Multi Tech Unspecified vulnerability in Multi-Tech Proxyserver Mtpsr1/Mtpsr2/Mtpsr3

Multi-Tech ProxyServer products MTPSR1-100, MTPSR1-120, MTPSR1-202ST, MTPSR2-201, and MTPSR3-200 ship with a null password, which allows remote attackers to gain administrative privileges via Telnet or HTTP.

10.0
2002-12-31 CVE-2002-1573 Linux Remote Security vulnerability in kernel

Unspecified vulnerability in the pcilynx ieee1394 firewire driver (pcilynx.c) in Linux kernel before 2.4.20 has unknown impact and attack vectors, related to "wrap handling."

10.0
2002-12-31 CVE-2002-1572 Linux Remote Security vulnerability in kernel

Signed integer overflow in the bttv_read function in the bttv driver (bttv-driver.c) in Linux kernel before 2.4.20 has unknown impact and attack vectors.

10.0
2002-12-31 CVE-2002-2269 Webster Path Traversal vulnerability in Webster Http Server

Directory traversal vulnerability in Webster HTTP Server allows remote attackers to read arbitrary files via a ..

9.4
2002-12-31 CVE-2002-2268 Netdave Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Netdave Webster Http Server

Buffer overflow in Webster HTTP Server allows remote attackers to execute arbitrary code via a long URL.

9.4
2002-12-31 CVE-2002-2360 Webmin Permissions, Privileges, and Access Controls vulnerability in Webmin

The RPC module in Webmin 0.21 through 0.99, when installed without root or admin privileges, allows remote attackers to read and write to arbitrary files and execute arbitrary commands via remote_foreign_require and remote_foreign_call requests.

9.3

197 High Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2002-12-31 CVE-2002-2313 Qualcomm Remote Security vulnerability in Qualcomm Eudora 5.1.1

Eudora email client 5.1.1, with "use Microsoft viewer" enabled, allows remote attackers to execute arbitrary programs via an HTML email message containing a META refresh tag that references an embedded .mhtml file with ActiveX controls that execute a second embedded program, which is processed by Internet Explorer.

8.8
2002-12-31 CVE-2002-2232 Mollensoft Software Buffer Errors vulnerability in Mollensoft Software Enceladus Server Suite 3.9

Buffer overflow in Enceladus Server Suite 3.9 allows remote attackers to execute arbitrary code via a long CD (CWD) command.

8.5
2002-12-31 CVE-2002-2233 Mollensoft Software Path Traversal vulnerability in Mollensoft Software Enceladus Server Suite 3.9

Directory traversal vulnerability in Enceladus Server Suite 3.9 allows remote attackers to list arbitrary directories and possibly cause a denial of service via "@" (at) characters in a CD (CWD) command, such as (1) "@/....\", (2) "@@@/..c:\", or (3) "@/..@/..".

8.3
2002-12-31 CVE-2002-2421 Andrey Cherezov Improper Input Validation vulnerability in Andrey Cherezov Acweb 1.14

acWEB 1.14 allows remote attackers to cause a denial of service (crash) via an HTTP request for a MS-DOS device name such as COM2.

7.8
2002-12-31 CVE-2002-2419 Dctc Project Numeric Errors vulnerability in Dctc Project Dctc 0.83.3

Direct connect text client (DCTC) client 0.83.3 allows remote attackers to cause a denial of service (crash) via a string ending with a NULL byte character.

7.8
2002-12-31 CVE-2002-2379 Cisco Cryptographic Issues vulnerability in Cisco As5350 12.2(11T)

** DISPUTED ** Cisco AS5350 IOS 12.2(11)T with access control lists (ACLs) applied and possibly with ssh running allows remote attackers to cause a denial of service (crash) via a port scan, possibly due to an ssh bug.

7.8
2002-12-31 CVE-2002-2371 Linksys Improper Input Validation vulnerability in Linksys Wet11 1.31/1.32

Linksys WET11 firmware 1.31 and 1.32 allows remote attackers to cause a denial of service (crash) via a packet containing the device's hardware address as the source MAC address in the DLC header.

7.8
2002-12-31 CVE-2002-2367 Socks5 Buffer Errors vulnerability in Socks5 1.0R11

Off-by-one buffer overflow in NEC SOCKS5 1.0 r11 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long hostname.

7.8
2002-12-31 CVE-2002-2354 Netgear Improper Input Validation vulnerability in Netgear Fm114P

Netgear FM114P firmware 1.3 wireless firewall allows remote attackers to cause a denial of service (crash or hang) via a large number of TCP connection requests.

7.8
2002-12-31 CVE-2002-2329 Mirabilis Improper Input Validation vulnerability in Mirabilis ICQ 2001B/2002A/2002B

ICQ client 2001b, 2002a and 2002b allows remote attackers to cause a denial of service (CPU consumption or crash) via a message with a large number of emoticons.

7.8
2002-12-31 CVE-2002-2325 University OF Washington Improper Input Validation vulnerability in University of Washington Pine

The c-client library in Internet Message Access Protocol (IMAP) dated before 2002 RC2, as used by Pine 4.20 through 4.44, allows remote attackers to cause a denial of service (client crash) via a MIME-encoded email with Content-Type header containing an empty boundary field.

7.8
2002-12-31 CVE-2002-2320 Mysimplenews Permissions, Privileges, and Access Controls vulnerability in Mysimplenews 1.0

MySimpleNews 1.0 allows remote attackers to delete arbitrary email messages via a direct request to vider.php3.

7.8
2002-12-31 CVE-2002-2317 Symantec Information Exposure vulnerability in Symantec Velociraptor 1.0

Memory leak in the (1) httpd, (2) nntpd, and (3) vpn driver in VelociRaptor 1.0 allows remote attackers to cause a denial of service (memory consumption) via an unknown method.

7.8
2002-12-31 CVE-2002-2315 Cisco Denial Of Service vulnerability in Cisco IOS ICMP Redirect

Cisco IOS 11.2.x and 12.0.x does not limit the size of its redirect table, which allows remote attackers to cause a denial of service (memory consumption) via spoofed ICMP redirect packets to the router.

7.8
2002-12-31 CVE-2002-2309 PHP Resource Management Errors vulnerability in PHP

php.exe in PHP 3.0 through 4.2.2, when running on Apache, does not terminate properly, which allows remote attackers to cause a denial of service via a direct request without arguments.

7.8
2002-12-31 CVE-2002-2306 Kazaa Resource Management Errors vulnerability in Kazaa Media Desktop 1.7.1

Sharman Networks KaZaA Media Desktop 1.7.1 allows remote attackers to cause a denial of service (CPU consumption) by sending several large messages.

7.8
2002-12-31 CVE-2002-2303 3D3 COM Cryptographic Issues vulnerability in 3D3.Com Shopfactory 5.8

3D3.Com ShopFactory 5.8 uses client-side encryption and decryption for sensitive price data, which allows remote attackers to modify shopping cart prices by using the Javascript to decrypt the cookie that contains the data.

7.8
2002-12-31 CVE-2002-2291 Calisto Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Calisto Internet Talker

Calisto Internet Talker 0.04 and earlier allows remote attackers to cause a denial of service (hang) via a long request, possibly triggering a buffer overflow.

7.8
2002-12-31 CVE-2002-2272 Apache Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apache Http Server and Tomcat

Tomcat 4.0 through 4.1.12, using mod_jk 1.2.1 module on Apache 1.3 through 1.3.27, allows remote attackers to cause a denial of service (desynchronized communications) via an HTTP GET request with a Transfer-Encoding chunked field with invalid values.

7.8
2002-12-31 CVE-2002-2239 Cisco Improper Input Validation vulnerability in Cisco IOS 12.1E

The Cisco Optical Service Module (OSM) for the Catalyst 6500 and 7600 series running Cisco IOS 12.1(8)E through 12.1(13.4)E allows remote attackers to cause a denial of service (hang) via a malformed packet.

7.8
2002-12-31 CVE-2002-2208 Extended Interior Gateway Routing Protocol
Cisco
Denial Of Service vulnerability in Cisco IOS EIGRP Announcement ARP

Extended Interior Gateway Routing Protocol (EIGRP), as implemented in Cisco IOS 11.3 through 12.2 and other products, allows remote attackers to cause a denial of service (flood) by sending a large number of spoofed EIGRP neighbor announcements, which results in an ARP storm on the local network.

7.8
2002-12-31 CVE-2002-2206 Symantec Local Denial of Service vulnerability in Symantec Norton Antivirus 2001

The POP3 proxy service (POPROXY.EXE) in Norton AntiVirus 2001 allows local users to cause a denial of service (CPU consumption and crash) via a long username with multiple /localhost entries.

7.8
2002-12-31 CVE-2002-2179 Unisys Denial Of Service vulnerability in Unisys Clearpath MCP Portscan

The dynamic initialization feature of the ClearPath MCP environment allows remote attackers to cause a denial of service (crash) via a TCP port scan using a tool such as nmap.

7.8
2003-01-02 CVE-2002-1379 Openldap Unspecified vulnerability in Openldap 2.0

OpenLDAP2 (OpenLDAP 2) 2.2.0 and earlier allows remote or local attackers to execute arbitrary code when libldap reads the .ldaprc file within applications that are running with extra privileges.

7.5
2003-01-02 CVE-2002-1378 Openldap Buffer Overflow vulnerability in Openldap 2.0

Multiple buffer overflows in OpenLDAP2 (OpenLDAP 2) 2.2.0 and earlier allow remote attackers to execute arbitrary code via (1) long -t or -r parameters to slurpd, (2) a malicious ldapfilter.conf file that is not properly handled by getfilter functions, (3) a malicious ldaptemplates.conf that causes an overflow in libldap, (4) a certain access control list that causes an overflow in slapd, or (5) a long generated filename for logging rejected replication requests.

7.5
2002-12-31 CVE-2002-2420 Independent Solution Improper Input Validation vulnerability in Independent Solution Simple Site Searcher and Super Site Searcher

site_searcher.cgi in Super Site Searcher allows remote attackers to execute arbitrary commands via shell metacharacters in the page parameter.

7.5
2002-12-31 CVE-2002-2408 Gordano Unspecified vulnerability in Gordano Ntmail 8.0

Gordano Messaging Server (GMS) Mail 8 (a.k.a.

7.5
2002-12-31 CVE-2002-2391 Webchat ORG
Xoops
SQL Injection vulnerability in multiple products

SQL injection vulnerability in index.php of WebChat 1.5 included in XOOPS 1.0 allows remote attackers to execute arbitrary SQL commands via the roomid parameter.

7.5
2002-12-31 CVE-2002-2385 Hotfoon Corporation Buffer Errors vulnerability in Hotfoon Corporation Hotfoon 4.0

Buffer overflow in hotfoon4.exe in Hotfoon 4.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a URL containing a long voice phone number.

7.5
2002-12-31 CVE-2002-2383 F2Html PL SQL Injection vulnerability in F2Html.Pl

SQL injection vulnerability in f2html.pl 0.1 through 0.4 allows remote attackers to execute arbitrary SQL commands via file names.

7.5
2002-12-31 CVE-2002-2381 KA SHU Wong Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ka-Shu Wong Gtetrinet

Multiple buffer overflows in (1) tetrinet_inmessage, (2) speclist_add and (3) config-getthemeinfo of GTetrinet 0.4.3 and earlier allow remote attackers to casue a denial of service and possibly execute arbitrary code.

7.5
2002-12-31 CVE-2002-2373 Apple Configuration vulnerability in Apple TCP IP Configuration Utility 12640

The default configuration of the TCP/IP printer configuration utility in Apple LaserWriter 12/640 PS printer contains a blank Telnet password, which allows remote attackers to gain access.

7.5
2002-12-31 CVE-2002-2345 Oracle Credentials Management vulnerability in Oracle Application Server 9.0.2

Oracle 9i Application Server 9.0.2 stores the web cache administrator interface password in plaintext, which allows remote attackers to gain access.

7.5
2002-12-31 CVE-2002-2319 Mysimplenews Code Injection vulnerability in Mysimplenews 1.0

Static code injection vulnerability in users.php in MySimpleNews allows remote attackers to inject arbitrary PHP code and HTML via the (1) LOGIN, (2) DATA, and (3) MESS parameters, which are inserted into news.php3.

7.5
2002-12-31 CVE-2002-2305 Phpsecure ORG SQL Injection vulnerability in PHPsecure.Org Immobilier 1.0

SQL injection vulnerability in agentadmin.php in Immobilier allows remote attackers to execute arbitrary SQL commands via the (1) agentname or (2) agentpassword parameter.

7.5
2002-12-31 CVE-2002-2304 Myphpsoft SQL Injection vulnerability in Myphpsoft Myphplinks 2.1.9/2.2.0

SQL injection vulnerability in admin/auth/checksession.php in MyPHPLinks 2.1.9 and 2.2.0 allows remote attackers to execute arbitrary SQL commands via the idsession parameter.

7.5
2002-12-31 CVE-2002-2300 3Com Buffer Errors vulnerability in 3Com Webbngss3Nbxnts 4.0.17/4.1.21/4.1.4

Buffer overflow in ftpd 5.4 in 3Com NBX 4.0.17 or ftpd 5.4.2 in 3Com NBX 4.1.4 allows remote attackers to cause a denial of service (crash) via a long CEL command.

7.5
2002-12-31 CVE-2002-2295 Pico Server Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Pico Server Pico Server

Buffer overflow in Pico Server (pServ) 2.0 beta 1 through beta 5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) a 1024-byte TCP stream message, which triggers an off-by-one buffer overflow, or (2) a long method name in an HTTP request, (3) a long version number in an HTTP request, (4) a long User-Agent header, or (5) a long file path.

7.5
2002-12-31 CVE-2002-2287 Phpbb Code Injection vulnerability in PHPbb Advanced Quick Reply Hack 1.0.0/1.1.0

PHP remote file inclusion vulnerability in quick_reply.php for phpBB Advanced Quick Reply Hack 1.0.0 and 1.1.0 allows remote attackers to execute arbitrary PHP code via the phpbb_root_path parameter.

7.5
2002-12-31 CVE-2002-2277 Portail WEB PHP SQL Injection vulnerability in Portail web PHP Portail web PHP 0.99

SQL injection vulnerability in mod_search/index.php in PortailPHP 0.99 allows remote attackers to execute arbitrary SQL commands via the (1) $rech, (2) $BD_Tab_docs, (3) $BD_Tab_file, (4) $BD_Tab_liens, (5) $BD_Tab_faq, or (6) $chemin variables.

7.5
2002-12-31 CVE-2002-2261 Sendmail Permissions, Privileges, and Access Controls vulnerability in Sendmail

Sendmail 8.9.0 through 8.12.6 allows remote attackers to bypass relaying restrictions enforced by the 'check_relay' function by spoofing a blank DNS hostname.

7.5
2002-12-31 CVE-2002-2252 Atthat COM SQL Injection vulnerability in Atthat.Com Thatware

SQL injection vulnerability in auth.inc.php in Thatware 0.5.0 and earlier allows remote attackers to execute arbitrary SQL commands via a base64-encoded user parameter.

7.5
2002-12-31 CVE-2002-2249 PHP Evolution Code Injection vulnerability in PHP Evolution News Evolution 1.0/2.0

PHP remote file inclusion vulnerability in News Evolution 2.0 allows remote attackers to execute arbitrary PHP commands via the neurl parameter to (1) backend.php, (2) screen.php, or (3) admin/modules/comment.php.

7.5
2002-12-31 CVE-2002-2226 Tftpd32 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Tftpd32

Buffer overflow in tftpd of TFTP32 2.21 and earlier allows remote attackers to execute arbitrary code via a long filename argument.

7.5
2002-12-31 CVE-2002-2219 Chetcpasswd Unspecified vulnerability in Chetcpasswd 2.1

chetcpasswd.cgi in Pedro Lineu Orso chetcpasswd before 2.1 allows remote attackers to read the last line of the shadow file via a long user (userid) field.

7.5
2002-12-31 CVE-2002-2217 Comscripts Remote File Include vulnerability in Comscripts web Server Creator 0.1

Multiple PHP remote file inclusion vulnerabilities in Web Server Creator - Web Portal (WSC-WebPortal) 0.1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) l parameter to customize.php or the (2) pg parameter to index.php.

7.5
2002-12-31 CVE-2002-2204 Redhat Unspecified vulnerability in Redhat Package Manager

The default --checksig setting in RPM Package Manager 4.0.4 checks that a package's signature is valid without listing who signed it, which can allow remote attackers to make it appear that a malicious package comes from a trusted source.

7.5
2002-12-31 CVE-2002-2200 Benjamin Lefevre Remote File Include vulnerability in Benjamin Lefevre Dobermann Forum

Benjamin Lefevre Dobermann FORUM 0.5 and earlier allows remote attackers to remotely include and execute malicious PHP files via the "subpath" variablein (1) entete.php, (2) enteteacceuil.php, (3) index.php, or (4) newtopic.php.

7.5
2002-12-31 CVE-2002-2196 Samba Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Samba

Samba before 2.2.5 does not properly terminate the enum_csc_policy data structure, which may allow remote attackers to execute arbitrary code via a buffer overflow attack.

7.5
2002-12-31 CVE-2002-2190 Artscore Studios Unspecified vulnerability in Artscore Studios Cutecast Forum 1.2

ArtsCore Studios CuteCast Forum 1.2 stores passwords in plaintext under the web document root, which allows remote attackers to obtain the passwords via an HTTP request to a .user file.

7.5
2002-12-31 CVE-2002-2183 Phpshare Remote PHP File Include vulnerability in PHPshare 0.5.2/0.6Beta1/0.6Beta2

phpShare.php in phpShare before 0.6 beta 3 allows remote attackers to include and execute arbitrary PHP scripts from remote servers.

7.5
2002-12-31 CVE-2002-2173 Cerulean Studios Buffer Overflow vulnerability in Trillian IRC Module

Buffer overflow in the IRC module of Trillian 0.725 and 0.73 allowing remote attackers to execute arbitrary code via a long DCC Chat message.

7.5
2002-12-31 CVE-2002-2170 Working Resources INC Unspecified vulnerability in Working Resources Inc. Badblue

Working Resources Inc.

7.5
2002-12-31 CVE-2002-2168 Thorsten Korner SQL Injection vulnerability in Thorsten Korner 123Tkshop 0.2/0.3

SQL injection vulnerability in Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to execute arbitrary SQL queries via various programs including function_describe_item1.inc.php.

7.5
2002-12-31 CVE-2002-2156 Cerulean Studios Remote Security vulnerability in Cerulean Studios Trillian 0.73

Buffer overflow in Trillian 0.73 allows remote IRC servers to execute arbitrary code via a long PING response.

7.5
2002-12-31 CVE-2002-2155 Cerulean Studios Unspecified vulnerability in Cerulean Studios Trillian 0.725/0.73

Format string vulnerability in the error handling of IRC invite responses for Trillian 0.725 and 0.73 allows remote IRC servers to execute arbitrary code via an invite to a channel with format string specifiers in the name.

7.5
2002-12-31 CVE-2002-2153 Oracle Unspecified vulnerability in Oracle Application Server 4.0.8/4.0.8.2

Format string vulnerability in the administrative pages of the PL/SQL module for Oracle Application Server 4.0.8 and 4.0.8 2 allows remote attackers to execute arbitrary code.

7.5
2002-12-31 CVE-2002-2146 Savant Denial Of Service vulnerability in Savant Webserver 3.1

cgitest.exe in Savant Web Server 3.1 and earlier allows remote attackers to cause a denial of service (crash) via a long HTTP request.

7.5
2002-12-31 CVE-2002-2145 Savant Unspecified vulnerability in Savant Webserver

Savant Web Server 3.1 and earlier allows remote attackers to bypass authentication for password protected user folders via a URL with a hex encoded space (%20) and a '.' (%2e) at the end of the filename.

7.5
2002-12-31 CVE-2002-2143 Mysimplenews Remotely Readable Administrator Password vulnerability in Mysimplenews 1.0

The admin.html file in MySimple News 1.0 stores its administrative password in plaintext, which allows remote attackers to gain unauthorized access to the web server by viewing the source of admin.html.

7.5
2002-12-31 CVE-2002-2142 BEA Unspecified vulnerability in BEA Weblogic Integration and Weblogic Server

An undocumented extension for the Servlet mappings in the Servlet 2.3 specification, when upgrading to WebLogic Server and Express 7.0 Service Pack 1 from BEA WebLogic Server and Express 6.0 through 7.0.0.1, does not prepend a "/" character in certain URL patterns, which prevents the proper enforcement of role mappings and policies in applications that use the extension.

7.5
2002-12-31 CVE-2002-2141 BEA Unspecified vulnerability in BEA Weblogic Server 7.0/7.0.0.1

BEA WebLogic Server and Express 7.0 and 7.0.0.1, when running Servlets and Enterprise JavaBeans (EJB) on more than one server, will remove the security constraints and roles on all servers for any Servlets or EJB that are used by an application that is undeployed on one server, which could allow remote attackers to conduct unauthorized activities in violation of the intended restrictions.

7.5
2002-12-31 CVE-2002-2130 Gallery Project Remote Code Execution vulnerability in Gallery Project Gallery 1.3.2

publish_xp_docs.php in Gallery 1.3.2 allows remote attackers to execute arbitrary PHP code by modifying the GALLERY_BASEDIR parameter to reference a URL on a remote web server that contains the code.

7.5
2002-12-31 CVE-2002-2123 Gallery Project Remote Code Execution vulnerability in Gallery Project Gallery 1.3.2

PHP remote file inclusion vulnerability in publish_xp_docs.php for Gallery 1.3.2 allows remote attackers to inject arbitrary PHP code by specifying a URL to an init.php file in the GALLERY_BASEDIR parameter.

7.5
2002-12-31 CVE-2002-2119 Novell Weak Password vulnerability in Novell Edirectory 8.6.2/8.7

Novell eDirectory 8.6.2 and 8.7 use case insensitive passwords, which makes it easier for remote attackers to conduct brute force password guessing.

7.5
2002-12-31 CVE-2002-2114 Netjuke Remote Command Execution vulnerability in Netjuke

Artekopia Netjuke before 1.0 b7 allows remote attackers to execute arbitrary code on the web server, possibly via the section parameter, which is passed to an eval call.

7.5
2002-12-31 CVE-2002-2113 AGH Unspecified vulnerability in AGH Htmlsearch 1.0

search.cgi in AGH HTMLsearch 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the template parameter.

7.5
2002-12-31 CVE-2002-2109 Matt Wright Unspecified vulnerability in Matt Wright Formmail

Matt Wright FormMail 1.9 and earlier allows remote attackers to bypass the HTTP_REFERER check and conduct unauthorized activities via (1) a blank referer, (2) a spoofed referer with a trusted domain/URL after the beginning of the referer, or (3) a spoofed referer with a trusted domain/URL in the beginning (hostname) portion of the referer.

7.5
2002-12-31 CVE-2002-2106 Wikkitikkitavi Remote File Include vulnerability in Wikkitikkitavi 0.10/0.20/0.5

PHP remote file inclusion vulnerability in WikkiTikkiTavi before 0.21 allows remote attackers to execute arbitrary PHP code via the TemplateDir variable, as demonstrated using conflict.php.

7.5
2002-12-31 CVE-2002-2104 Ganglia Remote Command Execution vulnerability in Ganglia PHP RRD web Client 1.0.1

graph.php in Ganglia PHP RRD Web Client 1.0.2 allows remote attackers to execute arbitrary commands via the command parameter, which is provided to the passthru function.

7.5
2002-12-31 CVE-2002-2101 Microsoft Unspecified vulnerability in Microsoft Outlook 2002

Microsoft Outlook 2002 allows remote attackers to execute arbitrary JavaScript code, even when scripting is disabled, via an "about:" or "javascript:" URI in the href attribute of an "a" tag.

7.5
2002-12-31 CVE-2002-2098 Axspawn Buffer Overflow vulnerability in Axspawn 0.2.4.1

Buffer overflow in axspawn.c in Axspawn-pam before 0.2.1a allows remote attackers to execute arbitrary code via large packets.

7.5
2002-12-31 CVE-2002-2096 Novell Remote Manager Authentication Buffer Overflow vulnerability in Novell Netware 5.1/6.0

Buffer overflow in Novell Remote Manager module, httpstk.nlm, in NetWare 5.1 and NetWare 6 allows remote attackers to execute arbitrary code via a long (1) username or (2) password.

7.5
2002-12-31 CVE-2002-2091 Decfingerd Unspecified vulnerability in Decfingerd 0.7

Format string vulnerability in Deception Finger Daemon, decfingerd, 0.7 may allow remote attackers to execute arbitrary code via the username of a finger request.

7.5
2002-12-31 CVE-2002-2082 Floosietek Unspecified vulnerability in Floosietek Ftgateoffice and Ftgatepro

FTGate and FTGate Pro 1.05 lock user mailboxes before authentication succeeds, which allows remote attackers to lock the mailboxes of other users.

7.5
2002-12-31 CVE-2002-2078 Floosietek Heap Overflow vulnerability in Floosietek FTGate APOP Command

Heap-based buffer overflow in Floositek (1) FTGate Pro 1.05 and (2) FTGate Office 1.05 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long POP3 APOP USER command.

7.5
2002-12-31 CVE-2002-2074 Erwin Lansing Unspecified vulnerability in Erwin Lansing Mailidx 20010925

SQL injection vulnerability in Mailidx before 20020105 allows remote attackers to execute arbitrary SQL commands via the search web page.

7.5
2002-12-31 CVE-2002-2064 Phpwebgallery Unspecified vulnerability in PHPwebgallery 1.0

isadmin.php in PhpWebGallery 1.0 allows remote attackers to gain administrative access via by setting the photo_login cookie to pseudo.

7.5
2002-12-31 CVE-2002-2063 Atguard Unspecified vulnerability in Atguard Personal Firewall 3.2

AtGuard 3.2 allows remote attackers to bypass firwall filters and execute prohibited programs by changing the filenames to permitted filenames.

7.5
2002-12-31 CVE-2002-2061 Mozilla
Netscape
Denial-Of-Service vulnerability in Netscape

Heap-based buffer overflow in Netscape 6.2.3 and Mozilla 1.0 and earlier allows remote attackers to crash client browsers and execute arbitrary code via a PNG image with large width and height values and an 8-bit or 16-bit alpha channel.

7.5
2002-12-31 CVE-2002-2060 Twibright Labs Buffer Overflow vulnerability in Twibright Labs Links 2.0Pre4

Buffer overflow in Links 2.0 pre4 allows remote attackers to crash client browsers and possibly execute arbitrary code via gamma tables in large 16-bit PNG images.

7.5
2002-12-31 CVE-2002-2054 Teekai Unspecified vulnerability in Teekai Forum 1.2

TeeKai Forum 1.2 allows remote attackers to authenticate as the administrator and and gain privileged web forum access by setting the valid_level cookie to admin.

7.5
2002-12-31 CVE-2002-2049 DUG Song Unspecified vulnerability in DUG Song Dsniff, Fragroute and Fragrouter

configure for Dsniff 2.3, fragroute 1.2, and fragrouter 1.6, when downloaded from monkey.org on May 17, 2002, has been modified to contain a backdoor, which allows remote attackers to access the system.

7.5
2002-12-31 CVE-2002-2048 Michael Baumer Remote Security vulnerability in Michael Baumer Pfinger 0.7.8

Buffer overflow in PFinger 0.7.8 client allows remote attackers to execute arbitrary code via a long query value passed to the (1) finger program, (2) -l, (3) -d, and (4) -t options.

7.5
2002-12-31 CVE-2002-2046 Xqus Remote Security vulnerability in Xqus X-News 1.1

x_news.php in X-News (x_news) 1.1 and earlier allows remote attackers to gain administrative privileges by stealing and replaying the md5_password cookie.

7.5
2002-12-31 CVE-2002-2043 Cyrus Authentication Patch SQL Command Execution vulnerability in Cyrus SASL LDAP+MySQL

SQL injection vulnerability in the LDAP and MySQL authentication patch for Cyrus SASL 1.5.24 and 1.5.27 allows remote attackers to execute arbitrary SQL commands and log in as arbitrary POP mail users via the password.

7.5
2002-12-31 CVE-2002-2036 SUN Unspecified vulnerability in SUN RAY Server Software 1.3

Sun Ray Server Software (SRSS) 1.3, when Non-Smartcard Mobility (NSCM) is enabled, allows remote attackers to login as another user by running dtlogin from a system that supports the XDMCP client.

7.5
2002-12-31 CVE-2002-2035 Realityscape SQL-Injection vulnerability in Realityscape Mylogin 2000 1.0.0

SQL injection vulnerability in RealityScape MyLogin 2000 1.0.0 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) Username or (2) Password in the login form.

7.5
2002-12-31 CVE-2002-2034 John Hardin Unspecified vulnerability in John Hardin Procmail Email Sanitizer 1.131/1.132

The Email Sanitizer before 1.133 for Procmail allows remote attackers to bypass the mail filter and execute arbitrary code via crafted recursive multipart MIME attachments.

7.5
2002-12-31 CVE-2002-2030 Sqldata Buffer Overflow vulnerability in Sqldata Enterprise Server 3.0

Stack-based buffer overflow in SQLData Enterprise Server 3.0 allows remote attacker to execute arbitrary code and cause a denial of service via a long HTTP request.

7.5
2002-12-31 CVE-2002-2029 Apache Remote File Disclosure vulnerability in Apache Win32 PHP.EXE

PHP, when installed on Windows with Apache and ScriptAlias for /php/ set to c:/php/, allows remote attackers to read arbitrary files and possibly execute arbitrary programs via an HTTP request for php.exe with a filename in the query string.

7.5
2002-12-31 CVE-2002-2027 Doow Unspecified vulnerability in Doow

Database of Our Owlish Wisdom (DOOW) 0.1 through 0.2.1 does not properly verify user permissions, which allows remote attackers to perform unauthorized activities.

7.5
2002-12-31 CVE-2002-2026 Browseftp Buffer Overflow vulnerability in Browseftp Client 1.62

Buffer overflow in BrowseFTP 1.62 client allows remote FTP servers to execute arbitrary code via a long FTP "220" message reply.

7.5
2002-12-31 CVE-2002-2020 Netgear Unspecified vulnerability in Netgear Rp114 3.26

Netgear RP114 Cable/DSL Web Safe Router Firmware 3.26 uses a default administrator password and accepts admin logins on the external interface, which allows remote attackers to gain privileges if the password is not changed.

7.5
2002-12-31 CVE-2002-2019 Oscommerce Code Injection vulnerability in Oscommerce 2.1

PHP remote file inclusion vulnerability in include_once.php in osCommerce (a.k.a.

7.5
2002-12-31 CVE-2002-2015 Postnuke Software Foundation Unspecified vulnerability in Postnuke Software Foundation Postnuke 0.703

PHP file inclusion vulnerability in user.php in PostNuke 0.703 allows remote attackers to include arbitrary files and possibly execute code via the caselist parameter.

7.5
2002-12-31 CVE-2002-2005 SUN Unspecified vulnerability in SUN Java web Start 1.0/1.0.1/1.0.101

Unknown vulnerability in Java web start 1.0.1_01, 1.0.1, 1.0 and 1.0.1.01 (HP-UX 11.x only) allows attackers to gain access to restricted resources via unknown attack vectors.

7.5
2002-12-31 CVE-2002-2002 Compaq Buffer Overflow vulnerability in Compaq Tru64 C Library

Buffer overflow in libc in Compaq Tru64 4.0F, 5.0, 5.1 and 5.1A allows attackers to execute arbitrary code via long (1) LANG and (2) LOCPATH environment variables.

7.5
2002-12-31 CVE-2002-1998 SCO Remote Security vulnerability in SCO Open Unix and Unixware

Buffer overflow in rpc.cmsd in SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows remote attackers to execute arbitrary commands via a long parameter to rtable_create (procedure 21).

7.5
2002-12-31 CVE-2002-1997 Zonelabs Unspecified vulnerability in Zonelabs Zonealarm 3.0

ZoneAlarm Pro 3.0 MailSafe allows remote attackers to bypass filtering and possibly execute arbitrary code via email attachments containing a trailing dot after the file extension.

7.5
2002-12-31 CVE-2002-1991 Oscommerce Code Injection vulnerability in Oscommerce 2.1

PHP file inclusion vulnerability in osCommerce 2.1 execute arbitrary commands via the include_file parameter to include_once.php.

7.5
2002-12-31 CVE-2002-1979 Watchguard Improper Input Validation vulnerability in Watchguard Legacy Rssa, Soho and Vclass

WatchGuard SOHO products running firmware 5.1.6 and earlier, and Vclass/RSSA using 3.2 SP1 and earlier, allows remote attackers to bypass firewall rules by sending a PASV command string as the argument of another command to an FTP server, which generates a response that contains the string, causing IPFilter to treat the response as if it were a legitimate PASV command from the server.

7.5
2002-12-31 CVE-2002-1978 Darren Reed Permissions, Privileges, and Access Controls vulnerability in Darren Reed Ipfilter

IPFilter 3.1.1 through 3.4.28 allows remote attackers to bypass firewall rules by sending a PASV command string as the argument of another command to an FTP server, which generates a response that contains the string, causing IPFilter to treat the response as if it were a legitimate PASV command from the server.

7.5
2002-12-31 CVE-2002-1973 Microsoft
Working Resources INC
Buffer Overflow vulnerability in Microsoft Foundation Class Library ISAPI

Buffer overflow in CHttpServer::OnParseError in the ISAPI extension (Isapi.cpp) when built using Microsoft Foundation Class (MFC) static libraries in Visual C++ 5.0, and 6.0 before SP3, as used in multiple products including BadBlue, allows remote attackers to cause a denial of service (access violation and crash) and possibly execute arbitrary code via a long query string that causes a parsing error.

7.5
2002-12-31 CVE-2002-1964 Wesmo Remote Command Execution vulnerability in Wesmo PHPeventcalendar 1.1

Unknown vulnerability in WesMo phpEventCalendar 1.1 allows remote attackers to execute arbitrary commands via unknown attack vectors.

7.5
2002-12-31 CVE-2002-1962 Finjan Software Unspecified vulnerability in Finjan Software Surfingate 6.0/6.0.1

Finjan Software SurfinGate 6.0 and 6.0 1 allows remote attackers to bypass URL access restrictions via a URL with an IP address instead of a hostname.

7.5
2002-12-31 CVE-2002-1961 Finjan Software Unspecified vulnerability in Finjan Software Surfingate 6.0/6.0.1

Finjan Software SurfinGate 6.0 and 6.0 1 allows remote attackers to bypass URL access restrictions via a URL whose hostname portion uses a fully qualified domain name (FQDN) that ends in a "." (dot).

7.5
2002-12-31 CVE-2002-1957 PEN Buffer Overflow vulnerability in PEN 0.9.1/0.9.2

Buffer overflow in the netlog function in pen.c for Pen 0.9.1 and 0.9.2 allows remote attackers to execute arbitrary commands via malformed log messages.

7.5
2002-12-31 CVE-2002-1952 Phprank Unspecified vulnerability in PHPrank 1.8

phpRank 1.8 does not properly check the return codes for MySQL operations when authenticating users, which could allow remote attackers to authenticate using a NULL password when database errors occur or if the database is unavailable.

7.5
2002-12-31 CVE-2002-1951 Goahead Software Remote Arbitrary Command Execution vulnerability in Goahead Software Goahead Webserver 2.1

Buffer overflow in GoAhead WebServer 2.1 allows remote attackers to execute arbitrary code via a long HTTP GET request with a large number of subdirectories.

7.5
2002-12-31 CVE-2002-1938 Virgil Remote Command Execution vulnerability in Virgil CGI Scanner 0.9

Virgil CGI Scanner 0.9 allows remote attackers to execute arbitrary commands via the (1) tar (TARGET) or (2) zielport (ZIELPORT) parameters.

7.5
2002-12-31 CVE-2002-1936 Utstarcom Unspecified vulnerability in Utstarcom BAS 1000 3.1.10

UTStarcom BAS 1000 3.1.10 creates several default or back door accounts and passwords, which allows remote attackers to gain access via (1) field account with a password of "*field", (2) guru account with a password of "*3noguru", (3) snmp account with a password of "snmp", or (4) dbase account with a password of "dbase".

7.5
2002-12-31 CVE-2002-1932 Microsoft Unspecified vulnerability in Microsoft Windows 2000 and Windows XP

Microsoft Windows XP and Windows 2000, when configured to send administrative alerts and the "Do not overwrite events (clear log manually)" option is set, does not notify the administrator when the log reaches its maximum size, which allows local users and remote attackers to avoid detection.

7.5
2002-12-31 CVE-2002-1930 AN Buffer Overflow vulnerability in AN HTTPD Malformed SOCKS4 Request

Buffer overflow in AN HTTPd 1.38 through 1.4.1c allows remote attackers to execute arbitrary code via a SOCKS4 request with a long username.

7.5
2002-12-31 CVE-2002-1923 Oracle Unspecified vulnerability in Oracle Mysql

The default configuration in MySQL 3.20.32 through 3.23.52, when running on Windows, does not have logging enabled, which could allow remote attackers to conduct activities without detection.

7.5
2002-12-31 CVE-2002-1921 Oracle Unspecified vulnerability in Oracle Mysql

The default configuration of MySQL 3.20.32 through 3.23.52, when running on Windows, does set the bind address to the loopback interface, which allows remote attackers to connect to the database.

7.5
2002-12-31 CVE-2002-1919 Virtual Programming SQL Injection vulnerability in Virtual Programming Vp-Asp 4.0

SQL injection vulnerability in shopadmin.asp in VP-ASP 4.0 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username or (2) password fields.

7.5
2002-12-31 CVE-2002-1904 Gaztek Buffer Overflow vulnerability in ghttpd Log() Function

Buffer overflow in the Log function in util.c in GazTek ghttpd 1.4 through 1.4.3 allows remote attackers to execute arbitrary code via a long HTTP GET request.

7.5
2002-12-31 CVE-2002-1891 Ayman AKT Remote Buffer Overflow vulnerability in Ayman AKT Ircit 0.3.1

Buffer overflow in IRCIT 0.3.1 IRC client allows remote attackers to execute arbitrary code via a long invite request.

7.5
2002-12-31 CVE-2002-1887 Gregory Kokanosky Remote File Include vulnerability in Gregory Kokanosky PHPmynewsletter 0.6.10

PHP remote file inclusion vulnerability in customize.php for phpMyNewsletter 0.6.10 allows remote attackers to execute arbitrary PHP code via the l parameter.

7.5
2002-12-31 CVE-2002-1885 Powerphlogger Remote File Include vulnerability in Powerphlogger 2.0.9/2.2.1/2.2.2A

PHP remote file inclusion vulnerability in showhits.php3 for PowerPhlogger (PPhlogger) 2.0.9 through 2.2.2 allows remote attackers to execute arbitrary PHP code via the rel_path parameter.

7.5
2002-12-31 CVE-2002-1884 PY Membres Unspecified vulnerability in Py-Membres 3.1

index.php in Py-Membres 3.1 allows remote attackers to log in as an administrator by setting the pymembs parameter to "admin".

7.5
2002-12-31 CVE-2002-1882 Oracle Authentication Bypassing vulnerability in Oracle E-Business Suite

Unknown vulnerability in AolSecurityPrivate.class in Oracle E-Business Suite 11i 11.1 through 11.6 allows remote attackers to bypass user authentication checks via unknown attack vectors.

7.5
2002-12-31 CVE-2002-1879 Lokwa SQL Injection vulnerability in Lokwa Lokwabb 1.2.1

SQL injection vulnerability in LokwaBB 1.2.2 allows remote attackers to execute arbitrary SQL commands via the (1) member parameter to member.php or (2) loser parameter to misc.php.

7.5
2002-12-31 CVE-2002-1877 Netgear Permissions, Privileges, and Access Controls vulnerability in Netgear Fm114P

NETGEAR FM114P allows remote attackers to bypass access restrictions for web sites via a URL that uses the IP address instead of the hostname.

7.5
2002-12-31 CVE-2002-1870 SWS Unspecified vulnerability in SWS Simple web Server

Simple Web Server (SWS) 0.0.4 through 0.1.0 does not properly handle when the recv function call fails, which may allow remote attackers to overwrite program data or perform actions on an uninitialized heap, leading to a denial of service and possibly code execution.

7.5
2002-12-31 CVE-2002-1867 Bizdesign Unspecified vulnerability in Bizdesign Imagefolio 2.23/2.24/2.26

The default configuration of BizDesign ImageFolio 2.23 through 2.26 does not control access to (1) admin/setup.cgi, which allows remote attackers to create an administrative account, or (2) admin/nph-build.cgi, which allows remote attackers to cause a denial of service (CPU consumption).

7.5
2002-12-31 CVE-2002-1851 Ipswitch Buffer Overflow vulnerability in Ipswitch WS FTP PRO 7.5

Buffer overflow in WS_FTP Pro 7.5 allows remote attackers to execute code on a client system via unknown attack vectors.

7.5
2002-12-31 CVE-2002-1847 Microsoft Unspecified vulnerability in Microsoft Windows Media Player

Buffer overflow in mplay32.exe of Microsoft Windows Media Player (WMP) 6.3 through 7.1 allows remote attackers to execute arbitrary commands via a long mp3 filename command line argument.

7.5
2002-12-31 CVE-2002-1843 Perlbot Remote Command Execution vulnerability in Perlbot 1.9.2

Perlbot 1.9.2 allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the $text variable in SpelCheck.pm or (2) the $filename variable in HTMLPlog.pm.

7.5
2002-12-31 CVE-2002-1842 Perlbot Remote Command Execution vulnerability in Perlbot 1.0Beta

Perlbot 1.0 beta allows remote attackers to execute arbitrary commands via shell metacharacters in (1) a word that is being spell checked or (2) an e-mail address.

7.5
2002-12-31 CVE-2002-1835 Xerox Unspecified vulnerability in Xerox Docutech 6110 and Docutech 6115

The default configuration of Xerox DocuTech 6110 and DocuTech 6115 running Solaris 8.0 has a large number of unnecessary services enabled such as RPC and sprayd, which could allow remote attackers to obtain access to the device.

7.5
2002-12-31 CVE-2002-1833 Xerox Unspecified vulnerability in Xerox Docutech 6110 and Docutech 6115

The default configurations for DocuTech 6110 and DocuTech 6115 have a default administrative password of (1) "service!" on Solaris 8.0 or (2) "administ" on Windows NT, which allows remote attackers to gain privileges.

7.5
2002-12-31 CVE-2002-1823 Lonerunner Remote Buffer Overflow vulnerability in Lonerunner Zeroo Http Server 1.5

Buffer overflow in the HttpGetRequest function in Zeroo HTTP server 1.5 allows remote attackers to execute arbitrary code via a long HTTP request.

7.5
2002-12-31 CVE-2002-1820 Ultimate PHP Board Unspecified vulnerability in Ultimate PHP Board Ultimate PHP Board 1.0/1.0Beta

register.php in Ultimate PHP Board (UPB) 1.0 and 1.0b uses an administrative account Admin with a capital "A," but allows a remote attacker to impersonate the administrator by registering an account name of admin with a lower case "a."

7.5
2002-12-31 CVE-2002-1817 Symantec Veritas Unspecified vulnerability in Symantec Veritas Cluster Server

Unknown vulnerability in Veritas Cluster Server (VCS) 1.2 for WindowsNT, Cluster Server 1.3.0 for Solaris, and Cluster Server 1.3.1 for HP-UX allows attackers to gain privileges via unknown attack vectors.

7.5
2002-12-31 CVE-2002-1816 Yann Ramin Buffer Overflow vulnerability in Yann Ramin Atphttpd 0.4/0.4B

Off-by-one buffer overflow in the sock_gets function in sockhelp.c for ATPhttpd 0.4b and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request.

7.5
2002-12-31 CVE-2002-1810 D Link Unspecified vulnerability in D-Link Dwl-900Ap+ 2.1/2.2

D-Link DWL-900AP+ Access Point 2.1 and 2.2 allows remote attackers to access the TFTP server without authentication and read the config.img file, which contains sensitive information such as the administrative password, the WEP encryption keys, and network configuration information.

7.5
2002-12-31 CVE-2002-1809 Oracle Unspecified vulnerability in Oracle Mysql

The default configuration of the Windows binary release of MySQL 3.23.2 through 3.23.52 has a NULL root password, which could allow remote attackers to gain unauthorized root access to the MySQL database.

7.5
2002-12-31 CVE-2002-1788 KIM Storm Unspecified vulnerability in KIM Storm NN

Format string vulnerability in the nn_exitmsg function in nn 6.6.0 through 6.6.3 allows remote NNTP servers to execute arbitrary code via format strings in server responses.

7.5
2002-12-31 CVE-2002-1781 Delegate Buffer Overflow vulnerability in Delegate POP Proxy USER

Multiple buffer overflows in DeleGate 7.7.0 through 7.8.1 allow remote attackers to execute arbitrary code, as demonstrated using a long USER command to the POP proxy.

7.5
2002-12-31 CVE-2002-1779 Symantec Unspecified vulnerability in Symantec Norton Personal Firewall 2002

The "block fragmented IP Packets" option in Symantec Norton Personal Firewall 2002 (NPW) does not properly protect against certain attacks on Windows vulnerabilities such as jolt2 (CVE-2000-0305).

7.5
2002-12-31 CVE-2002-1778 Symantec Unspecified vulnerability in Symantec Norton Personal Firewall 2002

Symantec Norton Personal Firewall 2002 allows remote attackers to bypass the portscan protection by using a (1) SYN/FIN, (2) SYN/FIN/URG, (3) SYN/FIN/PUSH, or (4) SYN/FIN/URG/PUSH scan.

7.5
2002-12-31 CVE-2002-1777 Symantec Unspecified vulnerability in Symantec Norton Antivirus 2002

** DISPUTED ** NOTE: this issue has been disputed by the vendor.

7.5
2002-12-31 CVE-2002-1776 Symantec Unspecified vulnerability in Symantec Norton Antivirus 2002

** DISPUTED ** NOTE: this issue has been disputed by the vendor.

7.5
2002-12-31 CVE-2002-1775 Symantec Unspecified vulnerability in Symantec Norton Antivirus 2002

** DISPUTED ** NOTE: this issue has been disputed by the vendor.

7.5
2002-12-31 CVE-2002-1774 Symantec Unspecified vulnerability in Symantec Norton Antivirus 2002

** DISPUTED ** NOTE: this issue has been disputed by the vendor.

7.5
2002-12-31 CVE-2002-1773 Mirabilis Denial Of Service vulnerability in Mirabilis ICQ for Macos X 2.6Xbeta

Buffer overflow in ICQ 2.6x for MacOS X 10.0 through 10.1.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long request.

7.5
2002-12-31 CVE-2002-1769 Microsoft Unspecified vulnerability in Microsoft Site Server and Site Server Commerce

Microsoft Site Server 3.0 prior to SP4 installs a default user, LDAP_Anonymous, with a default password of LdapPassword_1, which allows remote attackers the "Log on locally" privilege.

7.5
2002-12-31 CVE-2002-1760 Phprojekt SQL Injection vulnerability in PHProjekt

Multiple SQL injection vulnerabilities in PHProjekt 2.0 through 3.1 allow remote attackers to execute arbitrary SQL commands via the unknown attack vectors.

7.5
2002-12-31 CVE-2002-1757 Phprojekt Unspecified vulnerability in PHProjekt

PHProjekt 2.0 through 3.1 relies on the $PHP_SELF variable for authentication, which allows remote attackers to bypass authentication for scripts via a request to a .php file with "sms" in the URL, which is included in the PATH_INFO portion of the $PHP_SELF variable, as demonstrated using "mail_send.php/sms".

7.5
2002-12-31 CVE-2002-1726 Brokenbytes Unspecified vulnerability in Brokenbytes Photodb 1.4

secure_inc.php in PhotoDB 1.4 allows remote attackers to bypass authentication via a URL with a large Time parameter, non-empty rmtusername and rmtpassword parameter, and an accesslevel parameter that is lower than the access level of the requested page.

7.5
2002-12-31 CVE-2002-1720 Outfront Unspecified vulnerability in Outfront Spooky Login

SQL injection vulnerability in Spooky Login 2.0 through 2.5 allows remote attackers to bypass authentication and gain privileges via the password field.

7.5
2002-12-31 CVE-2002-1665 Yahoo Denial-Of-Service vulnerability in Yahoo Messenger 5.0

Buffer overflow in Yahoo! Messenger before February 2002 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long set_buddygrp field.

7.5
2002-12-31 CVE-2002-1660 Jelsoft OS Command Injection vulnerability in Jelsoft Vbulletin

calendar.php in vBulletin before 2.2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the command parameter.

7.5
2002-12-31 CVE-2002-1656 Xqus Unspecified vulnerability in Xqus X-News 1.0/1.1

X-News (x_news) 1.1 and earlier allows attackers to authenticate as other users by obtaining the MD5 checksum of the password, e.g.

7.5
2002-12-31 CVE-2002-1654 Iplanet
Netscape
Authentication Attacks vulnerability in Netscape Enterprise Web Server Brute Force

iPlanet Web Server Enterprise Edition and Netscape Enterprise Server 4.0 and 4.1 allows remote attackers to conduct HTTP Basic Authentication via the wp-force-auth Web Publisher command, which provides a distinct attack vector and may make it easier to conduct brute force password guessing without detection.

7.5
2002-12-31 CVE-2002-1652 MIT Remote Buffer Overflow vulnerability in MIT Cgiemail 1.6

Buffer overflow in cgicso.c for cgiemail 1.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long query parameter.

7.5
2002-12-31 CVE-2002-1650 Squirrelmail Remote Security vulnerability in Squirrelmail 1.2.2

The spell checker plugin (check_me.mod.php) for SquirrelMail before 1.2.3 allows remote attackers to execute arbitrary commands via a modified sqspell_command parameter.

7.5
2002-12-31 CVE-2002-1648 Squirrelmail Unspecified vulnerability in Squirrelmail 1.2.2

Cross-site request forgery (CSRF) vulnerability in compose.php in SquirrelMail before 1.2.3 allows remote attackers to send email as other users via an IMG URL with modified send_to and subject parameters.

7.5
2002-12-31 CVE-2002-1646 SSH Unspecified vulnerability in SSH Secure Shell FOR Servers

SSH Secure Shell for Servers 3.0.0 to 3.1.1 allows remote attackers to override the AllowedAuthentications configuration and use less secure authentication schemes (e.g.

7.5
2002-12-31 CVE-2002-1631 Oracle Information Disclosure vulnerability in Oracle 9i Application Server Sample Scripts

SQL injection vulnerability in the query.xsql sample page in Oracle 9i Application Server (9iAS) allows remote attackers to execute arbitrary code via the sql parameter.

7.5
2002-12-31 CVE-2002-1630 Oracle Information Disclosure vulnerability in Oracle 9i Application Server Sample Scripts

The sendmail.jsp sample page in Oracle 9i Application Server (9iAS) allows remote attackers to send arbitrary emails.

7.5
2002-12-31 CVE-2002-1622 IBM Remote Security vulnerability in IBM AIX 4.3

Buffer overflow in certain RPC routines in IBM AIX 4.3 may allow attackers to execute arbitrary code, related to a "variable data type."

7.5
2003-01-02 CVE-2002-1384 Easy Software Products
Xpdf
Integer Overflow vulnerability in Xpdf/CUPS pdftops

Integer overflow in pdftops, as used in Xpdf 2.01 and earlier, xpdf-i, and CUPS before 1.1.18, allows local users to execute arbitrary code via a ColorSpace entry with a large number of elements, as demonstrated by cups-pdf.

7.2
2002-12-31 CVE-2002-2396 Remi Lefebvre Buffer Errors vulnerability in Remi Lefebvre Advanced Tftp 0.5/0.6

Buffer overflow in Advanced TFTP (atftp) 0.5 and 0.6, if installed setuid or setgid, may allow local users to execute arbitrary code via a long argument to the -g option.

7.2
2002-12-31 CVE-2002-2382 Cvsup Link Following vulnerability in Cvsup 1.2

cvsupd.sh in CVSup 1.2 allows local users to overwrite arbitrary files and gain privileges via a symlink attack on /var/tmp/cvsupd.out.

7.2
2002-12-31 CVE-2002-2363 HP Permissions, Privileges, and Access Controls vulnerability in HP Hp-Ux 11.00

VJE.VJE-RUN in HP-UX 11.00 adds bin to /etc/PATH, which could allow local users to gain privileges.

7.2
2002-12-31 CVE-2002-2324 Microsoft Permissions, Privileges, and Access Controls vulnerability in Microsoft Windows XP

The "System Restore" directory and subdirectories, and possibly other subdirectories in the "System Volume Information" directory on Windows XP Professional, have insecure access control list (ACL) permissions, which allows local users to access restricted files and modify registry settings.

7.2
2002-12-31 CVE-2002-2267 Bogofilter Unspecified vulnerability in Bogofilter Bogopass Email Filter 0.9.0.4

bogopass in bogofilter 0.9.0.4 allows local users to overwrite arbitrary files via a symlink attack on the bogopass temporary file.

7.2
2002-12-31 CVE-2002-2259 Suse
Gnuplot
Buffer Errors vulnerability in Gnuplot 3.7

Buffer overflow in the French documentation patch for Gnuplot 3.7 in SuSE Linux before 8.0 allows local users to execute arbitrary code as root via unknown attack vectors.

7.2
2002-12-31 CVE-2002-2197 SUN Denial Of Service vulnerability in Sun Solaris /dev/poll Null Pointer Dereference

Unknown vulnerability in Sun Solaris 8.0 allows local users to cause a denial of service (kernel panic) via a program that uses /dev/poll, triggering a NULL pointer dereference.

7.2
2002-12-31 CVE-2002-2099 GNU Local Security vulnerability in GNU Data Display Debugger 3.3.1

Buffer overflow in the GNU DataDisplay Debugger (DDD) 3.3.1 allows local users to execute arbitrary code and possibly gain privileges via a long HOME environment variable.

7.2
2002-12-31 CVE-2002-2042 QNX Unspecified vulnerability in QNX Rtos 4.25/6.1.0

ptrace in the QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows programs to attach to privileged processes, which could allow local users to execute arbitrary code by modifying running processes.

7.2
2002-12-31 CVE-2002-2041 QNX Buffer Overflow vulnerability in QNX Rtos 6.1.0

Multiple buffer overflows in realtime operating system (RTOS) 6.1.0 allows local users to execute arbitrary code via (1) a long ABLANG environment variable in phlocale or (2) a long -u option to pkg-installer.

7.2
2002-12-31 CVE-2002-2040 QNX Unspecified vulnerability in QNX Rtos 4.25/6.1.0

The (1) phrafx and (2) phgrafx-startup programs in QNX realtime operating system (RTOS) 4.25 and 6.1.0 do not properly drop privileges before executing the system command, which allows local users to execute arbitrary commands by modifying the PATH environment variable to reference a malicious crttrap program.

7.2
2002-12-31 CVE-2002-2022 Kaffe Unspecified vulnerability in Kaffe Openvm 1.0.6

Format string vulnerability in Kaffe OpenVM 1.0.6 and earlier allows local users to execute arbitrary code, when a java.lang.NoClassDefFoundError is thrown, via format specifiers in the forName attribute.

7.2
2002-12-31 CVE-2002-2018 SAS Unspecified vulnerability in SAS Base and Integration Technologies

sastcpd in SAS/Base 8.0 might allow local users to gain privileges by setting the netencralg environment variable, which causes a segmentation fault.

7.2
2002-12-31 CVE-2002-2016 User Mode Linux Unspecified vulnerability in User-Mode Linux User-Mode Linux 2.4.17.8

User-mode Linux (UML) 2.4.17-8 does not restrict access to kernel address space, which allows local users to execute arbitrary code.

7.2
2002-12-31 CVE-2002-1980 SUN Local Buffer Overflow vulnerability in Sun Solaris Volume Manager

Buffer overflow in Volume Manager daemon (vold) of Sun Solaris 2.5.1 through 8 allows local users to execute arbitrary code via unknown attack vectors.

7.2
2002-12-31 CVE-2002-1948 Gringotts Buffer Overflow vulnerability in Gringotts 0.5.9

Multiple buffer overflows in Gringotts 0.5.9 allows local users to execute arbitrary commands via unknown attack vectors.

7.2
2002-12-31 CVE-2002-1933 Microsoft Unspecified vulnerability in Microsoft Windows 2000 Terminal Services

The terminal services screensaver for Microsoft Windows 2000 does not automatically lock the terminal window if the window is minimized, which could allow local users to gain access to the terminal server window.

7.2
2002-12-31 CVE-2002-1898 Apple Unspecified vulnerability in Apple mac OS X 10.2

Terminal 1.3 in Apple Mac OS X 10.2 allows remote attackers to execute arbitrary commands via shell metacharacters in a telnet:// link, which is executed by Terminal.app window.

7.2
2002-12-31 CVE-2002-1896 Alsaplayer Unspecified vulnerability in Alsaplayer 0.99.71

Buffer overflow in Alsaplayer 0.99.71, when installed setuid root, allows local users to execute arbitrary code via a long (1) -f or (2) -o command line argument.

7.2
2002-12-31 CVE-2002-1871 SUN Unspecified vulnerability in SUN Solaris and Sunos

pkgadd in Sun Solaris 2.5.1 through 8 installs files setuid/setgid root if the pkgmap file contains a "?" (question mark) in the (1) mode, (2) owner, or (3) group fields, which allows attackers to elevate privileges.

7.2
2002-12-31 CVE-2002-1844 Microsoft Unspecified vulnerability in Microsoft Windows Media Player 6.3

Microsoft Windows Media Player (WMP) 6.3, when installed on Solaris, installs executables with world-writable permissions, which allows local users to delete or modify the executables to gain privileges.

7.2
2002-12-31 CVE-2002-1812 Gdam Buffer Overflow vulnerability in Gdam 0.933/0.942

Buffer overflow in gdam123 0.933 and 0.942 allows local users to execute arbitrary code via a long filename parameter.

7.2
2002-12-31 CVE-2002-1789 Newsx Unspecified vulnerability in Newsx 1.4Pl6

Format string vulnerability in newsx NNTP client before 1.4.8 allows local users to execute arbitrary code via format string specifiers that are not properly handled in a call to the syslog function.

7.2
2002-12-31 CVE-2002-1767 Oracle Local Command Parameter Buffer Overflow vulnerability in Oracle Database Server 8.1.5

Buffer overflow in tnslsnr of Oracle 8i Database Server 8.1.5 for Linux allows local users to execute arbitrary code as the oracle user via a long command line argument.

7.2
2002-12-31 CVE-2002-1749 Microsoft Unspecified vulnerability in Microsoft Windows 2000

Windows 2000 Terminal Services, when using the disconnect feature of the client, does not properly lock itself if it is left idle until the screen saver activates and the user disconnects, which could allow attackers to gain administrator privileges.

7.2
2002-12-31 CVE-2002-1748 Open Source Development Network Unspecified vulnerability in Open Source Development Network Slashcode

Unknown vulnerability in Slash 2.1.x and 2.2 through 2.2.2, as used in Slashcode, allows remote authenticated users to gain access to arbitrary accounts.

7.2
2002-12-31 CVE-2002-1741 ALT N Unspecified vulnerability in Alt-N Worldclient

Directory traversal vulnerability in WorldClient.cgi in WorldClient for Alt-N Technologies MDaemon 5.0.5.0 and earlier allows local users to delete arbitrary files via a ".." (dot dot) in the Attachments parameter.

7.2
2002-12-31 CVE-2002-1735 Davin Mccall Buffer Overflow vulnerability in Davin Mccall Dlogin 1.0A

Buffer overflow in dlogin 1.0a could allow local users to gain privileges via unknown attack vectors.

7.2
2002-12-31 CVE-2002-1715 SSH Unspecified vulnerability in SSH and Ssh2

SSH 1 through 3, and possibly other versions, allows local users to bypass restricted shells such as rbash or rksh by uploading a script to a world-writeable directory, then executing that script to gain normal shell access.

7.2
2002-12-31 CVE-2002-1617 HP Unspecified vulnerability in HP Tru64 5.1Bpk2Bl22

Multiple buffer overflows in HP Tru64 UNIX 5.x allow local users to execute arbitrary code via (1) a long -contextDir argument to dtaction, (2) a long -p argument to dtprintinfo, (3) a long -customization argument to dxterm, or (4) a long DISPLAY environment variable to dtterm.

7.2
2002-12-31 CVE-2002-2355 Netgear Credentials Management vulnerability in Netgear Fm114P

Netgear FM114P firmware 1.3 wireless firewall, when configured to backup configuration information, stores DDNS (DynDNS) user name and password, MAC address filtering table and possibly other information in cleartext, which could allow local users to obtain sensitive information.

7.1
2002-12-31 CVE-2002-2328 Microsoft Improper Input Validation vulnerability in Microsoft Windows 2000

Active Directory in Windows 2000, when supporting Kerberos V authentication and GSSAPI, allows remote attackers to cause a denial of service (hang) via an LDAP client that sets the page length to zero during a large request.

7.1

464 Medium Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2002-12-31 CVE-2002-2407 QNX Permissions, Privileges, and Access Controls vulnerability in QNX Rtos 6.2/6.2A

Certain patches for QNX Neutrino realtime operating system (RTOS) 6.2.0 set insecure permissions for the files (1) /sbin/io-audio by OS Update Patch A, (2) /bin/shutdown, (3) /sbin/fs-pkg, and (4) phshutdown by QNX experimental patches, (5) cpim, (6) vpim, (7) phrelaycfg, and (8) columns, (9) othello, (10) peg, (11) solitaire, and (12) vpoker in the games pack 2.0.3, which allows local users to gain privileges by modifying the files before permissions are changed.

6.9
2002-12-31 CVE-2002-2282 Mcafee Unspecified vulnerability in Mcafee Virusscan 4.5.1

McAfee VirusScan 4.5.1, when the WebScanX.exe module is enabled, searches for particular DLLs from the user's home directory, even when browsing the local hard drive, which allows local users to run arbitrary code via malicious versions of those DLLs.

6.9
2002-12-31 CVE-2002-2415 Alliedtelesyn Improper Input Validation vulnerability in Alliedtelesyn At-8024 and Rapier 24

Allied Telesyn AT-8024 1.3.1 and Rapier 24 switches allow remote authenticated users to cause a denial of service in the management interface via a stream of zero (null) bytes sent via UDP to a running service.

6.8
2002-12-31 CVE-2002-2366 Cerulean Studios Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Cerulean Studios Trillian 0.6351/0.725/0.73

Buffer overflow in the XML parser of Trillian 0.6351, 0.725 and 0.73 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a skin with a long colors file name in trillian.xml.

6.8
2002-12-31 CVE-2002-2299 Atthat COM Code Injection vulnerability in Atthat.Com Thatware

PHP remote file inclusion vulnerability in thatfile.php in Thatware 0.3 through 0.5.2 allows remote attackers to execute arbitrary PHP code via the root_path parameter.

6.8
2002-12-31 CVE-2002-2298 Atthat COM Code Injection vulnerability in Atthat.Com Thatware

PHP remote file inclusion vulnerability in config.php in Thatware 0.3 through 0.5.3 allows remote attackers to execute arbitrary PHP code via the root_path parameter.

6.8
2002-12-31 CVE-2002-2297 Atthat COM Code Injection vulnerability in Atthat.Com Thatware 0.5.2/0.5.3

PHP remote file inclusion vulnerability in artlist.php in Thatware 0.5.2 and 0.5.3 allows remote attackers to execute arbitrary PHP code via the root_path parameter.

6.8
2002-12-31 CVE-2002-2180 Openbsd Unspecified vulnerability in Openbsd

The setitimer(2) system call in OpenBSD 2.0 through 3.1 does not properly check certain arguments, which allows local users to write to kernel memory and possibly gain root privileges, possibly via an integer signedness error.

6.8
2002-12-31 CVE-2002-1729 Aspjar HTML Injection vulnerability in Aspjar Guestbook 1.0

Cross-site scripting vulnerability (XSS) in ASPjar Guestbook 1.00 allows remote attackers to execute arbitrary script as other users via the "web site" parameter in a guestbook message.

6.8
2002-12-31 CVE-2002-1727 Asksam Systems Cross-Site Scripting vulnerability in askSam Web Publisher 1.0/4.0

Cross-site scripting vulnerability (XSS) in (1) as_web.exe and (2) as_web4.exe in askSam Web Publisher 1 and 4 allows remote attackers to execute arbitrary script as other users via a URL.

6.8
2002-12-31 CVE-2002-1724 Onlinetools ORG Cross-Site Scripting vulnerability in Onlinetools.Org PHPimageview 1.0

Cross-site scripting vulnerability (XSS) in phpimageview.php for PHPImageView 1.0 allows remote attackers to execute arbitrary script as other users via the pic parameter.

6.8
2002-12-31 CVE-2002-1708 Basilix Unspecified vulnerability in Basilix Webmail 1.1.0

Cross-site scripting vulnerability (XSS) in BasiliX Webmail 1.10 allows remote attackers to execute arbitrary script as other users by injecting script into the (1) subject or (2) message fields.

6.8
2002-12-31 CVE-2002-1703 Mewsoft Cross-Site Scripting vulnerability in Mewsoft Netauction 3.0

Cross-site scripting vulnerability (XSS) in auction.cgi for Mewsoft NetAuction 3.0 allows remote attackers to execute arbitrary script as other users via the Term parameter.

6.8
2002-12-31 CVE-2002-1681 Open Source Development Network Unspecified vulnerability in Open Source Development Network Slashcode

Cross-site scripting (XSS) vulnerability in Slashcode CVS releases June 17 through July 1 2002 allows remote attackers to execute arbitrary script as other users by injecting script into the paragraph <P> tag.

6.8
2002-12-31 CVE-2002-1662 Mambo HTML Injection vulnerability in Mambo Site Server 4.0.11

Multiple cross-site scripting (XSS) vulnerabilities in Mambo Site Server 4.0.11 allow remote attackers to execute arbitrary script on other clients via (1) search.php and (2) the "Your name" field during account registration.

6.8
2002-12-31 CVE-2002-2263 HP Configuration vulnerability in HP Visualize Conference FTP B.11.00.11

The installation program for HP-UX Visualize Conference B.11.00.11 running on HP-UX 11.00 and 11.11 installs /etc/dt and its subdirecties with insecure permissions, which allows local users to read or write arbitrary files.

6.6
2002-12-31 CVE-2002-2423 Sendmail Improper Input Validation vulnerability in Sendmail

Sendmail 8.12.0 through 8.12.6 truncates log messages longer than 100 characters, which allows remote attackers to prevent the IP address from being logged via a long IDENT response.

6.4
2002-12-31 CVE-2002-2399 Cascadesoft Path Traversal vulnerability in Cascadesoft W3Mail 1.0.6

Directory traversal vulnerability in viewAttachment.cgi in W3Mail 1.0.6 allows remote attackers to read arbitrary files via a ..

6.4
2002-12-31 CVE-2002-2392 Nullsoft Unspecified vulnerability in Nullsoft Winamp

Winamp 2.65 through 3.0 stores skin files in a predictable file location, which allows remote attackers to execute arbitrary code via a URL reference to (1) wsz and (2) wal files that contain embedded code.

6.4
2002-12-31 CVE-2002-2380 Arescom
Microsoft
Information Exposure vulnerability in Microsoft Network Firmware 5.5.11

NetDSL ADSL Modem 800 with Microsoft Network firmware 5.5.11 allows remote attackers to gain access to configuration menus by sniffing undocumented usernames and passwords from network traffic.

6.4
2002-12-31 CVE-2002-2356 Hamweather Permissions, Privileges, and Access Controls vulnerability in Hamweather

HAMweather 2.x allows remote attackers to modify administrative settings and obtain sensitive information via a direct request to hwadmin.cgi.

6.4
2002-12-31 CVE-2002-2353 Tftpd32 Permissions, Privileges, and Access Controls vulnerability in Tftpd32 2.50/2.50.2

tftpd32 2.50 and 2.50.2 allows remote attackers to read or write arbitrary files via a full pathname in GET and PUT requests.

6.4
2002-12-31 CVE-2002-2351 Qualcomm Path Traversal vulnerability in Qualcomm Eudora

Eudora 5.1 allows remote attackers to bypass security warnings and possibly execute arbitrary code via attachments with names containing a trailing "." (dot).

6.4
2002-12-31 CVE-2002-2311 Microsoft
Opera Software
Permissions, Privileges, and Access Controls vulnerability in multiple products

Microsoft Internet Explorer 6.0 and possibly others allows remote attackers to upload arbitrary file contents when users press a key corresponding to the JavaScript (1) event.ctrlKey or (2) event.shiftKey onkeydown event contained in a webpage.

6.4
2002-12-31 CVE-2002-2302 3D3 COM Permissions, Privileges, and Access Controls vulnerability in 3D3.Com Shopfactory 5.5/5.6/5.8

3D3.Com ShopFactory 5.5 through 5.8 allows remote attackers to modify the prices in their shopping carts by modifying the price in a hidden form field.

6.4
2002-12-31 CVE-2002-2284 Netscape Unspecified vulnerability in Netscape Communicator

Netscape Communicator 4.0 through 4.79 allows remote attackers to bypass JVM security and execute arbitrary Java code via an applet that loads user-supplied Java classes.

6.4
2002-12-31 CVE-2002-2265 HP
Open Source Internet Solutions
Permissions, Privileges, and Access Controls vulnerability in Open Source Internet Solutions Open Source Internet Solutions 5.4

Unspecified vulnerability in LDAP Module in System Authentication of Open Source Internet Solutions (OSIS) 5.4 running on Tru64 UNIX 4.0G and 4.0F allows remote attackers to gain access to arbitrary files or gain privileges via unknown attack vectors.

6.4
2002-12-31 CVE-2002-2242 Kismac Permissions, Privileges, and Access Controls vulnerability in Kismac

The Apple Package Manager in KisMAC 0.02a and earlier modifies file permissions of sensitive files after installation, which could allow attackers to conduct unauthorized activities on those files.

6.4
2002-12-31 CVE-2002-2228 Mailscanner Improper Input Validation vulnerability in Mailscanner

MailScanner before 4.0 5-1 and before 3.2 6-1 allows remote attackers to bypass protection via attachments with a filename with (1) extra leading spaces, (2) extra trailing spaces, or (3) alternate character encodings that cannot be processed by MailScanner.

6.4
2002-12-31 CVE-2002-2182 Seunghyun SEO Remote Buffer Overflow vulnerability in Seunghyun Seo Msn666 1.0/1.0.1

Buffer overflow in Seunghyun Seo's MSN666 MSN Sniffer 1.0 and 1.0.1 allows remote attackers to execute arbitrary code via a long MSN packet.

6.4
2002-12-31 CVE-2002-2139 Cisco Unspecified vulnerability in Cisco PIX Firewall Software

Cisco PIX Firewall 6.0.3 and earlier, and 6.1.x to 6.1.3, do not delete the duplicate ISAKMP SAs for a user's VPN session, which allows local users to hijack a session via a man-in-the-middle attack.

6.4
2002-12-31 CVE-2002-2125 Microsoft Unspecified vulnerability in Microsoft IE and Internet Explorer

Internet Explorer 6.0 does not warn users when an expired certificate authority (CA) certificate is submitted to the user and a newer CA certificate is in the user's local repository, which could allow remote attackers to decrypt web sessions via a man-in-the-middle (MITM) attack.

6.4
2002-12-31 CVE-2002-2045 Xqus Path Disclosure vulnerability in X-Stat 2.2/2.3

x_stat_admin.php in x-stat 2.3 and earlier allows remote attackers to (1) execute PHP commands such as phpinfo or (2) obtain the full path of the web server via an invalid action parameter, which leaks the pathname in an error message.

6.4
2002-12-31 CVE-2002-1947 Webmin Unspecified vulnerability in Webmin

Webmin 0.21 through 1.0 uses the same built-in SSL key for all installations, which allows remote attackers to eavesdrop or highjack the SSL session.

6.4
2002-12-31 CVE-2002-1883 Trolltech Unspecified vulnerability in Trolltech QT Assistant 1.0

Trolltech Qt Assistant 1.0 in Trolltech Qt 3.0.3, when loaded from the Designer, opens port 7358 for interprocess communication, which allows remote attackers to open arbitrary HTML pages and cause a denial of service.

6.4
2002-12-31 CVE-2002-1834 Xerox Unspecified vulnerability in Xerox Docutech 6110 and Docutech 6115

The default configuration of Xerox DocuTech 6110 and DocuTech 6115 allows remote attackers to connect to the web server and (1) submit print jobs directly into the "print now" queue or (2) read the scanner job history.

6.4
2002-12-31 CVE-2002-1825 Wasd Unspecified vulnerability in Wasd Http Server

Format string vulnerability in PerlRTE_example1.pl in WASD 7.1, 7.2.0 through 7.2.3, and 8.0.0 allows remote attackers to execute arbitrary commands or crash the server via format strings in the $name variable.

6.4
2002-12-31 CVE-2002-1819 Tinyhttpd Unspecified vulnerability in Tinyhttpd 0.1.0

Directory traversal vulnerability in TinyHTTPD 0.1 .0 allows remote attackers to read or execute arbitrary files via a ".." (dot dot) in the URL.

6.4
2002-12-31 CVE-2002-1798 Coxco Support Permissions, Privileges, and Access Controls vulnerability in Coxco Support Midicart PHP Maxi/Plus

MidiCart PHP, PHP Plus, and PHP Maxi allows remote attackers to (1) upload arbitrary php files via a direct request to admin/upload.php or (2) access sensitive information via a direct request to admin/credit_card_info.php.

6.4
2002-12-31 CVE-2002-1709 Basilix SQL Injection vulnerability in Basilix Webmail 1.1.0

SQL injection vulnerability in BasiliX Webmail 1.10 allows remote attackers to obtain sensitive information or possibly modify data via the id variable.

6.4
2002-12-31 CVE-2002-1675 Unreal Denial-Of-Service vulnerability in Unreal Unrealircd 3.1.1

Format string vulnerability in the Cio_PrintF function of cio_main.c in Unreal IRCd 3.1.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers.

6.4
2002-12-31 CVE-2002-1664 Yahoo Information Disclosure vulnerability in Yahoo Messenger 5.0

Yahoo! Messenger before February 2002 allows remote attackers to add arbitrary users to another user's buddy list and possibly obtain sensitive information.

6.4
2002-12-31 CVE-2002-1632 Oracle Information Disclosure vulnerability in Oracle 9i Application Server Sample Scripts

Oracle 9i Application Server (9iAS) installs multiple sample pages that allow remote attackers to obtain environment variables and other sensitive information via (1) info.jsp, (2) printenv, (3) echo, or (4) echo2.

6.4
2002-12-31 CVE-2002-2221 Chetcpasswd Local Privilege Escalation vulnerability in Chetcpasswd 2.3.1/2.3.3/2.4.1

Untrusted search path vulnerability in Pedro Lineu Orso chetcpasswd 2.4.1 and earlier allows local users to gain privileges via a modified PATH that references a malicious cp binary.

6.2
2002-12-31 CVE-2002-2220 Chetcpasswd Local Security vulnerability in Chetcpasswd 1.12

Buffer overflow in Pedro Lineu Orso chetcpasswd before 1.12, when configured for access from 0.0.0.0, allows local users to gain privileges via unspecified vectors.

6.2
2002-12-31 CVE-2002-2210 Openoffice Symbolic Link vulnerability in Openoffice 1.0.1

The installation of OpenOffice 1.0.1 allows local users to overwrite files and possibly gain privileges via a symlink attack on the USERNAME_autoresponse.conf temporary file.

6.2
2002-12-31 CVE-2002-2361 Yahoo Permissions, Privileges, and Access Controls vulnerability in Yahoo Messenger 4.0/5.0/5.5

The installer in Yahoo! Messenger 4.0, 5.0 and 5.5 does not verify package signatures which could allow remote attackers to install trojan programs via DNS spoofing.

5.8
2002-12-31 CVE-2002-2352 Neosoft Unspecified vulnerability in Neosoft Neobook 4

The NBActiveX.ocx ActiveX control in NeoBook 4 allows remote attackers to install and execute arbitrary programs.

5.8
2002-12-31 CVE-2002-2331 Cascadesoft Configuration vulnerability in Cascadesoft W3Mail

W3Mail 1.0.2 through 1.0.5 with server side scripting (SSI) enabled in the attachments directory does not properly restrict the types of files that can be uploaded as attachments, which allows remote attackers to execute arbitrary code by sending code in MIME attachments, then requesting the attachments.

5.8
2002-12-31 CVE-2002-2312 Opera Software Unspecified vulnerability in Opera Software Opera 6.0.1

Opera 6.0.1 allows remote attackers to upload arbitrary file contents when users press a key corresponding to the JavaScript (1) event.ctrlKey or (2) event.shiftKey onkeydown event contained in a webpage.

5.8
2002-12-31 CVE-2002-2225 Safenet Denial-Of-Service vulnerability in Softremote Vpn Client

SafeNet VPN client allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange (IKE) response packets, possibly involving buffer overflows using (1) a large Security Parameter Index (SPI) field, (2) a large number of payloads, or (3) a long payload.

5.1
2002-12-31 CVE-2002-2224 Network Associates Buffer Overflow vulnerability in Network Associates PGP Freeware 7.03

Buffer overflow in PGPFreeware 7.03 running on Windows NT 4.0 SP6 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange (IKE) response packets, possibly including (1) a large Security Parameter Index (SPI) field, (2) large number of payloads, or (3) a long payload.

5.1
2002-12-31 CVE-2002-2223 Juniper Unspecified vulnerability in Juniper products

Buffer overflow in NetScreen-Remote 8.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange (IKE) response packets, possibly including (1) a large Security Parameter Index (SPI) field, (2) large number of payloads, or (3) a long payload.

5.1
2002-12-31 CVE-2002-2222 Freebsd
Openbsd
Denial-Of-Service vulnerability in OpenBSD

isakmpd/message.c in isakmpd in FreeBSD before isakmpd-20020403_1, and in OpenBSD 3.1, allows remote attackers to cause a denial of service (crash) by sending Internet Key Exchange (IKE) payloads out of sequence.

5.1
2002-12-31 CVE-2002-2189 Activxperts Software
Microsoft
Cross-Site Scripting vulnerability in Activwebserver

Cross-site scripting (XSS) vulnerability in ActiveXperts Software ActiveWebserver allows remote attackers to execute arbitrary web script via a link.

5.1
2002-12-31 CVE-2002-2416 Zeroo Path Traversal vulnerability in Zeroo Http Server 1.5

Directory traversal vulnerability in Zeroo web server 1.5 allows remote attackers to read arbitrary files via a ..

5.0
2002-12-31 CVE-2002-2413 Microsoft
Deerfield
Unspecified vulnerability in Deerfield Website PRO 3.1.11.0

WebSite Pro 3.1.11.0 on Windows allows remote attackers to read script source code for files with extensions greater than 3 characters via a URL request that uses the equivalent 8.3 file name.

5.0
2002-12-31 CVE-2002-2410 Open Webmail Information Exposure vulnerability in Open Webmail Open Webmail 1.7/1.71

openwebmail.pl in Open WebMail 1.7 and 1.71 reveals sensitive information in error messages and generates different responses whether a user exists or not, which allows remote attackers to identify valid usernames via brute force attacks and obtain certain configuration and version information.

5.0
2002-12-31 CVE-2002-2406 Perception Improper Input Validation vulnerability in Perception Liteserve 2.0/2.0.1/2.0.2

Buffer overflow in HTTP server in LiteServe 2.0, 2.0.1 and 2.0.2 allows remote attackers to cause a denial of service (hang) via a large number of percent characters (%) in an HTTP GET request.

5.0
2002-12-31 CVE-2002-2404 Curtis Specialty Consulting Buffer Errors vulnerability in Curtis Specialty Consulting Iispop 1.161/1.181

Buffer overflow in IISPop email server 1.161 and 1.181 allows remote attackers to cause a denial of service (crash) via a long request to the POP3 port (TCP port 110).

5.0
2002-12-31 CVE-2002-2403 KEY Focus Path Traversal vulnerability in KEY Focus KF web Server 1.0.8

Directory traversal vulnerability in KeyFocus web server 1.0.8 allows remote attackers to read arbitrary files for recognized MIME type files via "...", "....", ".....", and other multiple dot sequences.

5.0
2002-12-31 CVE-2002-2398 APP Unspecified vulnerability in APP Apboard 2.02/2.03

The new thread posting page in APBoard 2.02 and 2.03 allows remote attackers to post messages to protected forums by modifying the insertinto parameter.

5.0
2002-12-31 CVE-2002-2395 Trend Micro Permissions, Privileges, and Access Controls vulnerability in Trend Micro Interscan Viruswall 3.52

InterScan VirusWall 3.52 for Windows allows remote attackers to bypass virus protection and possibly execute arbitrary code via HTTP 1.1 gzip content encoding.

5.0
2002-12-31 CVE-2002-2394 Trend Micro Permissions, Privileges, and Access Controls vulnerability in Trend Micro Interscan Viruswall 3.52/3.6

InterScan VirusWall 3.6 for Linux and 3.52 for Windows allows remote attackers to bypass virus protection and possibly execute arbitrary code via HTTP 1.1 chunked transfer encoding.

5.0
2002-12-31 CVE-2002-2393 Solarwinds Improper Input Validation vulnerability in Solarwinds Serv-U File Server 3.1.0.0/4.0.0.4

Serv-U FTP server 3.0, 3.1 and 4.0.0.4 does not accept new connections while validating user folder access rights, which allows remote attackers to cause a denial of service (no new connections) via a series of MKD commands.

5.0
2002-12-31 CVE-2002-2389 Fastlink Software Credentials Management vulnerability in Fastlink Software the Server 1.74

TheServer 1.74 web server stores server.ini under the web document root with insufficient access control, which allows remote attackers to obtain cleartext passwords and gain access to server log files.

5.0
2002-12-31 CVE-2002-2388 Inweb Buffer Errors vulnerability in Inweb Mail Server 2.01

Buffer overflow in INweb POP3 mail server 2.01 allows remote attackers to cause a denial of service (crash) via a long HELO command.

5.0
2002-12-31 CVE-2002-2387 Mollensoft Software Path Traversal vulnerability in Mollensoft Software Hyperion FTP Server 2.8.1

Directory traversal vulnerability in Hyperion FTP server 2.8.1 allows remote attackers to read arbitrary files via a ..

5.0
2002-12-31 CVE-2002-2375 Stalker Path Traversal vulnerability in Stalker Communigate PRO

Directory traversal vulnerability in CommuniGate Pro 4.0b4 and possibly earlier versions allows remote attackers to list the contents of the WebUser directory and its parent directory via a (1) ..

5.0
2002-12-31 CVE-2002-2372 IBM Buffer Errors vulnerability in IBM Infoprint 21 1.047012

The telnet server in Infoprint 21 running controller software before 1.056007 allows remote attackers to cause a denial of service (crash) via a long username, possibly due to a buffer overflow.

5.0
2002-12-31 CVE-2002-2370 SWS Denial Of Service vulnerability in SWS Simple web Server 0.0.3/0.0.4/0.1.0

SWS web server 0.0.4, 0.0.3 and 0.1.0 allows remote attackers to cause a denial of service (crash) via a URL request that does not end with a newline.

5.0
2002-12-31 CVE-2002-2369 Perception Information Exposure vulnerability in Perception Liteserve 2.0

Perception LiteServe 2.0 allows remote attackers to read password protected files via a leading "/./" in a URL.

5.0
2002-12-31 CVE-2002-2357 Mailenable Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Mailenable

MailEnable 1.5 015 through 1.5 018 allows remote attackers to cause a denial of service (crash) via a long USER string, possibly due to a buffer overflow.

5.0
2002-12-31 CVE-2002-2349 Phpbb Information Exposure vulnerability in PHPbb PHPbbmod 1.3.3

phpinfo.php in phpBBmod 1.3.3 executes the phpinfo function, which allows remote attackers to obtain sensitive environment information.

5.0
2002-12-31 CVE-2002-2346 Phpbb Information Exposure vulnerability in PHPbb

phpBB 2.0 through 2.0.3 generates names for uploaded avatar files with the hex-encoded IP address of the client system, which allows remote attackers to obtain client IP addresses.

5.0
2002-12-31 CVE-2002-2344 Ensim Permissions, Privileges, and Access Controls vulnerability in Ensim Webppliance 3.0/3.1

Ensim WEBppliance 3.0 and 3.1 allows remote attackers to read mail intended for other users by defining an alias that is the target's email address.

5.0
2002-12-31 CVE-2002-2342 JOE Depasquale Information Exposure vulnerability in JOE Depasquale Bannermatic 1.0/2.0/3.0

Bannermatic 1, 2, and 3 stores the (1) ban.log, (2) ban.bak, (3) ban.dat and (4) banmat.pwd data files under the web document root with insufficient access control, which allows attackers to obtain sensitive information via a direct request for the files.

5.0
2002-12-31 CVE-2002-2338 Mozilla
Netscape
Improper Input Validation vulnerability in multiple products

The POP3 mail client in Mozilla 1.0 and earlier, and Netscape Communicator 4.7 and earlier, allows remote attackers to cause a denial of service (no new mail) via a mail message containing a dot (.) at a newline, which is interpreted as the end of the message.

5.0
2002-12-31 CVE-2002-2337 Kaspersky LAB Unspecified vulnerability in Kaspersky LAB Kaspersky Anti-Hacker 1.0

Kaspersky Anti-Hacker 1.0, when configured to automatically block attacks, allows remote attackers to block IP addresses and cause a denial of service via spoofed packets.

5.0
2002-12-31 CVE-2002-2335 John Drake Configuration vulnerability in John Drake Killer Protection 1.0

Killer Protection 1.0 stores the vars.inc include file under the web root with insufficient access control, which allows remote attackers to obtain user names and passwords and log in using protection.php.

5.0
2002-12-31 CVE-2002-2333 KDE Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in KDE

Buffer overflow in konqueror in KDE 2.1 through 3.0 and 3.0.2 allows remote attackers to cause a denial of service (crash) via an IMG tag with large width and height attributes.

5.0
2002-12-31 CVE-2002-2332 Opera Software Buffer Errors vulnerability in Opera Software Opera web Browser 6.0.1

Buffer overflow in Opera 6.01 allows remote attackers to cause a denial of service (crash) via an IMG tag with large width and height attributes.

5.0
2002-12-31 CVE-2002-2330 Uninet Cross-Site Scripting vulnerability in Uninet Statsplus 1.25

Cross-site scripting (XSS) vulnerability in stat.pl in StatsPlus 1.25 allows remote attackers to inject arbitrary web script or HTML via (1) HTTP_USER_AGENT or (2) HTTP_REFERER, which is written to stats.html and executed in client browsers.

5.0
2002-12-31 CVE-2002-2326 Apple Cryptographic Issues vulnerability in Apple mac OS X

The default configuration of Mail.app in Mac OS X 10.0 through 10.0.4 and 10.1 through 10.1.5 sends iDisk authentication credentials in cleartext when connecting to Mac.com, which could allow remote attackers to obtain passwords by sniffing network traffic.

5.0
2002-12-31 CVE-2002-2323 SUN Link Following vulnerability in SUN Solaris PC Netlink 1.0/1.1/1.2

Sun PC NetLink 1.0 through 1.2 does not properly set the access control list (ACL) for files and directories that use symbolic links and have been restored from backup, which could allow local or remote attackers to bypass intended access restrictions.

5.0
2002-12-31 CVE-2002-2322 Ultimate PHP Board Improper Input Validation vulnerability in Ultimate PHP Board Ultimate PHP Board 1.0Beta

Ultimate PHP Board (UPB) 1.0b stores the users.dat data file under the web root with insufficient access control, which allows remote attackers to obtain usernames and passwords.

5.0
2002-12-31 CVE-2002-2316 Cisco Unspecified vulnerability in Cisco Catos 5.5(5)/6.3(5)/7.1(2)

Cisco Catalyst 4000 series switches running CatOS 5.5.5, 6.3.5, and 7.1.2 do not always learn MAC addresses from a single initial packet, which causes unicast traffic to be broadcast across the switch and allows remote attackers to obtain sensitive network information by sniffing.

5.0
2002-12-31 CVE-2002-2314 Mozilla Improper Input Validation vulnerability in Mozilla 1.0

Mozilla 1.0 allows remote attackers to steal cookies from other domains via a javascript: URL with a leading "//" and ending in a newline, which causes the host/path check to fail.

5.0
2002-12-31 CVE-2002-2310 Kryptronic Credentials Management vulnerability in Kryptronic Clickcartpro 4.0

ClickCartPro 4.0 stores the admin_user.db data file under the web document root with insufficient access control on servers other than Apache, which allows remote attackers to obtain usernames and passwords.

5.0
2002-12-31 CVE-2002-2308 Netscape Denial-Of-Service vulnerability in Netscape Communicator 6.2.1

Netscape Communicator 6.2.1 allows remote attackers to cause a denial of service in client browsers via a webpage containing a recursive META refresh tag where the content tag is blank and the URL tag references itself.

5.0
2002-12-31 CVE-2002-2307 Pyramid Unspecified vulnerability in Pyramid Benhur Software Update 66R3

The default configuration of BenHur Firewall release 3 update 066 fix 2 allows remote attackers to access arbitrary services by connecting from source port 20.

5.0
2002-12-31 CVE-2002-2294 Symantec Buffer Errors vulnerability in Symantec Enterprise Firewall, Raptor Firewall and Velociraptor

Multiple buffer overflows in Symantec Raptor Firewall 6.5 and 6.5.3, Enterprise Firewall 6.5.2 and 7.0, VelociRaptor 500/700/1000 and 1100/1200/1300, and Gateway Security 5110/5200/5300 allow remote attackers to cause a denial of service (service termination) via (1) malformed RealAudio (rad) packets that are not properly handled by the RealAudio Proxy, or (2) crafted packets to the statistics service (statsd).

5.0
2002-12-31 CVE-2002-2292 Halycon Software Path Traversal vulnerability in Halycon Software Iasp 1.0.9

Directory traversal vulnerability in Remote Console Applet in Halycon Software iASP 1.0.9 allows remote attackers to read arbitrary files via a ..

5.0
2002-12-31 CVE-2002-2289 Working Resources INC Information Exposure vulnerability in Working Resources Inc. Badblue 1.7.1

soinfo.php in BadBlue 1.7.1 calls the phpinfo function, which allows remote attackers to gain sensitive information including ODBC passwords.

5.0
2002-12-31 CVE-2002-2288 Mambo Information Exposure vulnerability in Mambo Site Server 4.0.11

Mambo Site Server 4.0.11 allows remote attackers to obtain the physical path of the server via an HTTP request to index.php with a parameter that does not exist, which causes the path to be leaked in an error message.

5.0
2002-12-31 CVE-2002-2286 APT WWW Proxy Numeric Errors vulnerability in Apt-Www-Proxy 0.1

The parse-get function in utils.c for apt-www-proxy 0.1 allows remote attackers to cause a denial of service (crash) via an empty HTTP request, which causes a null dereference.

5.0
2002-12-31 CVE-2002-2276 Ultimate PHP Board Information Exposure vulnerability in Ultimate PHP Board Ultimate PHP Board 1.0

Ultimate PHP Board (UPB) 1.0 allows remote attackers to view the physical path of the message board via a direct request to add.php, which leaks the path in an error message.

5.0
2002-12-31 CVE-2002-2271 Bigfun Buffer Errors vulnerability in Bigfun 1.5.1

Buffer overflow in BigFun 1.51b IRC client, when the Direct Client Connection (DCC) option is used, allows remote attackers to cause a denial of service (crash) via a long string.

5.0
2002-12-31 CVE-2002-2266 Netscreen Denial Of Service vulnerability in NetScreen H.323 Control Session

NetScreen ScreenOS 2.8 through 4.0, when forwarding H.323 or Netmeeting traffic, allows remote attackers to cause a denial of service (firewall session table consumption) by establishing multiple half-open H.323 sessions, which are not cleaned up on garbage removal and do not time out for 36 hours.

5.0
2002-12-31 CVE-2002-2262 HP Denial Of Service vulnerability in HP-UX xntpd

Unspecified vulnerability in xntpd of HP-UX 10.20 through 11.11 allows remote attackers to cause a denial of service (hang) via unknown attack vectors.

5.0
2002-12-31 CVE-2002-2258 Mobydisk Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Mobydisk Netsuite

Moby NetSuite allows remote attackers to cause a denial of service (crash) via an HTTP POST request with a (1) large integer or (2) non-numeric value in the Content-Length header, which causes an access violation after a failed atoi function call.

5.0
2002-12-31 CVE-2002-2256 Pwins Path Traversal vulnerability in Pwins

Directory traversal vulnerability in pWins Webserver 0.2.5 and earlier allows remote attackers to read arbitrary files via Unicode characters.

5.0
2002-12-31 CVE-2002-2247 Mambo Configuration vulnerability in Mambo Site Server 4.0.11

The administrator/phpinfo.php script in Mambo Site Server 4.0.11 allows remote attackers to obtain sensitive information such as the full web root path via phpinfo.php, which calls the phpinfo function.

5.0
2002-12-31 CVE-2002-2245 Netbsd Numeric Errors vulnerability in Netbsd Ftpd

ftpd in NetBSD 1.5 through 1.5.3 and 1.6 does not properly quote a digit in response to a STAT command for a filename that contains a carriage return followed by a digit, which can cause firewalls and other intermediary devices to lose proper track of the FTP session.

5.0
2002-12-31 CVE-2002-2243 Akfingerd Remote Denial Of Service vulnerability in Akfingerd 0.5

Akfingerd 0.5 and possibly earlier versions only allows one connection at a time and does not time out connections, which allows remote attackers to cause a denial of service (refused connections) by opening a connection and not closing it.

5.0
2002-12-31 CVE-2002-2241 Deerfield Resource Management Errors vulnerability in Deerfield Visnetic Website

Buffer overflow in httpd32.exe in Deerfield VisNetic WebSite before 3.5.15 allows remote attackers to cause a denial of service (crash) via a long HTTP OPTIONS request.

5.0
2002-12-31 CVE-2002-2240 Myserver Path Traversal vulnerability in Myserver 0.11/0.2

Directory traversal vulnerability in MyServer 0.11 and 0.2 allows remote attackers to read arbitrary files via a ".." (dot dot) in an HTTP GET request.

5.0
2002-12-31 CVE-2002-2238 Kunani Path Traversal vulnerability in Kunani Odbc FTP Server 1.0.10

Directory traversal vulnerability in the Kunani ODBC FTP Server 1.0.10 allows remote attackers to read arbitrary files via a "..\" (dot dot backslash) in a GET request.

5.0
2002-12-31 CVE-2002-2237 Tftp Improper Input Validation vulnerability in Tftp Server 2.21

tftp32 TFTP server 2.21 and earlier allows remote attackers to cause a denial of service via a GET request with a DOS device name such as com1 or aux.

5.0
2002-12-31 CVE-2002-2235 Jelsoft Numeric Errors vulnerability in Jelsoft Vbulletin

member2.php in vBulletin 2.2.9 and earlier does not properly restrict the $perpage variable to be an integer, which causes an error message to be reflected back to the user without quoting, which facilitates cross-site scripting (XSS) and possibly other attacks.

5.0
2002-12-31 CVE-2002-2229 Sapio Design LTD Path Traversal vulnerability in Sapio Design LTD Webreflex 1.53

Directory traversal vulnerability in Sapio Design Ltd.

5.0
2002-12-31 CVE-2002-2216 Soft3304 Information Disclosure vulnerability in Soft3304 04Webserver 1.20

Soft3304 04WebServer before 1.20 does not properly process URL strings, which allows remote attackers to obtain unspecified sensitive information.

5.0
2002-12-31 CVE-2002-2215 PHP Denial-Of-Service vulnerability in PHP

The imap_header function in the IMAP functionality for PHP before 4.3.0 allows remote attackers to cause a denial of service via an e-mail message with a large number of "To" addresses, which triggers an error in the rfc822_write_address function.

5.0
2002-12-31 CVE-2002-2214 PHP Denial-Of-Service vulnerability in PHP 4.2/4.2.0/4.2.1

The php_if_imap_mime_header_decode function in the IMAP functionality in PHP before 4.2.2 allows remote attackers to cause a denial of service (crash) via an e-mail header with a long "To" header.

5.0
2002-12-31 CVE-2002-2213 Infoblox
ISC
Remote Security vulnerability in BIND

The DNS resolver in unspecified versions of Infoblox DNS One, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed responses, which increases the possibility of successfully spoofing a response in a way that is more efficient than brute force methods.

5.0
2002-12-31 CVE-2002-2212 ISC
Fujitsu
Remote Security vulnerability in BIND

The DNS resolver in unspecified versions of Fujitsu UXP/V, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed responses, which increases the possibility of successfully spoofing a response in a way that is more efficient than brute force methods.

5.0
2002-12-31 CVE-2002-2211 ISC Remote Security vulnerability in BIND

BIND 4 and BIND 8, when resolving recursive DNS queries for arbitrary hosts, allows remote attackers to conduct DNS cache poisoning via a birthday attack that uses a large number of open queries for the same resource record (RR) combined with spoofed responses, which increases the possibility of successfully spoofing a response in a way that is more efficient than brute force methods.

5.0
2002-12-31 CVE-2002-2205 Webresolve Buffer Overflow vulnerability in Webresolve Host Name

Buffer overflow in Webresolve 0.1.0 and earlier allows remote attackers to execute arbitrary code by connecting to the server from an IP address that resolves to a long hostname.

5.0
2002-12-31 CVE-2002-2195 Nullsoft Buffer Overflow vulnerability in Nullsoft Winamp Automatic Update Check

Buffer overflow in the version update check for Winamp 2.80 and earlier allows remote attackers who can spoof www.winamp.com to execute arbitrary code via a long server response.

5.0
2002-12-31 CVE-2002-2191 Lotus Information Disclosure vulnerability in Lotus Domino Non-existent NSF Database Banner

Lotus Domino 5.0.9a and earlier, even when configured with the 'DominoNoBanner=1' option, allows remote attackers to obtain potential sensitive information such as the version via a request for a non-existent .nsf database, which leaks the version in the HTTP banner.

5.0
2002-12-31 CVE-2002-2187 Macromedia Unspecified vulnerability in Macromedia Jrun 3.0/3.1/4.0

Unknown "file disclosure" vulnerability in Macromedia JRun 3.0, 3.1, and 4.0, related to a log file or jrun.ini, with unknown impact.

5.0
2002-12-31 CVE-2002-2186 Macromedia Unspecified vulnerability in Macromedia Jrun 3.0/3.1/4.0

Macromedia JRun 3.0, 3.1, and 4.0 allow remote attackers to view the source code of .JSP files via Unicode encoded character values in a URL.

5.0
2002-12-31 CVE-2002-2184 Digi NET Technologies Information Disclosure vulnerability in Digi-Net Technologies Digichat 3.5

Digi-Net Technologies DigiChat 3.5 allows chat users to obtain the IP addresses of other chat users via a "Showip" parameter in the chat applet.

5.0
2002-12-31 CVE-2002-2181 Sonicwall Unspecified vulnerability in Sonicwall Content Filtering

SonicWall Content Filtering allows local users to access prohibited web sites via requests to the web site's IP address instead of the domain name.

5.0
2002-12-31 CVE-2002-2174 Software602 Denial-Of-Service vulnerability in Software602 602Pro LAN Suite 2002

The Telnet proxy of 602Pro LAN SUITE 2002 does not restrict the number of outstanding connections to the local host, which allows remote attackers to create a denial of service (memory consumption) via a large number of connections.

5.0
2002-12-31 CVE-2002-2169 AOL Unspecified vulnerability in AOL Instant Messenger 4.5/4.7/4.7.2480

Cross-site scripting vulnerability AOL Instant Messenger (AIM) 4.5 and 4.7 for MacOS and Windows allows remote attackers to conduct unauthorized activities, such as adding buddies and groups to a user's buddy list, via a URL with a META HTTP-EQUIV="refresh" tag to an aim: URL.

5.0
2002-12-31 CVE-2002-2167 Thorsten Korner Unspecified vulnerability in Thorsten Korner 123Tkshop 0.2/0.3

Directory traversal vulnerability in function_foot_1.inc.php for Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to read arbitrary files via ..

5.0
2002-12-31 CVE-2002-2164 Microsoft Denial of Service vulnerability in Alleged Outlook Express Link

Buffer overflow in Microsoft Outlook Express 5.0, 5.5, and 6.0 allows remote attackers to cause a denial of service (crash) via a long <A HREF> link.

5.0
2002-12-31 CVE-2002-2161 Kerio SYN Packet Denial Of Service vulnerability in Kerio Personal Firewall

Kerio Personal Firewall (KPF) 2.1.4 and earlier allows remote attackers to cause a denial of service (hang and CPU consumption) via a SYN packet flood.

5.0
2002-12-31 CVE-2002-2158 Zendocs Information Disclosure vulnerability in ZenTrack

zenTrack 2.0.3 and earlier allows remote attackers to obtain the full path to the web root via an invalid ticket ID, which leaks the path in an error message.

5.0
2002-12-31 CVE-2002-2154 Monkey Project Path Traversal vulnerability in Monkey-Project Monkey 0.1.4

Directory traversal vulnerability in Monkey HTTP Daemon 0.1.4 allows remote attackers to read arbitrary files via ..

5.0
2002-12-31 CVE-2002-2150 Juniper Unspecified vulnerability in Juniper Netscreen Screenos

Firewalls from multiple vendors empty state tables more slowly than they are filled, which allows remote attackers to flood state tables with packet flooding attacks such as (1) TCP SYN flood, (2) UDP flood, or (3) Crikey CRC Flood, which causes the firewall to refuse any new connections.

5.0
2002-12-31 CVE-2002-2149 Lucent Denial Of Service vulnerability in Lucent products

Buffer overflow in Lucent Access Point 300, 600, and 1500 Service Routers allows remote attackers to cause a denial of service (reboot) via a long HTTP request to the administrative interface.

5.0
2002-12-31 CVE-2002-2148 Lucent Information Disclosure vulnerability in Lucent products

Lucent Ascend MAX Router 5.0 and earlier, Lucent Ascend Pipeline Router 6.0.2 and earlier and Lucent DSLTerminator allows remote attackers to obtain sensitive information such as hostname, MAC, and IP address of the Ethernet interface via a discard (UDP port 9) packet, which causes the device to leak the information in the response.

5.0
2002-12-31 CVE-2002-2144 Free Peers Unspecified vulnerability in Free Peers Bearshare 4.0.5/4.0.6

Directory traversal vulnerability in BearShare 4.0.5 and 4.0.6 allows remote attackers to read files outside of the web root by hex-encoding the "/" (forward slash) or "." (dot) characters.

5.0
2002-12-31 CVE-2002-2140 Cisco Buffer Overrun vulnerability in Cisco PIX TACACS+/RADIUS HTTP Proxy

Buffer overflow in Cisco PIX Firewall 5.2.x to 5.2.8, 6.0.x to 6.0.3, 6.1.x to 6.1.3, and 6.2.x to 6.2.1 allows remote attackers to cause a denial of service via HTTP traffic authentication using (1) TACACS+ or (2) RADIUS.

5.0
2002-12-31 CVE-2002-2138 HP Denial Of Service vulnerability in HP Advanced Server 9000 and Hp-Ux

RFC-NETBIOS in HP Advanced Server/9000 B.04.05 through B.04.09, when running HP-UX 11.00 or 11.11, allows remote attackers to cause a denial of service (panic) via a malformed UDP packet on port 139.

5.0
2002-12-31 CVE-2002-2137 Alloy
D Link
Eusso
Linksys
Wisecom
Information Disclosure vulnerability in GlobalSunTech Access Point

GlobalSunTech Wireless Access Points (1) WISECOM GL2422AP-0T, and possibly OEM products such as (2) D-Link DWL-900AP+ B1 2.1 and 2.2, (3) ALLOY GL-2422AP-S, (4) EUSSO GL2422-AP, and (5) LINKSYS WAP11-V2.2, allow remote attackers to obtain sensitive information like WEP keys, the administrator password, and the MAC filter via a "getsearch" request to UDP port 27155.

5.0
2002-12-31 CVE-2002-2134 Peel Remote File Include vulnerability in Peel 1.0B

haut.php in PEEL 1.0b allows remote attackers to execute arbitrary PHP code by modifying the dirroot parameter to reference a URL on a remote web server that contains the code in a lang.php file.

5.0
2002-12-31 CVE-2002-2131 Perl Httpd Unspecified vulnerability in Perl-Httpd 1.0/1.0.1

Directory traversal vulnerability in Perl-HTTPd before 1.0.2 allows remote attackers to view arbitrary files via a ..

5.0
2002-12-31 CVE-2002-2124 Nylon Denial Of Service vulnerability in Nylon 0.2

The recvn and sendn functions in nylon 0.2 do not check when the recv function call returns 0, which allows remote attackers to cause a denial of service (infinite loop and CPU consumption) by closing the connection while recv is executing.

5.0
2002-12-31 CVE-2002-2121 Surfcontrol Denial of Service vulnerability in Surfcontrol Superscout Email Filter 3.5.1

SurfControl SuperScout Email filter for SMTP 3.5.1 allows remote attackers to cause a denial of service (crash) via a long SMTP (1) HELO or (2) RCPT TO command, possibly due to a buffer overflow.

5.0
2002-12-31 CVE-2002-2118 Blue World Communications Unspecified vulnerability in Blue World Communications Lasso web Data Engine 3.6.5

Buffer overflow in Blue World Lasso Web Data Engine 3.6.5 allows remote attackers to cause a denial of service via a long URL.

5.0
2002-12-31 CVE-2002-2117 Microsoft Denial-Of-Service vulnerability in Windows XP Gold

Microsoft Windows XP allows remote attackers to cause a denial of service (CPU consumption) by flooding UDP port 500 (ISAKMP).

5.0
2002-12-31 CVE-2002-2116 Netgear Denial Of Service vulnerability in Netgear Rm356 and Rt338

Netgear RM-356 and RT-338 series SOHO routers allow remote attackers to cause a denial of service (crash) via a UDP port scan, as demonstrated using nmap.

5.0
2002-12-31 CVE-2002-2112 RCA Unspecified vulnerability in RCA Digital Cable Modem Dcm225/Dcm225E

RCA Digital Cable Modem DCM225 and DCM225E, and other modems that must conform to the Data-over-Cable Service Interface Specifications DOCSIS standard, uses the "public" community string for SNMP access, which allows remote attackers to read or write MIB information.

5.0
2002-12-31 CVE-2002-2111 Gianni Tedesco Denial of Service vulnerability in fwmon Oversized Packet

Fwmon before 1.0.10 allows remote attackers to cause a denial of service (crash) by causing the kernel to return a large packet.

5.0
2002-12-31 CVE-2002-2110 RCA Remote Reset Denial of Service vulnerability in RCA Digital Cable Modem Dcm225/Dcm225E

The RCA Digital Cable Modems DCM225 and DCM225E allow remote attackers to cause a denial of service (modem device reset) by connecting to port 80 on the 10.0.0.0/8 device.

5.0
2002-12-31 CVE-2002-2108 Sony Unspecified vulnerability in Sony Vaio Manual Cybersupport 3.0/3.1

Unknown vulnerability in the "VAIO Manual" software in certain Sony VAIO personal computers sold from November 2001 to January 2002, allows remote attackers to modify data via a web page or HTML e-mail.

5.0
2002-12-31 CVE-2002-2103 Apache Unspecified vulnerability in Apache Http Server

Apache before 1.3.24, when writing to the log file, records a spoofed hostname from the reverse lookup of an IP address, even when a double-reverse lookup fails, which allows remote attackers to hide the original source of activities.

5.0
2002-12-31 CVE-2002-2102 Jcraft Denial Of Service vulnerability in JZLib

InfBlocks.java in JCraft JZlib before 0.0.7 allow remote attackers to cause a denial of service (NullPointerException) via an invalid block of deflated data.

5.0
2002-12-31 CVE-2002-2100 Microsoft Unspecified vulnerability in Microsoft Outlook 2000/2002

Microsoft Outlook 2002 allows remote attackers to embed bypass the file download restrictions for attachments via an HTML email message that uses an IFRAME to reference malicious content.

5.0
2002-12-31 CVE-2002-2097 Maradns Denial of Service vulnerability in MaraDNS

The compression code in MaraDNS before 0.9.01 allows remote attackers to cause a denial of service via crafted DNS packets.

5.0
2002-12-31 CVE-2002-2095 JOE Testa Unspecified vulnerability in JOE Testa Hellbent 0.1

Joe Testa hellbent 01 webserver allows attackers to read files that are specified in the hellbent.prefs file by creating a file with a similar name in the web root, as demonstrated using (1) index.webroot and (2) index.ipallow.

5.0
2002-12-31 CVE-2002-2094 JOE Testa Information Disclosure vulnerability in JOE Testa Hellbent 01

Joe Testa hellbent 01 allows remote attackers to determine the full path of the web root directory via a GET request with a relative path that includes the root's parent, which generates a 403 error message if the parent is incorrect, but a normal response if the parent is correct.

5.0
2002-12-31 CVE-2002-2090 Caucho Technology Path Disclosure vulnerability in Caucho Technology Resin Server Device Name

Caucho Technology Resin server 2.1.1 to 2.1.2 allows remote attackers to obtain server's root path via requests for MS-DOS device names such as lpt9.xtp.

5.0
2002-12-31 CVE-2002-2085 Wwwebbb Directory Traversal vulnerability in Wwwebbb Forum

Directory traversal vulnerability in page.cgi of WWWeBBB Forum 3.82 beta and earlier allows remote attackers to read arbitrary files via a ..

5.0
2002-12-31 CVE-2002-2084 Portix PHP Directory Traversal vulnerability in Portix-PHP 0.4.2

Directory traversal vulnerability in index.php of Portix 0.4.02 allows remote attackers to read arbitrary files via a ..

5.0
2002-12-31 CVE-2002-2081 Microsoft Denial of Service vulnerability in Microsoft Site Server 3.0 Content Upload

cphost.dll in Microsoft Site Server 3.0 allows remote attackers to cause a denial of service (disk consumption) via an HTTP POST of a file with a long TargetURL parameter, which causes Site Server to abort and leaves the uploaded file in c:\temp.

5.0
2002-12-31 CVE-2002-2080 Floosietek Denial of Service vulnerability in Floosietek Ftgatepro 1.05

Floositek FTGate PRO 1.05 allows remote attackers to cause a denial of service (memory and CPU consumption) via a large number of RCPT TO: messages during an SMTP session.

5.0
2002-12-31 CVE-2002-2079 Mosix Project
Openmosix Project
Denial Of Service vulnerability in Mosix Malformed Packet Handling

mosix-protocol-stack in Multicomputer Operating System for UnIX (MOSIX) 1.5.7 allows remote attackers to cause a denial of service via malformed packets.

5.0
2002-12-31 CVE-2002-2077 Microsoft Unspecified vulnerability in Microsoft Windows 2000

The DCOM client in Windows 2000 before SP3 does not properly clear memory before sending an "alter context" request, which may allow remote attackers to obtain sensitive information by sniffing the session.

5.0
2002-12-31 CVE-2002-2076 Summit Computer Networks Directory Traversal vulnerability in Summit Computer Networks LIL Http 2.1/2.2

Directory traversal vulnerability in Lil' HTTP server 2.1 and 2.2 allows remote attackers to read arbitrary files via a ..

5.0
2002-12-31 CVE-2002-2075 Mirabilis Denial-Of-Service vulnerability in Mirabilis ICQ 2001A/2002B

ICQ 2001a and 2002b allows remote attackers to cause a denial of service (memory consumption and hang) via a contact message with a large contacts number.

5.0
2002-12-31 CVE-2002-2072 SUN Unspecified vulnerability in SUN JRE 1.2.2/1.3.1

java.security.AccessController in Sun Java Virtual Machine (JVM) in JRE 1.2.2 and 1.3.1 allows remote attackers to cause a denial of service (JVM crash) via a Java program that calls the doPrivileged method with a null argument.

5.0
2002-12-31 CVE-2002-2071 Compaq Denial Of Service vulnerability in Compaq Tru64 4.0E

Compaq Tru64 4.0 d allows remote attackers to cause a denial of service in (1) telnet, (2) FTP, (3) ypbind, (4) rpc.lockd, (5) snmp, (6) ttdbserverd, and possibly other services via a TCP SYN scan, as demonstrated using nmap.

5.0
2002-12-31 CVE-2002-2070 Accessdata Unspecified vulnerability in Accessdata Secureclean 3Build2.0

SecureClean 3 build 2.0 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.

5.0
2002-12-31 CVE-2002-2069 PGP Unspecified vulnerability in PGP

PGP 6.x and 7.x does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.

5.0
2002-12-31 CVE-2002-2068 Sami Tolvanen Unspecified vulnerability in Sami Tolvanen Eraser 5.3

Eraser 5.3 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.

5.0
2002-12-31 CVE-2002-2067 East Technologies Unspecified vulnerability in East Technologies East-Tec Eraser 2002

East-Tec Eraser 2002 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.

5.0
2002-12-31 CVE-2002-2066 Jetico Unspecified vulnerability in Jetico Bcwipe 1.0.7/2.0

BestCrypt BCWipe 1.0.7 and 2.0 through 2.35.1 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.

5.0
2002-12-31 CVE-2002-2065 Webcalendar Information Disclosure vulnerability in WebCalendar Include Files

WebCalendar 0.9.34 and earlier with 'browsing in includes directory' enabled allows remote attackers to read arbitrary include files with .inc extensions from the web root.

5.0
2002-12-31 CVE-2002-2058 Teekai Unspecified vulnerability in Teekai Tracking Online 1.0

TeeKai Tracking Online 1.0 uses weak encryption of web usage statistics in data/userlog/log.txt, which allows remote attackers to identify IP's visiting the site by dividing each octet by the MD5 hash of '20'.

5.0
2002-12-31 CVE-2002-2057 Teekai Unspecified vulnerability in Teekai Forum 1.2

TeeKai Forum 1.2 uses weak encryption of web usage statistics in data/member_log.txt, which is stored under the web document root with insufficient access control, which allows remote attackers to identify IP's visiting the site by dividing each octet by the MD5 hash of '20'.

5.0
2002-12-31 CVE-2002-2053 Cisco Denial Of Service vulnerability in Cisco IOS 12.1

The design of the Hot Standby Routing Protocol (HSRP), as implemented on Cisco IOS 12.1, when using IRPAS, allows remote attackers to cause a denial of service (CPU consumption) via a router with the same IP address as the interface on which HSRP is running, which causes a loop.

5.0
2002-12-31 CVE-2002-2052 Cisco Denial of Service vulnerability in Cisco IOS 12.1(6.5)

Cisco 2611 router running IOS 12.1(6.5), possibly an interim release, allows remote attackers to cause a denial of service via port scans such as (1) scanning all ports on a single host and (2) scanning a network of hosts for a single open port through the router.

5.0
2002-12-31 CVE-2002-2037 Cisco Unspecified vulnerability in Cisco products

The Cisco Media Gateway Controller (MGC) in (1) SC2200 7.4 and earlier, (2) VSC3000 9.1 and earlier, (3) PGW 2200 9.1 and earlier, (4) Billing and Management Server (BAMS) and (5) Voice Services Provisioning Tool (VSPT) runs on default installations of Solaris 2.6 with unnecessary services and without the latest security patches, which allows attackers to exploit known vulnerabilities.

5.0
2002-12-31 CVE-2002-2033 Faqmanager Unspecified vulnerability in Faqmanager Faqmanager.Cgi

faqmanager.cgi in FAQManager 2.2.5 and earlier allows remote attackers to read arbitrary files by specifying the filename in the toc parameter with a trailing null character (%00).

5.0
2002-12-31 CVE-2002-2032 Francisco Burzi Information Disclosure vulnerability in PHPNuke SQL_Debug

sql_layer.php in PHP-Nuke 5.4 and earlier does not restrict access to debugging features, which allows remote attackers to gain SQL query information by setting the sql_debug parameter to (1) index.php and (2) modules.php.

5.0
2002-12-31 CVE-2002-2031 Microsoft Unspecified vulnerability in Microsoft Internet Explorer

Internet Explorer 5.0, 5.0.1 and 5.5 with JavaScript execution enabled allows remote attackers to determine the existence of arbitrary files via a script tag with a src parameter that references a non-JavaScript file, then using the onError event handler to monitor the results.

5.0
2002-12-31 CVE-2002-2025 IBM Denial Of Service vulnerability in Lotus Domino MS-Dos Device Name

Lotus Domino server 5.0.9a and earlier allows remote attackers to cause a denial of service by exhausting the number of working threads via a large number of HTTP requests for (1) an MS-DOS device name and (2) an MS-DOS device name with a large number of characters appended to the device name.

5.0
2002-12-31 CVE-2002-2024 Horde Path Disclosure vulnerability in Horde IMP 2.2.7

Horde IMP 2.2.7 allows remote attackers to obtain the full web root pathname via an HTTP request for (1) poppassd.php3, (2) login.php3?reason=chpass2, (3) spelling.php3, and (4) ldap.search.php3?ldap_serv=nonsense which leaks the information in error messages.

5.0
2002-12-31 CVE-2002-2014 IBM Unspecified vulnerability in IBM Lotus Domino 5.0.8

Lotus Domino 5.0.8 web server returns different error messages when a valid or invalid user is provided in HTTP requests, which allows remote attackers to determine valid user names and makes it easier to conduct brute force attacks.

5.0
2002-12-31 CVE-2002-2013 Mozilla
Netscape
Mozilla 0.9.6 and earlier and Netscape 6.2 and earlier allows remote attackers to steal cookies from another domain via a link with a hex-encoded null character (%00) followed by the target domain.
5.0
2002-12-31 CVE-2002-2012 Apache Unspecified vulnerability in Apache Http Server 1.3.19

Unknown vulnerability in Apache 1.3.19 running on HP Secure OS for Linux 1.0 allows remote attackers to cause "unexpected results" via an HTTP request.

5.0
2002-12-31 CVE-2002-2009 Apache Information Disclosure vulnerability in Apache Tomcat 4.0.1

Apache Tomcat 4.0.1 allows remote attackers to obtain the web root path via HTTP requests for JSP files preceded by (1) +/, (2) >/, (3) </, and (4) %20/, which leaks the pathname in an error message.

5.0
2002-12-31 CVE-2002-2008 Apache Path Disclosure vulnerability in Apache Tomcat 4.0.3

Apache Tomcat 4.0.3 for Windows allows remote attackers to obtain the web root path via an HTTP request for a resource that does not exist, such as lpt9, which leaks the information in an error message.

5.0
2002-12-31 CVE-2002-2007 Apache Information Disclosure vulnerability in Apache Tomcat 3.2.3/3.2.4

The default installations of Apache Tomcat 3.2.3 and 3.2.4 allows remote attackers to obtain sensitive system information such as directory listings and web root path, via erroneous HTTP requests for Java Server Pages (JSP) in the (1) test/jsp, (2) samples/jsp and (3) examples/jsp directories, or the (4) test/realPath.jsp servlet, which leaks pathnames in error messages.

5.0
2002-12-31 CVE-2002-2006 Apache Path Disclosure vulnerability in Apache Tomcat Servlet

The default installation of Apache Tomcat 4.0 through 4.1 and 3.0 through 3.3.1 allows remote attackers to obtain the installation path and other sensitive system information via the (1) SnoopServlet or (2) TroubleShooter example servlets.

5.0
2002-12-31 CVE-2002-2004 Compaq Denial-Of-Service vulnerability in Compaq Tru64 4.0G/5.0A

portmapper in Compaq Tru64 4.0G and 5.0A allows remote attackers to cause a denial of service via a flood of packets.

5.0
2002-12-31 CVE-2002-2003 Compaq Remote Security vulnerability in Tru64

ypbind in Compaq Tru64 4.0F, 4.0G, 5.0A, 5.1 and 5.1A allows remote attackers to cause the process to core dump via certain network packets generated by nmap.

5.0
2002-12-31 CVE-2002-1999 HP Unspecified vulnerability in HP Praesidium Webproxy 1.0

HP Praesidium Webproxy 1.0 running on HP-UX 11.04 VVOS could allow remote attackers to cause Webproxy to forward requests to the internal network via crafted HTTP requests.

5.0
2002-12-31 CVE-2002-1994 Gamecheats Denial Of Service vulnerability in Gamecheats Advanced web Server Professional 1.030000

advserver.exe in Advanced Web Server (AdvServer) Professional 1.030000 allows remote attackers to cause a denial of service via multiple HTTP requests containing a single carriage return/line feed (CRLF) sequence.

5.0
2002-12-31 CVE-2002-1992 Macromedia Buffer Overrun vulnerability in Macromedia Coldfusion and Coldfusion Professional

Buffer overflow in jrun.dll in ColdFusion MX, when used with IIS 4 or 5, allows remote attackers to cause a denial of service in IIS via (1) a long template file name or (2) a long HTTP header.

5.0
2002-12-31 CVE-2002-1990 Caucho Technology Path Disclosure vulnerability in Caucho Technology Resin 2.0/2.1.1/2.1.2

Resin 2.0.5 through 2.1.2 allows remote attackers to reveal physical path information via a URL request for the example Java class file HelloServlet.

5.0
2002-12-31 CVE-2002-1989 Caucho Technology Denial-Of-Service vulnerability in Caucho Technology Resin 2.1.1

Resin 2.1.1 allows remote attackers to cause a denial of service (thread and connection consumption) via multiple URL requests containing the DOS 'CON' device name and a registered file extension such as .jsp or .xtp.

5.0
2002-12-31 CVE-2002-1988 Caucho Technology Denial Of Service vulnerability in Caucho Technology Resin 2.1.1

Resin 2.1.1 allows remote attackers to cause a denial of service (memory consumption and hang) via a URL with long variables for non-existent resources.

5.0
2002-12-31 CVE-2002-1987 Caucho Technology Unspecified vulnerability in Caucho Technology Resin 2.1.2

Directory traversal vulnerability in view_source.jsp in Resin 2.1.2 allows remote attackers to read arbitrary files via a "\.." (backslash dot dot).

5.0
2002-12-31 CVE-2002-1986 Perception Unspecified vulnerability in Perception Liteserve 2.0/2.0.1/2.0.2

Perception LiteServe 2.0 through 2.0.1 allows remote attackers to obtain the source code of CGI scripts via an HTTP request with a trailing dot (".").

5.0
2002-12-31 CVE-2002-1985 Incognito Software INC Buffer Overflow vulnerability in Incognito Software INC Ismtp Gateway 5.0.1

iSMTP 5.0.1 allows remote attackers to cause a denial of service via a long "MAIL FROM" command, possibly triggering a buffer overflow.

5.0
2002-12-31 CVE-2002-1984 Microsoft Unspecified vulnerability in Microsoft Internet Explorer 5.0.1/5.5/6.0

Microsoft Internet Explorer 5.0.1 through 6.0 on Windows 2000 or Windows XP allows remote attackers to cause a denial of service (crash) via an OBJECT tag that contains a crafted CLASSID (CLSID) value of "CLSID:00022613-0000-0000-C000-000000000046".

5.0
2002-12-31 CVE-2002-1982 Icecast Directory Traversal Information Disclosure vulnerability in Icecast 1.3.12

Directory traversal vulnerability in the list_directory function in Icecast 1.3.12 allows remote attackers to determine if a directory exists via a ..

5.0
2002-12-31 CVE-2002-1981 Microsoft Unspecified vulnerability in Microsoft SQL Server 2000

Microsoft SQL Server 2000 through SQL Server 2000 SP2 allows the "public" role to execute the (1) sp_MSSetServerProperties or (2) sp_MSsetalertinfo stored procedures, which allows attackers to modify configuration including SQL server startup and alert settings.

5.0
2002-12-31 CVE-2002-1969 THE Magic Notebook Denial Of Service vulnerability in The Magic Notebook Invalid Username

Magic Notebook 1.0b and 1.1b allows remote attackers to cause a denial of service (crash) via an invalid username during login.

5.0
2002-12-31 CVE-2002-1967 Mark Hanson Denial of Service vulnerability in Mark Hanson Xircon 1.0Beta4

Buffer overflow in XiRCON 1.0 Beta 4 allows remote attackers to cause a denial of service (disconnect) via a long (1) ctcp, (2) primsg, (3) msg, or (4) notice command.

5.0
2002-12-31 CVE-2002-1966 MY Postcards Unspecified vulnerability in MY Postcards MY Postcards Platinum 5.0/6.0

Directory traversal vulnerability in magiccard.cgi in My Postcards Platinum 5.0 and 6.0 allows remote attackers to read arbitrary files via a ..

5.0
2002-12-31 CVE-2002-1955 Iomega Authentication vulnerability in Iomega NAS A300U

Iomega NAS A300U uses cleartext LANMAN authentication when mounting CIFS/SMB drives, which allows remote attackers to perform a man-in-the-middle attack.

5.0
2002-12-31 CVE-2002-1953 AOL Remote Heap Overflow vulnerability in AOL Instant Messenger Link Special Character

Heap-based buffer overflow in the goim handler of AOL Instant Messenger (AIM) 4.4 through 4.8.2616 allows remote attackers to cause a denial of service (crash) via escaping of the screen name parameter, which triggers the overflow when the user selects "Get Info" on the buddy.

5.0
2002-12-31 CVE-2002-1949 Iomega Unspecified vulnerability in Iomega NAS A300U

The Network Attached Storage (NAS) Administration Web Page for Iomega NAS A300U transmits passwords in cleartext, which allows remote attackers to sniff the administrative password.

5.0
2002-12-31 CVE-2002-1945 Virtualzone Denial Of Service vulnerability in Virtualzone Smartmail Server 1.0Beta10

Buffer overflow in SmartMail Server 1.0 Beta 10 allows remote attackers to cause a denial of service (crash) via a long request to (1) TCP port 25 (SMTP) or (2) TCP port 110 (POP3).

5.0
2002-12-31 CVE-2002-1944 Motorola Denial-Of-Service vulnerability in Motorola Surfboard 4200

Motorola Surfboard 4200 cable modem allows remote attackers to cause a denial of service (crash) by performing a SYN scan using a tool such as nmap.

5.0
2002-12-31 CVE-2002-1943 Safetp Unspecified vulnerability in Safetp Server 1.46

SafeTP 1.46, when network address translation (NAT) is being used, leaks the internal IP address of the FTP server in a response to a passive mode (PASV) file transfer request.

5.0
2002-12-31 CVE-2002-1942 Imatix Denial Of Service vulnerability in Imatix Xitami 2.5B5

Imatix Xitami 2.5 b5 does not properly terminate certain Keep-Alive connections that have been broken or closed early, which allows remote attackers to cause a denial of service (crash) via a large number of concurrent sessions.

5.0
2002-12-31 CVE-2002-1941 Radiobird Software Buffer Overflow vulnerability in Radiobird Software web Server 4 Everyone 1.28

Buffer overflow in RadioBird WebServer 4 Everyone 1.28 allows remote attackers to cause a denial of service (crash) via a long HTTP GET request with the Host header set.

5.0
2002-12-31 CVE-2002-1940 Jacob Navia Unspecified vulnerability in Jacob Navia Lcc-Win32 3.2

LCC-Win32 3.2 compiler, when running on Windows 95, 98, or ME, writes portions of previously used memory after the import table, which could allow attackers to gain sensitive information.

5.0
2002-12-31 CVE-2002-1937 Symantec Remote Security vulnerability in Symantec products

Symantec Firewall/VPN Appliance 100 through 200R hardcodes the administrator's MAC address inside the firewall's configuration, which allows remote attackers to spoof the administrator's MAC address and perform an ARP poisoning man-in-the-middle attack to obtain the administrator's password.

5.0
2002-12-31 CVE-2002-1935 Pingtel Unspecified vulnerability in Pingtel Xpressa

Pingtel Xpressa 1.2.5 through 2.0.1 uses predictable (1) Call-ID, (2) CSeq, and (3) "To" and "From" SIP URL values in a Session Identification Protocol (SIP) request, which allows remote attackers to avoid registering with the SIP registrar.

5.0
2002-12-31 CVE-2002-1934 Pingtel Unspecified vulnerability in Pingtel Xpressa

Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 2.0.1 leaks sensitive information during boot-up, which allows attackers to obtain the MD5 hash of the Admin password, MD5 hash of the physical password, and other registration information.

5.0
2002-12-31 CVE-2002-1928 Software602 Remote Security vulnerability in Software602 602Pro LAN Suite 2002

602Pro LAN SUITE 2002 allows remote attackers to view the directory tree via an HTTP GET request with a trailing "~" (tilde) or ".bak" extension.

5.0
2002-12-31 CVE-2002-1926 Aquonics Scripting Directory Traversal vulnerability in Aquonics Scripting Aquonics File Manager 1.5

Directory traversal vulnerability in source.php in Aquonics File Manager 1.5 allows remote attackers to read arbitrary files via a ..

5.0
2002-12-31 CVE-2002-1925 Tiny Software Denial Of Service vulnerability in Tiny Software Tiny Personal Firewall 3.0/3.0.5/3.0.6

Tiny Personal Firewall 3.0 through 3.0.6 allows remote attackers to cause a denial of service (crash) by via SYN, UDP, ICMP and TCP portscans when the administrator selects the Log tab of the Personal Firewall Agent module.

5.0
2002-12-31 CVE-2002-1924 APC Unspecified vulnerability in APC Powerchute 5.0.2

PowerChute plus 5.0.2 creates a "Pwrchute" directory during installation that is shared and world writeable, which could allow remote attackers to modify or create files in that directory.

5.0
2002-12-31 CVE-2002-1920 Datawizard Buffer Overflow vulnerability in Datawizard Ftpxq 2.5

Buffer overflow in FtpXQ 2.5 allows remote attackers to cause a denial of service (crash) via a MKD command with a long directory name.

5.0
2002-12-31 CVE-2002-1917 Geeklog Unspecified vulnerability in Geeklog 1.3.5Sr1/1.35

CRLF injection vulnerability in the "User Profile: Send Email" feature in Geeklog 1.35 and 1.3.5sr1 allows remote attackers to obtain e-mail addresses by injecting a CRLF into the Subject field and adding a BCC mail header.

5.0
2002-12-31 CVE-2002-1916 Pirch Denial-Of-Service vulnerability in Ruspirch

Pirch and RusPirch, when auto-log is enabled, allows remote attackers to cause a denial of service (crash) via a nickname containing an MS-DOS device name such as AUX, which is inserted into a filename for saving queries.

5.0
2002-12-31 CVE-2002-1913 Myphpnuke Unspecified vulnerability in Myphpnuke 1.8.8

phptonuke.php in myPHPNuke 1.8.8 allows remote attackers to read arbitrary files via a full pathname in the filnavn variable.

5.0
2002-12-31 CVE-2002-1912 Skystream Denial Of Service vulnerability in Skystream Emr5000 1.16/1.17/1.18

SkyStream EMR5000 1.16 through 1.18 does not drop packets or disable the Ethernet interface when the buffers are full, which allows remote attackers to cause a denial of service (null pointer exception and kernel panic) via a large number of packets.

5.0
2002-12-31 CVE-2002-1911 Zonelabs Denial Of Service vulnerability in Zone Labs ZoneAlarm Syn Flood

ZoneAlarm Pro 3.0 and 3.1, when configured to block all traffic, allows remote attackers to cause a denial of service (CPU and memory consumption) via a large number of SYN packets (SYN flood).

5.0
2002-12-31 CVE-2002-1910 Click2Learn Unspecified vulnerability in Click2Learn Ingenium Learning Management System 5.1/6.1

Click2Learn Ingenium Learning Management System 5.1 and 6.1 uses weak encryption for passwords (reversible algorithm), which allows attackers to obtain passwords.

5.0
2002-12-31 CVE-2002-1909 Click2Learn Information Disclosure vulnerability in Click2Learn Ingenium Learning Management System 5.1/6.1

Click2Learn Ingenium Learning Management System 5.1 and 6.1 stores the hashed administrative password in a config.txt file under the htdocs directory, which allows remote attackers to obtain the administrative password.

5.0
2002-12-31 CVE-2002-1908 Microsoft Unspecified vulnerability in Microsoft Internet Information Services 5.0

Microsoft IIS 5.0 and 5.1 allows remote attackers to cause a denial of service (CPU consumption) via an HTTP request with a Host header that contains a large number of "/" (forward slash) characters.

5.0
2002-12-31 CVE-2002-1907 Telcondex Denial Of Service vulnerability in Telcondex Simplewebserver 2.06.20817

TelCondex SimpleWebServer 2.06.20817 allows remote attackers to cause a denial of service (crash) via a long HTTP GET request.

5.0
2002-12-31 CVE-2002-1906 Polycom Denial Of Service vulnerability in Polycom Viavideo 2.2/3.0

The web server for Polycom ViaVideo 2.2 and 3.0 allows remote attackers to cause a denial of service (CPU consumption) by sending incomplete HTTP requests and leaving the connections open.

5.0
2002-12-31 CVE-2002-1905 Polycom Buffer Overflow vulnerability in Polycom Viavideo 2.2/3.0

Buffer overflow in the web server of Polycom ViaVideo 2.2 and 3.0 allows remote attackers to cause a denial of service (crash) via a long HTTP GET request.

5.0
2002-12-31 CVE-2002-1903 University OF Washington Unspecified vulnerability in University of Washington Pine

Pine 4.2.1 through 4.4.4 puts Unix usernames and/or uid into Sender: and X-Sender: headers, which could allow remote attackers to obtain sensitive information.

5.0
2002-12-31 CVE-2002-1902 Markus Triska Denial of Service vulnerability in CGIForum Infinite Recursion

CGIForum 1.0 through 1.05 allows remote attackers to cause a denial of service (infinite recursion) by creating a message board post that is a child of an outdated parent.

5.0
2002-12-31 CVE-2002-1897 Mywebserver Denial Of Service vulnerability in Mywebserver 1.0.0/1.0.1/1.0.2

MyWebServer LLC MyWebServer 1.0.2 allows remote attackers to cause a denial of service (crash) via a long HTTP request, possibly triggering a buffer overflow.

5.0
2002-12-31 CVE-2002-1895 Apache Denial-Of-Service vulnerability in Apache Tomcat 3.3/4.0.4

The servlet engine in Jakarta Apache Tomcat 3.3 and 4.0.4, when using IIS and the ajp1.3 connector, allows remote attackers to cause a denial of service (crash) via a large number of HTTP GET requests for an MS-DOS device such as AUX, LPT1, CON, or PRN.

5.0
2002-12-31 CVE-2002-1889 Logsurfer Buffer Overflow vulnerability in Logsurfer 1.41/1.5/1.5A

Off-by-one buffer overflow in the context_action function in context.c of Logsurfer 1.41 through 1.5a allows remote attackers to cause a denial of service (crash) via a malformed log entry.

5.0
2002-12-31 CVE-2002-1886 Tightauction Information Disclosure vulnerability in Tightauction 3.0

TightAuction 3.0 stores config.inc under the web document root with insufficient access control, which allows remote attackers to obtain the database username and password.

5.0
2002-12-31 CVE-2002-1881 Macromedia Denial Of Service vulnerability in Macromedia Flash Malformed SWF

Macromedia Flash Player 4.0 r12 through 6.0.47.0 allows remote attackers to cause a denial of service (web browser crash) via malformed content in a Flash Shockwave (.SWF) file, as demonstrated by by ROT13 encoding the body of the file but not the headers.

5.0
2002-12-31 CVE-2002-1880 Lokwa Remote Security vulnerability in Lokwa Lokwabb 1.2.2

LokwaBB 1.2.2 allows remote attackers to read arbitrary messages by modifying the pmid parameter to pm.php.

5.0
2002-12-31 CVE-2002-1878 W Agora Remote File Include vulnerability in W-Agora 4.1.1/4.1.2/4.1.3

PHP remote file inclusion vulnerability in w-Agora 4.1.3 allows remote attackers to execute arbitrary PHP code via the inc_dir parameter.

5.0
2002-12-31 CVE-2002-1873 Microsoft Resource Exhaustion vulnerability in Microsoft Exchange Server 2000

Microsoft Exchange 2000, when used with Microsoft Remote Procedure Call (MSRPC), allows remote attackers to cause a denial of service (crash or memory consumption) via malformed MSRPC calls.

5.0
2002-12-31 CVE-2002-1872 Microsoft Unspecified vulnerability in Microsoft SQL Server

Microsoft SQL Server 6.0 through 2000, with SQL Authentication enabled, uses weak password encryption (XOR), which allows remote attackers to sniff and decrypt the password.

5.0
2002-12-31 CVE-2002-1866 SWS Denial Of Service vulnerability in SWS Simple Web Server Non-existent File Request

Simple Web Server (SWS) 0.0.4 through 0.1.0 does not close file descriptors for 404 error messages, which could allow remote attackers to cause a denial of service (file descriptor exhaustion) via multiple requests for pages that do not exist.

5.0
2002-12-31 CVE-2002-1865 D Link
Linksys
Denial of Service vulnerability in Multiple Vendor Access Point Embedded HTTP Server

Buffer overflow in the Embedded HTTP server, as used in (1) D-Link DI-804 4.68, Dl-704 V2.56b6, and Dl-704 V2.56b5 and (2) Linksys Etherfast BEFW11S4 Wireless AP + Cable/DSL Router 1.37.2 through 1.42.7 and Linksys WAP11 1.3 and 1.4, allows remote attackers to cause a denial of service (crash) via a long header, as demonstrated using the Host header.

5.0
2002-12-31 CVE-2002-1864 SWS Unspecified vulnerability in SWS Simple web Server

Directory traversal vulnerability in Simple Web Server (SWS) 0.0.4 through 0.1.0 allows remote attackers to read arbitrary files via a ".." (dot dot) in an HTTP request.

5.0
2002-12-31 CVE-2002-1862 Virtualzone Denial Of Service vulnerability in Virtualzone Smartmail Server 2.0

SmartMail Server 2.0 allows remote attackers to cause a denial of service (crash) by sending data and closing the connection before all the data has been sent.

5.0
2002-12-31 CVE-2002-1861 Sybase Unspecified vulnerability in Sybase Easerver 4.0

Sybase Enterprise Application Server 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF.").

5.0
2002-12-31 CVE-2002-1860 Pramati Unspecified vulnerability in Pramati Server 3.0

Pramati Server 3.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF.").

5.0
2002-12-31 CVE-2002-1859 Orionserver Unspecified vulnerability in Orionserver Orion Application Server 1.5.3

Orion Application Server 1.5.3, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF.").

5.0
2002-12-31 CVE-2002-1858 Oracle Unspecified vulnerability in Oracle Application Server

Oracle Oracle9i Application Server 1.0.2.2 and 9.0.2 through 9.0.2.0.1, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF.").

5.0
2002-12-31 CVE-2002-1857 JO Unspecified vulnerability in JO Webserver 1.0Rc1

jo! jo Webserver 1.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF.").

5.0
2002-12-31 CVE-2002-1856 HP Unspecified vulnerability in HP Application Server 8.0

HP Application Server 8.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF.").

5.0
2002-12-31 CVE-2002-1855 Macromedia Unspecified vulnerability in Macromedia Jrun 3.0/3.1/4.0

Macromedia JRun 3.0 through 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot ("WEB-INF.").

5.0
2002-12-31 CVE-2002-1850 Apache Buffer Denial Of Service vulnerability in Apache Http Server 2.0.39/2.0.40

mod_cgi in Apache 2.0.39 and 2.0.40 allows local users and possibly remote attackers to cause a denial of service (hang and memory consumption) by causing a CGI script to send a large amount of data to stderr, which results in a read/write deadlock between httpd and the CGI script.

5.0
2002-12-31 CVE-2002-1849 Parachat Denial Of Service vulnerability in Parachat Server 4.0

ParaChat Server 4.0 does not log users off if the browser's back button is used, which allows remote attackers to cause a denial of service by repeatedly logging into a chat room, hitting the back button, then logging into the same chat room as a different user, which fills the chat room with invalid users.

5.0
2002-12-31 CVE-2002-1846 Yabb Denial-Of-Service vulnerability in Yabb 1.40/1.41

Yet Another Bulletin Board (YaBB) 1.40 and 1.41 does not require a user to submit the correct password before changing it to a new password, which allows remote attackers to modify passwords by stealing the cookie of another user, modifying the expiretime setting, and submitting the change in a profile2 action to index.php.

5.0
2002-12-31 CVE-2002-1841 Noguska Remote File Include vulnerability in Noguska Nola 1.1.1/1.1.2

The document management module in NOLA 1.1.1 and 1.1.2 does not restrict the types of files that are uploaded, which allows remote attackers to upload and execute arbitrary PHP files with extensions such as .php4.

5.0
2002-12-31 CVE-2002-1839 Trend Micro Unspecified vulnerability in Trend Micro Interscan Viruswall for Windows NT 3.52

Trend Micro InterScan VirusWall for Windows NT 3.52 does not record the sender's IP address in the headers for a mail message when it is passed from VirusWall to the MTA, which allows remote attackers to hide the origin of the message.

5.0
2002-12-31 CVE-2002-1838 Steve Sachs Unspecified vulnerability in Steve Sachs Charities.Cron

Charities.cron 1.0.2 through 1.6.0 allows local users to write to arbitrary files via a symlink attack on temporary files.

5.0
2002-12-31 CVE-2002-1837 IDS Unspecified vulnerability in IDS 0.8.1

The getAlbumToDisplay function in idsShared.pm for Image Display System (IDS) 0.81 allows remote attackers to determine the existence of arbitrary directories via ".." sequences in the album parameter, which generates different error messages depending on whether the directory exists or not.

5.0
2002-12-31 CVE-2002-1836 Xerox Unspecified vulnerability in Xerox Docutech 6110 and Docutech 6115

The default configuration of Xerox DocuTech 6110 and DocuTech 6115 exports certain NFS shares to the world with world writable permissions, which may allow remote attackers to modify sensitive files.

5.0
2002-12-31 CVE-2002-1832 Scaramanga Denial Of Service vulnerability in Scaramanga Firestorm IDS 0.4.0/0.4.1/0.4.2

Unknown vulnerability in the "ipopts decode" functionality in Firestorm IDS 0.4.0 through 0.4.2 allows remote attackers to cause a denial of service (crash) via certain IP options.

5.0
2002-12-31 CVE-2002-1831 Microsoft Unspecified vulnerability in Microsoft MSN Messenger

Microsoft MSN Messenger Service 1.0 through 4.6 allows remote attackers to cause a denial of service (crash) via an invite request that contains hex-encoded spaces (%20) in the Invitation-Cookie field.

5.0
2002-12-31 CVE-2002-1830 Openbb Unspecified vulnerability in Openbb 1.0.0Rc1/1.0.0Rc2/1.0.0Rc3

Open Bulletin Board (OpenBB) 1.0.0 RC3 allows remote attackers to bypass authentication and access modifier options via a direct request to moderator.php with the action and ismod parameters.

5.0
2002-12-31 CVE-2002-1828 Savant Denial Of Service vulnerability in Savant Webserver 3.1

Savant Webserver 3.1 allows remote attackers to cause a denial of service (crash) via an HTTP GET request with a negative Content-Length value.

5.0
2002-12-31 CVE-2002-1824 Microsoft Unspecified vulnerability in Microsoft IE and Internet Explorer

Microsoft Internet Explorer 6.0, when handling an expired CA-CERT in a webserver's certificate chain during a SSL/TLS handshake, does not prompt the user before searching for and finding a newer certificate, which may allow attackers to perform a man-in-the-middle attack.

5.0
2002-12-31 CVE-2002-1822 IBM Information Disclosure vulnerability in IBM Http Server 1.0

IBM HTTP Server 1.0 on AS/400 allows remote attackers to obtain the path to the web root directory and other sensitive information, which is leaked in an error mesage when a request is made for a non-existent Java Server Page (JSP).

5.0
2002-12-31 CVE-2002-1818 EZ Systems Information Disclosure vulnerability in EZ Systems Httpbench 1.1

ezhttpbench.php in eZ httpbench 1.1 allows remote attackers to read arbitrary files via a full pathname in the AnalyseSite parameter.

5.0
2002-12-31 CVE-2002-1815 Aquonics Scripting Directory Traversal vulnerability in Aquonics Scripting Aquonics File Manager 1.5

Directory traversal vulnerability in source.php and source.cgi in Aquonics File Manager 1.5 allows remote attackers to read arbitrary files via a ..

5.0
2002-12-31 CVE-2002-1811 Belkin Denial Of Service vulnerability in Belkin F5D6130 Wnap Ap14G8

Belkin F5D6130 Wireless Network Access Point running firmware AP14G8 allows remote attackers to cause a denial of service (connection loss) by sending several SNMP GetNextRequest requests.

5.0
2002-12-31 CVE-2002-1801 Bizdesign Unspecified vulnerability in Bizdesign Imagefolio

ImageFolio 2.23 through 2.27 allows remote attackers to obtain sensitive information via a nonexistent image category, which leaks the web root in the resulting error message.

5.0
2002-12-31 CVE-2002-1800 Phprank Unspecified vulnerability in PHPrank 1.8

phpRank 1.8 stores the administrative password in plaintext on the server and in the "ap" cookie, which allows remote attackers to retrieve the administrative password.

5.0
2002-12-31 CVE-2002-1793 HP Denial Of Service vulnerability in HP Virtualvault and Vvos

HTTP Server mod_ssl module running on HP-UX 11.04 with Virtualvault OS (VVOS) 4.5 through 4.6 closes the connection when the Apache server times out during an SSL request, which may allow attackers to cause a denial of service.

5.0
2002-12-31 CVE-2002-1790 Microsoft Unspecified vulnerability in Microsoft products

The SMTP service in Microsoft Internet Information Services (IIS) 4.0 and 5.0 allows remote attackers to bypass anti-relaying rules and send spam or spoofed messages via encapsulated SMTP addresses, a similar vulnerability to CVE-1999-0682.

5.0
2002-12-31 CVE-2002-1784 HP Denial Of Service vulnerability in Tru64 InetD

Unknown vulnerability in inetd in HP Tru64 Unix 4.0f through 5.1a allows remote attackers to cause a denial of service via unknown attack vectors.

5.0
2002-12-31 CVE-2002-1783 PHP Unspecified vulnerability in PHP

CRLF injection vulnerability in PHP 4.2.1 through 4.2.3, when allow_url_fopen is enabled, allows remote attackers to modify HTTP headers for outgoing requests by causing CRLF sequences to be injected into arguments that are passed to the (1) fopen or (2) file functions.

5.0
2002-12-31 CVE-2002-1780 Alcatech Gmbh Denial-Of-Service vulnerability in Alcatech Gmbh BPM Studio PRO 4.2

BPM Studio Pro 4.2 by ALCATech GmbH includes a webserver that allows a remote attacker to cause a denial of service (crash) by sending a URL request for a MS-DOS device such as con.

5.0
2002-12-31 CVE-2002-1771 Matt Wright Unspecified vulnerability in Matt Wright Formmail

Matt Wright FormMail 1.9 and earlier allows remote attackers to send spam or anonymous e-mail by injecting a newline character followed by CC:, BCC:, or additional TO: fields in the email and realname CGI variables.

5.0
2002-12-31 CVE-2002-1770 Qualcomm Unspecified vulnerability in Qualcomm Eudora 5.1

Qualcomm Eudora 5.1 allows remote attackers to execute arbitrary code via an HTML e-mail message that uses a file:// URL in a t:video tag to reference an attached Windows Media Player file containing JavaScript code, which is launched and executed in the My Computer zone by Internet Explorer.

5.0
2002-12-31 CVE-2002-1768 Cisco Denial of Service vulnerability in Cisco Malformed HSRP Traffic

Cisco IOS 11.1 through 12.2, when HSRP support is not enabled, allows remote attackers to cause a denial of service (CPU consumption) via randomly sized UDP packets to the Hot Standby Routing Protocol (HSRP) port 1985.

5.0
2002-12-31 CVE-2002-1765 Ximian Denial Of Service vulnerability in Ximian Evolution 1.0.3/1.0.4

Evolution 1.0.3 and 1.0.4 allows remote attackers to cause a denial of service (memory consumption and crash) via an email with a malformed MIME header.

5.0
2002-12-31 CVE-2002-1762 Microsoft Unspecified vulnerability in Microsoft Baseline Security Analyzer 1.0

Microsoft Baseline Security Analyzer (MBSA) 1.0 stores security scans in a known location C:\Documents and Settings\username\SecurityScans in plaintext, which could allow remote attackers to obtain sensitive information about the system via malicious active content such as ActiveX controls or Java.

5.0
2002-12-31 CVE-2002-1761 Phprojekt Directory Traversal vulnerability in PHProjekt

Directory traversal vulnerability in PHProjekt 2.0 through 3.1 allows remote attackers to read arbitrary files via ..

5.0
2002-12-31 CVE-2002-1759 Phprojekt Unspecified vulnerability in PHProjekt

The upload function in PHProjekt 2.0 through 3.1 does not properly verify certain variables related to uploaded data, which allows remote attackers to cause PHProjekt to process arbitrary files.

5.0
2002-12-31 CVE-2002-1758 Phprojekt Unspecified vulnerability in PHProjekt

PHProjekt 2.0 through 3.1 allows remote attackers to view or modify data via requests to certain scripts that do not verify if the user is logged in.

5.0
2002-12-31 CVE-2002-1756 ACD Systems Buffer Overflow vulnerability in ACD Systems Acdsee 4.0

ACDSee 4.0 allows remote attackers to cause a denial of service (crash) via an .ais file with a long file description field, which is not properly handled when the file properties of the file are viewed.

5.0
2002-12-31 CVE-2002-1755 Tinc Remote Security vulnerability in Tinc 1.0Pre3/1.0Pre4

tinc 1.0pre3 and 1.0pre4 VPN does not authenticate forwarded packets, which allows remote attackers to inject data into user sessions without detection, and possibly control the data contents via cut-and-paste attacks on CBC.

5.0
2002-12-31 CVE-2002-1753 Cgiscript NET Remote Command Execution vulnerability in Cgiscript.Net Csnews and Csnewspro

csNewsPro.cgi in CGIScript.net csNews Professional (csNewsPro) allows remote attackers to execute arbitrary Perl code via the setup parameter, which is processed by the Perl eval function.

5.0
2002-12-31 CVE-2002-1752 Cgiscript NET Remote Command Execution vulnerability in Cgiscript.Net Cschat-R-Box 1.0

csChatRBox.cgi in CGIScript.net csChat-R-Box allows remote attackers to execute arbitrary Perl code via the setup parameter, which is processed by the Perl eval function.

5.0
2002-12-31 CVE-2002-1751 Cgiscript NET Remote Command Execution vulnerability in Cgiscript.Net Cslivesupport 1.0

csLiveSupport.cgi in CGIScript.net csLiveSupport allows remote attackers to execute arbitrary Perl code via the setup parameter, which is processed by the Perl eval function.

5.0
2002-12-31 CVE-2002-1750 Cgiscript NET Remote Command Execution vulnerability in Cgiscript.Net Csguestbook 1.0

csGuestbook.cgi in CGISCRIPT.NET csGuestbook 1.0 allows remote attackers to execute arbitrary Perl code via the setup parameter, which is processed by the Perl eval function.

5.0
2002-12-31 CVE-2002-1747 Maxim Krasnyansky Remote Security vulnerability in Maxim Krasnyansky Vtun 2.5B1

Vtun 2.5b1 does not authenticate forwarded packets, which allows remote attackers to inject data into user sessions without detection, and possibly control the data contents via cut-and-paste attacks on ECB.

5.0
2002-12-31 CVE-2002-1746 Maxim Krasnyansky Remote Security vulnerability in Maxim Krasnyansky Vtun 2.5B1

Vtun 2.5b1 allows remote attackers to inject data into user sessions by sniffing and replaying packets.

5.0
2002-12-31 CVE-2002-1745 Microsoft Unspecified vulnerability in Microsoft Internet Information Services 5.0

Off-by-one error in the CodeBrws.asp sample script in Microsoft IIS 5.0 allows remote attackers to view the source code for files with extensions containing with one additional character after .html, .htm, .asp, or .inc, such as .aspx files.

5.0
2002-12-31 CVE-2002-1744 Microsoft Unspecified vulnerability in Microsoft Internet Information Services 5.0

Directory traversal vulnerability in CodeBrws.asp in Microsoft IIS 5.0 allows remote attackers to view source code and determine the existence of arbitrary files via a hex-encoded "%c0%ae%c0%ae" string, which is the Unicode representation for ".." (dot dot).

5.0
2002-12-31 CVE-2002-1743 Mirabilis Denial of Service vulnerability in Mirabilis ICQ 2002Abuild3722

AOL ICQ 2002a Build 3722 allows remote attackers to cause a denial of service (crash) via a malformed .hpf file.

5.0
2002-12-31 CVE-2002-1742 Paul Kulchenko Remote Arbitrary Command Execution vulnerability in SOAP::Lite 0.50/0.51/0.52

SOAP::Lite 0.50 through 0.52 allows remote attackers to load arbitrary Perl functions by suppling a non-existent function in a script using a SOAP::Lite module, which causes the AUTOLOAD subroutine to trigger.

5.0
2002-12-31 CVE-2002-1738 ALT N Unspecified vulnerability in Alt-N Mdaemon

Alt-N Technologies MDaemon 5.0.5.0 and earlier creates a default MDaemon mail account with a password of MServer, which could allow remote attackers to send anonymous email.

5.0
2002-12-31 CVE-2002-1736 Markus Triska Remote Security vulnerability in CGINews

Unknown vulnerability in CGINews before 1.06 allow remote attackers to read arbitrary files via "unfiltered user input."

5.0
2002-12-31 CVE-2002-1730 Aspjar HTML Injection vulnerability in Aspjar Guestbook 1.0

ASPjar Guestbook 1.00 allows remote attackers to delete arbitrary messages accessing the delete.asp administrative script with certain cookie values set to "true".

5.0
2002-12-31 CVE-2002-1728 Asksam Systems Cross-Site Scripting vulnerability in askSam Web Publisher 1.0/4.0

askSam Web Publisher 1.0 and 4.0 allows remote attackers to determine the full path to the web root directory via a request for a file that does not exist, which generates an error message that reveals the full path.

5.0
2002-12-31 CVE-2002-1725 Onlinetools ORG Cross-Site Scripting vulnerability in Onlinetools.Org PHPimageview 1.0

phpimageview.php in PHPImageView 1.0 allows remote attackers to obtain sensitive information via the pw=show option, which invokes the phpinfo function.

5.0
2002-12-31 CVE-2002-1723 Powerboards Remote Security vulnerability in Powerboards 2.2B

Powerboards 2.2b allows remote attackers to view the full path to the backend database by sending a cookie containing a non-existent username to profiles.php, which displays the full path in the error message.

5.0
2002-12-31 CVE-2002-1721 Paul L Daniels Denial of Service vulnerability in Paul L Daniels Altermime 0.1.10/0.1.11

Off-by-one error in alterMIME 0.1.10 and 0.1.11 allows remote attackers to cause a denial of service (crash) via an x-header that causes snprintf overwrite the FFGET_FILE variable with a (null) byte.

5.0
2002-12-31 CVE-2002-1719 Bavo Unspecified vulnerability in Bavo 0.3

Unknown vulnerability in Bavo 0.3 allows remote attackers to modify posted messages.

5.0
2002-12-31 CVE-2002-1718 Microsoft Information Exposure vulnerability in Microsoft Internet Information Services 5.1

Microsoft Internet Information Server (IIS) 5.1 may allow remote attackers to view the contents of a Frontpage Server Extension (FPSE) file, as claimed using an HTTP request for colegal.htm that contains ..

5.0
2002-12-31 CVE-2002-1717 Microsoft Information Exposure vulnerability in Microsoft Internet Information Services 5.1

Microsoft Internet Information Server (IIS) 5.1 allows remote attackers to view path information via a GET request to (1) /_vti_pvt/access.cnf, (2) /_vti_pvt/botinfs.cnf, (3) /_vti_pvt/bots.cnf, or (4) /_vti_pvt/linkinfo.cnf.

5.0
2002-12-31 CVE-2002-1716 Microsoft Unspecified vulnerability in Microsoft Office

The Host() function in the Microsoft spreadsheet component on Microsoft Office XP allows remote attackers to create arbitrary files using the SaveAs capability.

5.0
2002-12-31 CVE-2002-1714 Microsoft Unspecified vulnerability in Microsoft IE and Internet Explorer

Microsoft Internet Explorer 5.0 through 6.0 allows remote attackers to cause a denial of service (crash) via an object of type "text/html" with the DATA field that identifies the HTML document that contains the object, which may cause infinite recursion.

5.0
2002-12-31 CVE-2002-1712 Microsoft Unspecified vulnerability in Microsoft Windows 2000 and Windows NT

Microsoft Windows 2000 allows remote attackers to cause a denial of service (memory consumption) by sending a flood of empty TCP/IP packets with the ACK and FIN bits set to the NetBIOS port (TCP/139), as demonstrated by stream3.

5.0
2002-12-31 CVE-2002-1707 Phpbb Group Remote File Include vulnerability in PHPBB2 Install.PHP

install.php in phpBB 2.0 through 2.0.1, when "allow_url_fopen" and "register_globals" variables are set to "on", allows remote attackers to execute arbitrary PHP code by modifying the phpbb_root_dir parameter to reference a URL on a remote web server that contains the code.

5.0
2002-12-31 CVE-2002-1706 Cisco Unspecified vulnerability in Cisco IOS

Cisco IOS software 11.3 through 12.2 running on Cisco uBR7200 and uBR7100 series Universal Broadband Routers allows remote attackers to modify Data Over Cable Service Interface Specification (DOCSIS) settings via a DOCSIS file without a Message Integrity Check (MIC) signature, which is approved by the router.

5.0
2002-12-31 CVE-2002-1705 Microsoft Unspecified vulnerability in Microsoft Internet Explorer 5.5/6.0

Microsoft Internet Explorer 5.5 through 6.0 allows remote attackers to cause a denial of service (crash) via a Cascading Style Sheet (CSS) with the p{cssText} element declared and a bold font weight.

5.0
2002-12-31 CVE-2002-1704 Zeroboard Unspecified vulnerability in Zeroboard 4.1Pl2

Zeroboard 4.1, when the "allow_url_fopen" and "register_globals" variables are enabled, allows remote attackers to execute arbitrary PHP code by modifying the _zb_path parameter to reference a URL on a remote web server that contains the code.

5.0
2002-12-31 CVE-2002-1698 Microsoft Denial Of Service vulnerability in Microsoft MSN Messenger Font Tag

Buffer overflow in Microsoft MSN Messenger Service 1.0 through 4.6 allows remote attackers to cause a denial of service (crash) via a long FN (font) argument in the message header.

5.0
2002-12-31 CVE-2002-1697 Vtun Unspecified vulnerability in Vtun

Electronic Code Book (ECB) mode in VTun 2.0 through 2.5 uses a weak encryption algorithm that produces the same ciphertext from the same plaintext blocks, which could allow remote attackers to gain sensitive information.

5.0
2002-12-31 CVE-2002-1695 Microsoft
Symantec
Norton Internet Security 2001 opens log files with FILE_SHARE_READ and FILE_SHARE_WRITE permissions, which could allow remote attackers to modify the log file contents while Norton Internet Security is running.
5.0
2002-12-31 CVE-2002-1694 Microsoft Unspecified vulnerability in Microsoft products

Microsoft Internet Information Server (IIS) 4.0 opens log files with FILE_SHARE_READ and FILE_SHARE_WRITE permissions, which could allow remote attackers to modify the log file contents while IIS is running.

5.0
2002-12-31 CVE-2002-1688 Microsoft Unspecified vulnerability in Microsoft Internet Explorer 5.5/6.0

The browser history feature in Microsoft Internet Explorer 5.5 through 6.0 allows remote attackers to execute arbitrary script as other users and steal authentication information via cookies by injecting JavaScript into the URL, which is executed when the user hits the Back button.

5.0
2002-12-31 CVE-2002-1684 Deerfield
Working Resources INC
Directory Traversal vulnerability in Working Resources BadBlue

Directory traversal vulnerability in (1) Deerfield D2Gfx 1.0.2 or (2) BadBlue Enterprise Edition 1.5.x and BadBlue Personal Edition 1.5.6 allows remote attackers to read arbitrary files via a ../ (dot dot slash) in the script used to read Microsoft Office documents.

5.0
2002-12-31 CVE-2002-1677 Mrtg Path Disclosure vulnerability in Mrtg Mrtgconfig 0.5.9

14all.cgi 1.1p15 in mrtgconfig allows remote attackers to determine the physical path to the web root directory via a request with an invalid cfg parameter, which generates an error message that reveals the path.

5.0
2002-12-31 CVE-2002-1671 Microsoft Unspecified vulnerability in Microsoft Internet Explorer

Microsoft Internet Explorer 5.0, 5.01, and 5.5 allows remote attackers to monitor the contents of the clipboard via the getData method of the clipboardData object.

5.0
2002-12-31 CVE-2002-1666 Oracle Unspecified vulnerability in Oracle E-Business Suite

Unknown vulnerability in Oracle E-Business Suite 11i.1 through 11i.6 allows remote attackers to execute unauthorized PL/SQL procedures by modifying the Oracle Applications URL.

5.0
2002-12-31 CVE-2002-1663 Monkey Project Improper Input Validation vulnerability in Monkey-Project Monkey 0.1.1

The Post_Method function in method.c for Monkey HTTP Daemon before 0.5.1 allows remote attackers to cause a denial of service (crash) via a POST request with an invalid or missing Content-Length header value.

5.0
2002-12-31 CVE-2002-1661 Leafnode Denial Of Service vulnerability in Leafnode Resource Exhaustion

The leafnode server in leafnode 1.9.20 to 1.9.29 allows remote attackers to cause a denial of service (infinite loop) when leafnode requests a cross-posted article to one group whose name is a prefix of another group.

5.0
2002-12-31 CVE-2002-1657 Postgresql Remote Security vulnerability in Postgresql 7.3.19

PostgreSQL uses the username for a salt when generating passwords, which makes it easier for remote attackers to guess passwords via a brute force attack.

5.0
2002-12-31 CVE-2002-1655 Iplanet
Netscape
The Web Publishing feature in Netscape Enterprise Server 3.x and iPlanet Web Server 4.x allows remote attackers to cause a denial of service (crash) via a wp-html-rend request.
5.0
2002-12-31 CVE-2002-1653 Farm9 Unspecified vulnerability in Farm9 Cryptcat 1.10

Farm9 Cryptcat, when started in server mode with the -e option, does not enable encryption, which allows clients to communicate without encryption despite intended configuration, and may allow remote attackers to sniff sensitive information.

5.0
2002-12-31 CVE-2002-1647 Slashcode COM Remote Security vulnerability in Slash

The quick login feature in Slash Slashcode does not redirect the user to an alternate URL when the wrong password is provided, which makes it easier for remote web sites to guess the proper passwords by reading the username and password from the Referrer URL.

5.0
2002-12-31 CVE-2002-1635 Oracle Unspecified vulnerability in Oracle Application Server

The Apache configuration file (httpd.conf) in Oracle 9i Application Server (9iAS) uses a Location alias for /perl directory instead of a ScriptAlias, which allows remote attackers to read the source code of arbitrary CGI files via a URL containing the /perl directory instead of /cgi-bin.

5.0
2002-12-31 CVE-2002-1634 Novell Information Disclosure vulnerability in Netscape Enterprise Web Server for Netware 5.0/5.1

Novell NetWare 5.1 installs sample applications that allow remote attackers to obtain sensitive information via (1) ndsobj.nlm, (2) allfield.jse, (3) websinfo.bas, (4) ndslogin.pl, (5) volscgi.pl, (6) lancgi.pl, (7) test.jse, or (8) env.pl.

5.0
2002-12-31 CVE-2002-1628 Mike Spice Unspecified vulnerability in Mike Spice Mikes Vote CGI 1.0/1.1/1.2

Directory traversal vulnerability in vote.cgi for Mike Spice Mike's Vote CGI before 1.3 allows remote attackers to write arbitrary files via ..

5.0
2002-12-31 CVE-2002-1627 Mike Spice Unspecified vulnerability in Mike Spice Quiz ME 0.5

Directory traversal vulnerability in quiz.cgi for Mike Spice Quiz Me! before 0.6 allows remote attackers to write arbitrary files via ..

5.0
2002-12-31 CVE-2002-1626 Mike Spice Unspecified vulnerability in Mike Spice MY Calendar

Directory traversal vulnerability in Mike Spice My Calendar before 1.5 allows remote attackers to write arbitrary files via ..

5.0
2002-12-31 CVE-2002-1625 Macromedia Unspecified vulnerability in Macromedia Flash Player 6.0

Macromedia Flash Player 6 does not terminate connections when the user leaves the web page, which allows remote attackers to cause a denial of service (bandwidth, resource, and CPU consumption) via the (1) loadMovie or (2) loadSound commands, which continue to execute until the browser is closed.

5.0
2002-12-31 CVE-2002-1624 IBM Buffer Overflow vulnerability in Lotus Domino HTTP Authentication Logging

Buffer overflow in Lotus Domino web server before R5.0.10, when logging to DOMLOG.NSF, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP Authenticate header containing certain non-ASCII characters.

5.0
2002-12-31 CVE-2002-1623 Checkpoint Denial-Of-Service vulnerability in Vpn-1 Firewall-1

The design of the Internet Key Exchange (IKE) protocol, when using Aggressive Mode for shared secret authentication, does not encrypt initiator or responder identities during negotiation, which may allow remote attackers to determine valid usernames by (1) monitoring responses before the password is supplied or (2) sniffing, as originally reported for FireWall-1 SecuRemote.

5.0
2002-12-31 CVE-2002-2405 Checkpoint Permissions, Privileges, and Access Controls vulnerability in Checkpoint Firewall-1 4.1/Ng

Check Point FireWall-1 4.1 and Next Generation (NG), with UserAuth configured to proxy HTTP traffic only, allows remote attackers to pass unauthorized HTTPS, FTP and possibly other traffic through the firewall.

4.9
2002-12-31 CVE-2002-2327 SUN Permissions, Privileges, and Access Controls vulnerability in SUN Sunos 5.8

Unspecified vulnerability in the environmental monitoring subsystem in Solaris 8 running on Sun Fire 280R, V480 and V880 allows local users to cause a denial of service by setting volatile properties.

4.9
2002-12-31 CVE-2002-2203 SUN Unspecified vulnerability in SUN Solaris and Sunos

Unknown vulnerability in the System Serial Console terminal in Solaris 2.5.1, 2.6, and 7 allows local users to monitor keystrokes and possibly steal sensitive information.

4.9
2002-12-31 CVE-2002-2188 Openbsd Denial of Service vulnerability in OpenBSD getrlimit(2)

OpenBSD before 3.2 allows local users to cause a denial of service (kernel crash) via a call to getrlimit(2) with invalid arguments, possibly due to an integer signedness error.

4.9
2002-12-31 CVE-2002-2185 SGI
Debian
Mandrakesoft
Microsoft
Redhat
Suse
Denial Of Service vulnerability in Multiple Vendor Spoofed IGMP Report

The Internet Group Management Protocol (IGMP) allows local users to cause a denial of service via an IGMP membership report to a target's Ethernet address instead of the Multicast group address, which causes the target to stop sending reports to the router and effectively disconnect the group from the network.

4.9
2003-01-02 CVE-2002-1389 Typespeed Local Buffer Overflow vulnerability in Typespeed 0.4/0.4.1

Buffer overflow in typespeed 0.4.2 and earlier allows local users to gain privileges via long input.

4.6
2003-01-02 CVE-2002-1387 Ehud Gavron Unspecified vulnerability in Ehud Gavron Tracesroute 6.0/6.1/6.1.1

The spray mode in traceroute-nanog (aka traceroute-ng) may allow local users to overwrite arbitrary memory locations via an array index overflow using the nprobes (number of probes) argument.

4.6
2003-01-02 CVE-2002-1386 Ehud Gavron Buffer Overflow vulnerability in Ehud Gavron Tracesroute 6.0/6.1/6.1.1

Buffer overflow in traceroute-nanog (aka traceroute-ng) may allow local users to execute arbitrary code via a long hostname argument.

4.6
2002-12-31 CVE-2002-2293 Twofold Photos Unspecified vulnerability in Twofold Photos Webshots Desktop

Webshots Desktop screensaver allows local users to bypass the password on the screensaver by pressing CTRL-ALT-DELETE and (1) hitting the cancel button or (2) killing the screensaver from the task manager.

4.6
2002-12-31 CVE-2002-2199 Freebsd Unspecified vulnerability in Freebsd Advanced Intrusion Detection Environment

The default aide.conf file in Advanced Intrusion Detection Environment (AIDE) before 0.7_1 on FreeBSD before 2002-08-28 does not properly check subdirectories, which could allow local users to bypass detection.

4.6
2002-12-31 CVE-2002-2162 Cerulean Studios Unspecified vulnerability in Cerulean Studios Trillian 0.6351/0.725/0.73

Cerulean Studios Trillian 0.73 and earlier use weak encrypttion (XOR) for storing user passwords in .ini files in the Trillian directory, which allows local users to gain access to other user accounts.

4.6
2002-12-31 CVE-2002-2128 W Agora Unspecified vulnerability in W-Agora 4.1.5

editform.php in w-Agora 4.1.5 allows local users to execute arbitrary PHP code via ..

4.6
2002-12-31 CVE-2002-2120 QNX Buffer Overflow vulnerability in QNX Rtos 4.25

Multiple buffer overflows in QNX RTOS 4.25 may allow attackers to execute arbitrary code via long filename arguments to (1) Watcom or (2) int10.

4.6
2002-12-31 CVE-2002-2089 SUN Buffer Overflow vulnerability in SUN Solaris 9.0

Buffer overflow in rcp in Solaris 9.0 allows local users to execute arbitrary code via a long command line argument.

4.6
2002-12-31 CVE-2002-2087 Borland Software Buffer Overflow vulnerability in Borland Software Interbase 6.0

Buffer overflow in Borland InterBase 6.0 allows local users to execute arbitrary code via a long INTERBASE environment variable when calling (1) gds_drop, (2) gds_lock_mgr, or (3) gds_inet_server.

4.6
2002-12-31 CVE-2002-2059 Intel Unspecified vulnerability in Intel products

BIOS D845BG, D845HV, D845PT and D845WN on Intel motherboards does not properly restrict access to configuration information when BIOS passwords are enabled, which could allow local users to change the default boot device via the F8 key.

4.6
2002-12-31 CVE-2002-1972 Sebastian Dehne Local Security vulnerability in Sebastian Dehne PP Powerswitch 0.1

Unknown vulnerability in Parallel port powerSwitch (aka pp_powerSwitch) 0.1 does not properly enforce access controls, which allows local users to access arbitrary ports.

4.6
2002-12-31 CVE-2002-1875 Mcafee Unspecified vulnerability in Mcafee Entercept Agent 2.5

Entercept Agent 2.5 agent for Windows, released before May 21, 2002, allows local administrative users to obtain the entercept agent password, which could allow the administrators to log on as the entercept_agent account and conceal their identity.

4.6
2002-12-31 CVE-2002-1863 Iomega Local Security vulnerability in Iomega Network Attached Storage A300U

Iomega Network Attached Storage (NAS) A300U, and possibly other models, does not allow the FTP service to be disabled, which allows local users to access home directories via FTP even when access to all shared directories have been disabled.

4.6
2002-12-31 CVE-2002-1826 Grsecurity Unspecified vulnerability in Grsecurity Kernel Patch 1.9.4

grsecurity 1.9.4 for Linux kernel 2.4.18 allows local users to bypass read-only permissions by using mmap to directly map /dev/mem or /dev/kmem to kernel memory.

4.6
2002-12-31 CVE-2002-1821 Ultimate PHP Board Unspecified vulnerability in Ultimate PHP Board Ultimate PHP Board 1.0/1.0Beta

Ultimate PHP Board (UPB) 1.0 and 1.0b allows remote authenticated users to gain privileges and perform unauthorized actions via direct requests to (1) admin_members.php, (2) admin_config.php, (3) admin_cat.php, or (4) admin_forum.php.

4.6
2002-12-31 CVE-2002-1814 Gnome
Mandrakesoft
Redhat
Slackware
Buffer Overflow vulnerability in Bonobo EFSTool Commandline Argument

Buffer overflow in efstools in Bonobo, when installed setuid, allows local users to execute arbitrary code via long command line arguments.

4.6
2002-12-31 CVE-2002-1797 HP Unspecified vulnerability in HP Chaivm

ChaiVM for HP color LaserJet 4500 and 4550 or HP LaserJet 4100 and 8150 does not properly enforce access control restrictions, which could allow local users to add, delete, or modify any services hosted by the ChaiServer.

4.6
2002-12-31 CVE-2002-1796 HP Unspecified vulnerability in HP Chaivm

ChaiVM EZloader for HP color LaserJet 4500 and 4550 and HP LaserJet 4100 and 8150 does not properly verify JAR signatures for new services, which allows local users to load unauthorized Chai services.

4.6
2002-12-31 CVE-2002-1787 SGI Buffer Overflow vulnerability in IRIX uux

Buffer overflow in uux in eoe.sw.uucp package of SGI IRIX 6.5 through 6.5.17 allows local users to execute arbitrary code via unknown attack vectors.

4.6
2002-12-31 CVE-2002-1772 Novell Unspecified vulnerability in Novell Netware 5.0/5.1

Novell Netware 5.0 through 5.1 may allow local users to gain "Domain Admin" rights by logging into a Novell Directory Services (NDS) account, and executing "net use" on an NDS_ADM account that is not in the NT domain but has domain access rights, which allows the user to enter a null password.

4.6
2002-12-31 CVE-2002-1766 Netscape Buffer Overflow vulnerability in Netscape Communicator 4.77

Buffer overflow in Composer in Netscape 4.77 allows local users to overwrite process memory and execute arbitrary code via a font tag with a long face attribute.

4.6
2002-12-31 CVE-2002-1763 SUN Authentication Bypass vulnerability in SUN Sunos 5.8

The dtscreen Sun Solaris 8 CDE screensaver crashes when the "Shift" and "Return" keys are pressed repeatedly and quickly, which allows local users to access the current session.

4.6
2002-12-31 CVE-2002-1722 Logitech Unspecified vulnerability in Logitech products

Logitech iTouch keyboards allows attackers with physical access to the system to bypass the screen locking function and execute user-defined commands that have been assigned to a button.

4.6
2002-12-31 CVE-2002-1670 Microsoft Unspecified vulnerability in Microsoft Internet Explorer and Windows XP

Microsoft Windows XP Professional upgrade edition overwrites previously installed patches for Internet Explorer 6.0, leaving Internet Explorer unpatched.

4.6
2002-12-31 CVE-2002-1658 Apache Buffer Overflow vulnerability in Multiple Apache HTDigest

Buffer overflow in htdigest in Apache 1.3.26 and 1.3.27 may allow attackers to execute arbitrary code via a long user argument.

4.6
2002-12-31 CVE-2002-1633 QNX Local Buffer Overflow vulnerability in QNX Rtos 4.25

Multiple buffer overflows in QNX 4.25 may allow local users to execute arbitrary code via long command line arguments to (1) sample, (2) ex, (3) du, (4) find, (5) lex, (6) mkdir, (7) rm, (8) serserv, (9) tcpserv, (10) termdef, (11) time, (12) unzip, (13) use, (14) wcc, (15) wcc386, (16) wd, (17) wdisasm, (18) which, (19) wlib, (20) wlink, (21) wpp, (22) wpp386, (23) wprof, (24) write, or (25) wstrip.

4.6
2003-01-02 CVE-2002-1388 Mhonarc Cross-Site Scripting vulnerability in MHonArc m2h_text_html Filter

Cross-site scripting (XSS) vulnerability in MHonArc before 2.5.14 allows remote attackers to inject arbitrary HTML into web archive pages via HTML mail messages.

4.3
2002-12-31 CVE-2002-2426 Citrix Cross-Site Request Forgery (CSRF) vulnerability in Citrix products

Cross-site request forgery (CSRF) vulnerability in Citrix Presentation Server 4.0 and 4.5, MetaFrame Presentation Server 3.0, and Access Essentials 1.0 through 2.0 allows remote attackers to execute arbitrary published applications, and possibly other programs, as authenticated users via the InitialProgram key in an ICA connection.

4.3
2002-12-31 CVE-2002-2424 Ekilat LLC Cross-Site Scripting vulnerability in Ekilat LLC PHP(Reactor) 1.27Pl1

Cross-site scripting (XSS) vulnerability in PHP(Reactor) 1.2.7 pl1 allows remote attackers to inject arbitrary web script or HTML via Javascript in the style attribute of an HTML tag.

4.3
2002-12-31 CVE-2002-2422 Compaq Cross-Site Scripting vulnerability in Compaq Insight Management Agent

Cross-site scripting (XSS) vulnerability in Compaq Insight Management Agents 2.0, 2.1, 3.6.0, 4.2 and 4.3.7 allows remote attackers to inject arbitrary web script or HTML via a URL, which inserts the script into the resulting error message.

4.3
2002-12-31 CVE-2002-2418 Acfp Project Cross-Site Scripting vulnerability in Acfp Project Acfreeproxy 1.33Beta7

Cross-site scripting (XSS) vulnerability in acFreeProxy (aka acFP) 1.33 beta 7 allows remote attackers to inject arbitrary web script or HTML via the URL, which is inserted into an error page.

4.3
2002-12-31 CVE-2002-2414 Opera Software
Squid
Denial of Service vulnerability in Opera HTTPS Proxy

Opera 6.0.3, when using Squid 2.4 for HTTPS proxying, does not properly handle when accepting a non-global certificate authority (CA) certificate from a site and establishing a subsequent HTTPS connection, which allows remote attackers to cause a denial of service (crash).

4.3
2002-12-31 CVE-2002-2386 Xoops Cross-Site Scripting vulnerability in Xoops 1.0Rc3

Cross-site scripting (XSS) vulnerability in the Quizz module for XOOPS 1.0, when allowing on-line question development, allows remote attackers to inject arbitrary web script or HTML via a javascript: URL in the SRC attribute of an IMG tag.

4.3
2002-12-31 CVE-2002-2378 Nakata Cross-Site Scripting vulnerability in Nakata AN Httpd 1.41D

Cross-site scripting (XSS) vulnerability in AN HTTP 1.41d allows remote attackers to inject arbitrary web script or HTML via a colon (:) in the query string, which is inserted into the resulting error page.

4.3
2002-12-31 CVE-2002-2377 Sephiroth32 Cross-Site Scripting vulnerability in Sephiroth32 ZAP Book 1.0.3

Cross-site scripting (XSS) vulnerability in addentry.cgi in ZAP 1.0.3 allows remote attackers to inject arbitrary SSi directives, web script, and HTML via the entry field.

4.3
2002-12-31 CVE-2002-2376 Leung Cross-Site Scripting vulnerability in Leung E-Guest 1.1

Cross-site scripting (XSS) vulnerability in E-Guest_sign.pl in E-Guest 1.1 allows remote attackers to inject arbitrary SSI directives, web script, and HTML via the (1) full name, (2) email, (3) homepage, and (4) location parameters.

4.3
2002-12-31 CVE-2002-2364 Sourceforge Cross-Site Scripting vulnerability in Sourceforge PHP Ticket

Cross-site scripting (XSS) vulnerability in PHP Ticket 0.5 and earlier allows remote attackers to inject arbitrary web script or HTML via a help ticket.

4.3
2002-12-31 CVE-2002-2362 Sourceforge Cross-Site Scripting vulnerability in Sourceforge Mymarket 1.71

Cross-site scripting (XSS) vulnerability in form_header.php in MyMarket 1.71 allows remote attackers to inject arbitrary web script or HTML via the noticemsg parameter.

4.3
2002-12-31 CVE-2002-2359 Mozilla Cross-Site Scripting vulnerability in Mozilla 1.0/1.1

Cross-site scripting (XSS) vulnerability in the FTP view feature in Mozilla 1.0 allows remote attackers to inject arbitrary web script or HTML via the title tag of an ftp URL.

4.3
2002-12-31 CVE-2002-2358 Opera Software Cross-Site Scripting vulnerability in Opera Software Opera web Browser

Cross-site scripting (XSS) vulnerability in the FTP view feature in Opera 6.0 and 6.01 through 6.04 allows remote attackers to inject arbitrary web script or HTML via the title tag of an FTP URL.

4.3
2002-12-31 CVE-2002-2350 Phpoutsourcing Cross-Site Scripting vulnerability in PHPoutsourcing Zorum 2.4

Cross-site scripting (XSS) vulnerability in z_user_show.php in dbtreelistproperty_method.php in Zorum 2.4 allows remote attackers to inject arbitrary web script or HTML via the class parameter.

4.3
2002-12-31 CVE-2002-2348 Authoria Cross-Site Scripting vulnerability in Authoria Authoriahrsuite

Cross-site scripting (XSS) vulnerability in athcgi.exe in Authoria HR allows remote attackers to inject arbitrary web script or HTML via the command parameter.

4.3
2002-12-31 CVE-2002-2347 Oracle Cross-Site Scripting vulnerability in Oracle Application Server

Cross-site scripting (XSS) vulnerability in Oracle Java Server Page (OJSP) demo files (1) hellouser.jsp, (2) welcomeuser.jsp and (3) usebean.jsp in Oracle 9i Application Server 9.0.2, 1.0.2.2, 1.0.2.1s and 1.0.2 allows remote attackers to inject arbitrary web script or HTML via the text entry field.

4.3
2002-12-31 CVE-2002-2343 Nocc Cross-Site Scripting vulnerability in Nocc

Cross-site scripting (XSS) vulnerability in NOCC 0.9 through 0.9.5 allows remote attackers to inject arbitrary web script or HTML via email messages.

4.3
2002-12-31 CVE-2002-2341 Sonicwall Cross-Site Scripting vulnerability in Sonicwall Soho3 6.3.0.0

Cross-site scripting (XSS) vulnerability in content blocking in SonicWALL SOHO3 6.3.0.0 allows remote attackers to inject arbitrary web script or HTML via a blocked URL.

4.3
2002-12-31 CVE-2002-2340 Phorum Cross-Site Scripting vulnerability in Phorum 3.3.2A

Cross-site scripting (XSS) vulnerability in read.php in Phorum 3.3.2a allows remote attackers to inject arbitrary web script or HTML via (1) the t parameter or (2) the body of an email response.

4.3
2002-12-31 CVE-2002-2339 Script Shed Cross-Site Scripting vulnerability in Script Shed Ssgbook 1.0

Cross-site scripting (XSS) vulnerability in configure.asp in Script-Shed GuestBook 1.0 allows remote attackers to inject arbitrary web script or HTML via a javascript: URL in (1) image, (2) img, (3) image=right, (4) img=right, (5) image=left, and (6) img=left tags.

4.3
2002-12-31 CVE-2002-2336 Symantec Configuration vulnerability in Symantec Norton Personal Firewall 2002

Norton Personal Firewall 2002 4.0, when configured to automatically block attacks, allows remote attackers to block IP addresses and cause a denial of service via spoofed packets.

4.3
2002-12-31 CVE-2002-2321 Phplinkat Cross-Site Scripting vulnerability in PHPlinkat 0.1.0

Cross-site scripting (XSS) vulnerability in (1) showcat.php and (2) addyoursite.php in phpLinkat 0.1.0 allows remote attackers to inject arbitrary web script or HTML via the catid parameter.

4.3
2002-12-31 CVE-2002-2318 Blueface Cross-Site Scripting vulnerability in Blueface Falcon web Server

Cross-site scripting (XSS) vulnerability in Falcon web server 2.0.0.1009 through 2.0.0.1021 allows remote attackers to inject arbitrary web script or HTML via the URI, which is inserted into 301 error messages and executed by 404 error messages.

4.3
2002-12-31 CVE-2002-2296 Yabb Cross-Site Scripting vulnerability in Yabb 1Goldsp1

Cross-site scripting (XSS) vulnerability in YaBB.pl in Yet Another Bulletin Board (YaBB) 1 Gold SP 1 allows remote attackers to inject arbitrary web script or HTML via the num parameter.

4.3
2002-12-31 CVE-2002-2285 Broadcom Configuration vulnerability in Broadcom Inoculateit 6.0

eTrust InoculateIT 6.0 with the "Incremental Scan" option enabled may certify that a file is free of viruses before the file has been completely downloaded, which allows remote attackers to bypass virus detection.

4.3
2002-12-31 CVE-2002-2278 Portail WEB PHP Cross-Site Scripting vulnerability in Portail web PHP Portail web PHP 0.99

Cross-site scripting (XSS) vulnerability in mod_search/index.php in PortailPHP 0.99 allows remote attackers to inject arbitrary web script or HTML via the (1) $App_Theme, (2) $Rub_Search, (3) $Rub_News, (4) $Rub_File, (5) $Rub_Liens, or (6) $Rub_Faq variables.

4.3
2002-12-31 CVE-2002-2273 Webster Cross-Site Scripting vulnerability in Webster Http Server

Cross-site scripting (XSS) vulnerability in Webster HTTP Server allows remote attackers to inject arbitrary web script or HTML via the URL.

4.3
2002-12-31 CVE-2002-2260 Mozilla Cross-Site Scripting vulnerability in Mozilla Bugzilla

Cross-site scripting (XSS) vulnerability in the quips feature in Mozilla Bugzilla 2.10 through 2.17 allows remote attackers to inject arbitrary web script or HTML via the "show all quips" page.

4.3
2002-12-31 CVE-2002-2255 Phpbb Cross-Site Scripting vulnerability in PHPbb 2.0.3

Cross-site scripting (XSS) vulnerability in search.php in phpBB 2.0.3 and possibly earlier versions allows remote attackers to inject arbitrary web script or HTML via the search_username parameter in searchuser mode.

4.3
2002-12-31 CVE-2002-2246 Deerfield Cross-Site Scripting vulnerability in Deerfield Visnetic Website

Cross-site scripting (XSS) vulnerability in VisNetic Website before 3.5.15 allows remote attackers to inject arbitrary web script or HTML via the HTTP referer header (HTTP_REFERER) to a non-existent page, which is injected into the resulting 404 error page.

4.3
2002-12-31 CVE-2002-2234 Netscreen Configuration vulnerability in Netscreen Screenos

NetScreen ScreenOS before 4.0.1 allows remote attackers to bypass the Malicious-URL blocking feature by splitting the URL into fragmented IP requests.

4.3
2002-12-31 CVE-2002-2231 Ikonboard Cross-Site Scripting vulnerability in Ikonboard 3.1.1

Cross-site scripting (XSS) vulnerability in Ikonboard 3.1.1 allows remote attackers to inject arbitrary web script or HTML via (1) a javascript: URL in a photo URL or (2) an X-Forwarded-For: header.

4.3
2002-12-31 CVE-2002-2230 Ikonboard Cross-Site Scripting vulnerability in Ikonboard 3.1.1

Cross-site scripting (XSS) vulnerability in Ikonboard 3.1.1 allows remote attackers to inject arbitrary web script or HTML via a private message with a javascript: URL in the IMG tag, in which the URL ends in a ".gif" or ".jpg" string, a variant of CVE-2002-0328.

4.3
2002-12-31 CVE-2002-2193 Mojo Mail Cross-Site Scripting vulnerability in Mojo Mail Mojo Mail 2.7

Cross-site scripting (XSS) vulnerability in mojo.cgi for Mojo Mail 2.7 allows remote attackers to inject arbitrary web script via the email parameter.

4.3
2002-12-31 CVE-2002-2192 Perception Cross-Site Scripting vulnerability in Perception Liteserve 2.0.1

Cross-site scripting (XSS) vulnerability in Perception LiteServe 2.0.1 allows remote attackers to execute arbitrary web script via (1) a Host: header when DNS wildcards are supported or (2) the query string in a "dir" request to indexed folders.

4.3
2002-12-31 CVE-2002-2178 Phpwebsite Cross-Site Scripting vulnerability in PHPwebsite 0.8.3

Cross-site scripting (XSS) vulnerability in article.php module for phpWebSite 0.8.3 allows remote attackers to execute arbitrary Javascript script via the sid parameter, as demonstrated using an IMG tag.

4.3
2002-12-31 CVE-2002-2171 Andrey Cherezov Cross-Site Scripting vulnerability in Andrey Cherezov Acweb 1.14/1.8

Cross-site scripting (XSS) vulnerability in acWEB 1.8 and 1.14 allows remote attackers to insert arbitrary HTML and web script via a URL, possibly via a "%db" request in a URL.

4.3
2002-12-31 CVE-2002-2166 E Zone Media INC Cross-Site Scripting vulnerability in E-Zone Media Inc. Fusetalk 2.0/3.0

Cross-site scripting (XSS) vulnerability in FuseTalk 2.0 and 3.0 allows remote attackers to insert arbitrary HTML and web script.

4.3
2002-12-31 CVE-2002-2129 W Agora Cross-Site Scripting vulnerability in W-Agora 4.1.5

Cross-site scripting vulnerability (XSS) in editform.php for w-Agora 4.1.5 allows remote attackers to execute arbitrary web script via an arbitrary form field name containing the script, which is echoed back to the user when displaying the form.

4.3
2002-12-31 CVE-2002-2115 HNS Cross-Site Scripting vulnerability in HNS and Hns-Lite

Cross-site scripting (XSS) vulnerability in Hyper NIKKI System (HNS) Lite before 0.9 and HNS before 2.10-pl2 allows remote attackers to inject arbitrary web script or HTML.

4.3
2002-12-31 CVE-2002-2107 Veridis Cross-Site Scripting vulnerability in Veridis Openkeyserver 1.2

Cross-site scripting (XSS) vulnerability in the lookup script in Veridis OpenKeyServer (OKS) 1.2 allows remote attackers to inject arbitrary web script or HTML via the search parameter.

4.3
2002-12-31 CVE-2002-2086 Squirrelmail Unspecified vulnerability in Squirrelmail

Multiple cross-site scripting (XSS) vulnerabilities in magicHTML of SquirrelMail before 1.2.6 allow remote attackers to inject arbitrary web script or HTML via (1) "<<script" in unspecified input fields or (2) a javascript: URL in the src attribute of an IMG tag.

4.3
2002-12-31 CVE-2002-2073 Microsoft Cross-Site Scripting vulnerability in Microsoft Site Server 3.0

Cross-site scripting (XSS) vulnerability in the default ASP pages on Microsoft Site Server 3.0 on Windows NT 4.0 allows remote attackers to inject arbitrary web script or HTML via the (1) ctr parameter in Default.asp and (2) the query string to formslogin.asp.

4.3
2002-12-31 CVE-2002-2062 Microsoft Unspecified vulnerability in Microsoft Internet Explorer 5.5/6.0

Cross-site scripting (XSS) vulnerability in ftp.htt in Internet Explorer 5.5 and 6.0, when running on Windows 2000 with "Enable folder view for FTP sites" and "Enable Web content in folders" selected, allows remote attackers to inject arbitrary web script or HTML via the hostname portion of an FTP URL.

4.3
2002-12-31 CVE-2002-2056 Teekai Cross-Site Scripting vulnerability in Teekai Forum 1.2

Cross-site scripting (XSS) vulnerability in TeeKai Forum 1.2 allows remote attackers to inject arbitrary web script or HTML via the valid_username_online cookie.

4.3
2002-12-31 CVE-2002-2055 Teekai Cross-Site Scripting vulnerability in Teekai Tracking Online 1.0

Cross-site scripting (XSS) vulnerability in userlog.php in TeeKai Tracking Online 1.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter.

4.3
2002-12-31 CVE-2002-2044 Xqus Cross-Site Scripting vulnerability in X-Stat 2.2/2.3

Cross-site scripting (XSS) vulnerability in x_stat_admin.php in x-stat 2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the phpinfo action.

4.3
2002-12-31 CVE-2002-2021 Woltlab Unspecified vulnerability in Woltlab Burning Board 1.1.1

Cross-site scripting (XSS) vulnerability in WoltLab Burning Board (wbboard) 1.1.1 allows remote attackers to inject arbitrary web script or HTML via the message parameter.

4.3
2002-12-31 CVE-2002-2011 JON Howell Cross-Site Scripting vulnerability in Faq-O-Matic 2.711/2.712

Cross-site scripting (XSS) vulnerability in the fom CGI program (fom.cgi) in Faq-O-Matic 2.711 and 2.712 allows remote attackers to inject arbitrary web script or HTML via the file parameter.

4.3
2002-12-31 CVE-2002-2010 Htdig Cross-Site Scripting vulnerability in ht://Dig htsearch

Cross-site scripting (XSS) vulnerability in htsearch.cgi in htdig (ht://Dig) 3.1.5, 3.1.6, and 3.2 allows remote attackers to inject arbitrary web script or HTML via the words parameter.

4.3
2002-12-31 CVE-2002-1995 Lebios Cross-Site Scripting vulnerability in Lebios PHPtonuke.PHP 1.0

Cross-site scripting (XSS) vulnerability in phptonuke.php for PHP-Nuke allows remote attackers to inject arbitrary web script or HTML via the filnavn parameter.

4.3
2002-12-31 CVE-2002-1965 Imatix Cross-Site Scripting vulnerability in Imatix Xitami 2.5B4/2.5B5

Cross-site scripting (XSS) vulnerability in Errors.gsl in Imatix Xitami 2.5b4 and 2.5b5 allows remote attackers to inject arbitrary web script or HTML via the (1) Javascript events, as demonstrated via an onerror event in an IMG SRC tag or (2) User-Agent field in an HTTP GET request.

4.3
2002-12-31 CVE-2002-1960 Cybozu Cross-Site Scripting vulnerability in Cybozu Share360 1.1

Cross-site scripting (XSS) vulnerability in Cybozu Share360 1.1 allows remote attackers to inject arbitrary web script or HTML via an HTML link.

4.3
2002-12-31 CVE-2002-1958 Kmmail Cross-Site Scripting vulnerability in Kmmail 1.0/1.0A/1.0B

Cross-site scripting (XSS) vulnerability in kmMail 1.0, 1.0a, and 1.0b allows remote attackers to inject arbitrary web script or HTML via (1) javascript in onmouseover or other attributes in "safe" HTML tags such as the "b" tag, or (2) the Subject field.

4.3
2002-12-31 CVE-2002-1954 PHP Cross-Site Scripting vulnerability in PHP 4.2.3

Cross-site scripting (XSS) vulnerability in the phpinfo function in PHP 4.2.3 allows remote attackers to inject arbitrary web script or HTML via the query string argument, as demonstrated using soinfo.php.

4.3
2002-12-31 CVE-2002-1950 Phprank Unspecified vulnerability in PHPrank 1.8

Cross-site scripting (XSS) vulnerability in phpRank 1.8 allows remote attackers to inject arbitrary web script or HTML via the (1) the email parameter of add.php or (2) the banner URL (banurl parameter) in the main list.

4.3
2002-12-31 CVE-2002-1931 PHP Arena Cross-Site Scripting vulnerability in PHP Arena Pafiledb 1.1.3/2.1.1

Cross-site scripting (XSS) vulnerability in PHP Arena paFileDB 1.1.3 and 2.1.1 allows remote attackers to inject arbitrary web script or HTML via Javascript in the search string.

4.3
2002-12-31 CVE-2002-1929 PHP Arena Cross-Site Scripting vulnerability in PHP Arena Pafiledb 1.1.3/2.1.1/3.0

Cross-site scripting (XSS) vulnerability in pafiledb.php in PHP Arena paFileDB 1.1.3 through 3.0 allows remote attackers to inject arbitrary web script or HTML via the query string in the (1) rate, (2) email, or (3) download actions.

4.3
2002-12-31 CVE-2002-1922 Jelsoft Cross-Site Scripting vulnerability in Multiple VBulletin

Cross-site scripting (XSS) vulnerability in global.php in Jelsoft vBulletin 2.0.0 through 2.2.8 allows remote attackers to inject arbitrary web script or HTML via the (1) $scriptpath or (2) $url variables.

4.3
2002-12-31 CVE-2002-1901 Bodo Bauer HTML Injection vulnerability in Bodo Bauer Bbgallery 1.0

Cross-site scripting (XSS) vulnerability in Bodo Bauer BBGallery 1.0 allows remote attackers to inject arbitrary web script or HTML via image tags.

4.3
2002-12-31 CVE-2002-1900 Pinboard HTML Injection vulnerability in Pinboard 1.0

Cross-site scripting (XSS) vulnerability in Pinboard 1.0 allows remote attackers to inject arbitrary web script or HTML via tasklists.

4.3
2002-12-31 CVE-2002-1899 Icewarp Cross-Site Scripting vulnerability in Web Mail 3.3.3/3.3.5

Cross-site scripting (XSS) vulnerability in IceWarp Web Mail 3.3.3 and 3.4.5 allows remote attackers to inject arbitrary web script or HTML via the "Full Name" (addressname) parameter.

4.3
2002-12-31 CVE-2002-1894 Phpbb Group Cross-Site Scripting vulnerability in PHPbb Group PHPbb 2.0.3

Cross-site scripting (XSS) vulnerability in viewtopic.php in phpBB 2.0.3 allows remote attackers to inject arbitrary web script or HTML via the highlight parameter.

4.3
2002-12-31 CVE-2002-1893 Argosoft HTML Injection vulnerability in Argosoft Mail Server 1.8.1.9

Cross-site scripting (XSS) vulnerability in ArGoSoft Mail Server Pro 1.8.1.9 allows remote attackers to inject arbitrary web script or HTML via the e-mail message.

4.3
2002-12-31 CVE-2002-1853 Carlos Sanchez Valle HTML Injection vulnerability in MyNewsGroups Subject Header

Cross-site scripting (XSS) vulnerability in MyNewsGroups 0.4 and 0.4.1 allows remote attackers to inject arbitrary web script or HTML via the subject of a newsgroup post, which is not properly handled by (1) myarticles.php, (2) search.php, (3) stats.php, or (4) standard.lib.php.

4.3
2002-12-31 CVE-2002-1852 Monkey Project Cross-Site Scripting vulnerability in Monkey-Project Monkey 0.5.0

Cross-site scripting (XSS) vulnerability in Monkey 0.5.0 allows remote attackers to inject arbitrary web script or HTML via (1) the URL or (2) a parameter to test2.pl.

4.3
2002-12-31 CVE-2002-1845 Yabb Cross-Site Scripting vulnerability in YaBB Login

Cross-site scripting (XSS) vulnerability in index.php in Yet Another Bulletin Board (YaBB) 1.40 and 1.41 allows remote attackers to inject arbitrary web script or HTML via the password (passwrd) parameter.

4.3
2002-12-31 CVE-2002-1829 Openbb HTML Injection vulnerability in Openbb 1.0.0Rc3

Cross-site scripting (XSS) vulnerability in codeparse.php in Open Bulletin Board (OpenBB) 1.0.0 RC3 allows remote attackers to inject arbitrary web script or HTML via (1) myhome.php, (2) an onerror attribute in an IMG tag (a variant of CVE-2002-0330), or (3) a glow tag.

4.3
2002-12-31 CVE-2002-1808 Zack Coburn Unspecified vulnerability in Zack Coburn Meunity Community System 1.0

Cross-site scripting (XSS) vulnerability in Meunity Community System 1.1 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag when creating a topic.

4.3
2002-12-31 CVE-2002-1807 Phpwebsite HTML Injection vulnerability in PHPwebsite 0.8.3

Cross-site scripting (XSS) vulnerability in phpWebSite 0.8.3 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag.

4.3
2002-12-31 CVE-2002-1806 Drupal HTML Injection vulnerability in Drupal 4.0.0

Cross-site scripting (XSS) vulnerability in Drupal 4.0.0 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag.

4.3
2002-12-31 CVE-2002-1805 Dacode HTML Injection vulnerability in Dacode 1.2.0

Cross-site scripting (XSS) vulnerability in DaCode 1.2.0 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag.

4.3
2002-12-31 CVE-2002-1804 Npds HTML Injection vulnerability in Npds 4.8

Cross-site scripting (XSS) vulnerability in NPDS 4.8 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag.

4.3
2002-12-31 CVE-2002-1803 Francisco Burzi HTML Injection vulnerability in Francisco Burzi PHP-Nuke 6.0

Cross-site scripting (XSS) vulnerability in PHP-Nuke 6.0 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag.

4.3
2002-12-31 CVE-2002-1802 Xoops HTML Injection vulnerability in Xoops 1.0Rc3

Cross-site scripting (XSS) vulnerability in Xoops 1.0 RC3 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag when submitting news.

4.3
2002-12-31 CVE-2002-1799 Phprank Cross-Site Scripting vulnerability in PHPrank 1.8

Cross-site scripting (XSS) vulnerability in phpRank 1.8 allows remote attackers to inject arbitrary web script or HTML via the (1) email parameter to add.php or (2) banurl parameter.

4.3
2002-12-31 CVE-2002-1795 Microsoft Cross-Site Scripting vulnerability in Microsoft TSAC ActiveX Control

Cross-site scripting (XSS) vulnerability in connect.asp in Microsoft Terminal Services Advanced Client (TSAC) ActiveX control allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

4.3
2002-12-31 CVE-2002-1733 Prospero Technologies Unspecified vulnerability in Prospero Technologies Prospero Message Board

Cross-site scripting (XSS) vulnerability in the web-based message board in Prospero Technologies allows remote attackers to inject arbitrary web script or HTML via a message board post.

4.3
2002-12-31 CVE-2002-1732 Actinic Cross-Site Scripting vulnerability in Actinic Catalog 4.7

Multiple cross-site scripting (XSS) vulnerabilities in Actinic Catalog 4.7.0 allow remote attackers to inject arbitrary web script or HTML via (1) the query string argument to certain .pl files, (2) the REFPAGE parameter to ca000007.pl, (3) PRODREF parameter to ss000007.pl, or (4) hop parameter to ca000001.pl.

4.3
2002-12-31 CVE-2002-1702 Deltascripts Cross-Site Scripting vulnerability in Deltascripts PHP Classifieds 6.0.5

Cross-site scripting vulnerability (XSS) in DeltaScripts PHP Classifieds 6.0.5 allows remote attackers to execute arbitrary script as other users via the URL parameter.

4.3
2002-12-31 CVE-2002-1700 Macromedia
Microsoft
Cross-Site Scripting vulnerability in multiple products

Cross-site scripting vulnerability (XSS) in the missing template handler in Macromedia ColdFusion MX allows remote attackers to execute arbitrary script as other users by injecting script into the HTTP request for the name of a template, which is not filtered in the resulting 404 error message.

4.3
2002-12-31 CVE-2002-1685 Working Resources INC Cross-Site Scripting vulnerability in Working Resources Inc. Badblue Enterprise1.7.2/Personal1.7/Personal1.7.2

Cross-site scripting vulnerability (XSS) in BadBlue Enterprise Edition and Personal Edition 1.7 and 1.7.2 allows remote attackers to execute arbitrary script as other users by injecting script into ext.dll ISAPI.

4.3
2002-12-31 CVE-2002-1683 Working Resources INC Cross-Site Scripting vulnerability in Working Resources Inc. Badblue Personal1.7.3

Cross-site scripting (XSS) vulnerability in BadBlue Personal Edition 1.7.3 allows remote attackers to execute arbitrary script as other users by injecting script into the cleanSearchString() function.

4.3
2002-12-31 CVE-2002-1680 Cows Cross-Site Scripting vulnerability in Cows CGI Online Worldweb Shopping 1.1

Cross-site scripting (XSS) vulnerability in CGI Online Worldweb Shopping 1.1 (a.k.a.

4.3
2002-12-31 CVE-2002-1679 Jelsoft Unspecified vulnerability in Jelsoft Vbulletin 2.2.0

Cross-site scripting (XSS) vulnerability in Jelsoft vBulletin 2.2.0 allows remote attackers to execute arbitrary script as other users by injecting script into a bulletin board message.

4.3
2002-12-31 CVE-2002-1678 Jelsoft Cross-Site Scripting vulnerability in VBulletin

Cross-site scripting (XSS) vulnerability in memberlist.php in Jelsoft vBulletin 2.0 rc 2 through 2.2.4 allows remote attackers to steal authentication credentials by injecting script into $letterbits.

4.3
2002-12-31 CVE-2002-1651 Verity Cross-Site Scripting vulnerability in Verity Search97 2.1

Cross-site scripting (XSS) vulnerability in Verity Search97 allows remote attackers to insert arbitrary web content and steal sensitive information from other clients, possibly due to certain error messages from template pages that use the (1) vformat or (2) vfilter functions.

4.3
2002-12-31 CVE-2002-1649 Squirrelmail Unspecified vulnerability in Squirrelmail 1.2.2

Cross-site scripting (XSS) vulnerability in read_body.php in SquirrelMail before 1.2.3 allows remote attackers to execute arbitrary Javascript via a javascript: URL in an IMG tag.

4.3
2002-12-31 CVE-2002-1636 Oracle Cross-Site Scripting vulnerability in Oracle Application Server 1.0.2

Cross-site scripting (XSS) vulnerability in the htp PL/SQL package for Oracle 9i Application Server (9iAS) allows remote attackers to inject arbitrary web script or HTML via the cbuf parameter to htp.print.

4.3
2002-12-31 CVE-2002-2175 PHP Unspecified vulnerability in PHP PHPsquidpass

phpSquidPass before 0.2 uses an incomplete regular expression to find a matching username in its database, which allows remote authenticated attackers to effectively delete other usernames via a short username that matches the end of the targeted username.

4.0
2002-12-31 CVE-2002-2163 Killervault Unspecified vulnerability in Killervault Kvpoll 1.1

KvPoll 1.1 allows remote authenticated users to vote more than once by setting the "already_voted" cookie by various methods, including a direct call to clear_cookies.php.

4.0

81 Low Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2002-12-31 CVE-2002-2202 Microsoft Local Security vulnerability in Microsoft Outlook Express 6.0

Outlook Express 6.0 does not delete messages from dbx files, even when a user empties the Deleted items folder, which allows local users to read other users email.

3.8
2002-12-31 CVE-2002-2092 Freebsd
Netbsd
Openbsd
Race condition in exec in OpenBSD 4.0 and earlier, NetBSD 1.5.2 and earlier, and FreeBSD 4.4 and earlier allows local users to gain privileges by attaching a debugger to a process before the kernel has determined that the process is setuid or setgid.
3.7
2002-12-31 CVE-2002-2401 Microsoft Permissions, Privileges, and Access Controls vulnerability in Microsoft Windows 2000, Windows NT and Windows XP

NT Virtual DOS Machine (NTVDM.EXE) in Windows 2000, NT and XP does not verify user execution permissions for 16-bit executable files, which allows local users to bypass the loader and execute arbitrary programs.

3.6
2002-12-31 CVE-2002-2384 Hotfoon Corporation Credentials Management vulnerability in Hotfoon Corporation Hotfoon 4.0

hotfoon4.exe in Hotfoon 4.00 stores user names and passwords in cleartext in the hotfoon2 registry key, which allows local users to gain access to user accounts and steal phone service.

3.6
2002-12-31 CVE-2002-2334 Joseph Allen Permissions, Privileges, and Access Controls vulnerability in Joseph Allen JOE

Joe text editor 2.8 through 2.9.7 does not remove the group and user setuid bits for backup files, which could allow local users to execute arbitrary setuid and setgid root programs when root edits scripts owned by other users.

3.6
2002-12-31 CVE-2002-2270 HP Permissions, Privileges, and Access Controls vulnerability in HP Hp-Ux 10.10/10.20/11.00

Unspecified vulnerability in the ied command in HP-UX 10.10, 10.20, and 11.0 allows local users to view "normally invisible data" via unknown attack vectors.

3.6
2002-12-31 CVE-2002-2038 Bill ABT Denial of Service vulnerability in Bill ABT Next Generation Posix Threading 1.9.0

Next Generation POSIX Threading (NGPT) 1.9.0 uses a filesystem-based shared memory entry, which allows local users to cause a denial of service or in threaded processes or spoof files via unknown methods.

3.6
2002-12-31 CVE-2002-1710 Basilix Unspecified vulnerability in Basilix Webmail 1.1.0

The attachment capability in Compose Mail in BasiliX Webmail 1.1.0 does not check whether the attachment was uploaded by the user or came from a HTTP POST, which could allow local users to steal sensitive information like a password file.

3.6
2002-12-31 CVE-2002-1692 Microsoft Buffer Overflow vulnerability in Microsoft Backup for Windows 95

Buffer overflow in backup utility of Microsoft Windows 95 allows attackers to execute arbitrary code by causing a filename with a long extension to be placed in a folder to be backed up.

3.6
2002-12-31 CVE-2002-1673 Webmin Unspecified vulnerability in Webmin

The web interface for Webmin 0.92 does not properly quote or filter script code in files that are displayed to the interface, which allows local users to execute script and possibly steal cookies by inserting the script into certain files or fields, such as a real user name entry in the passwd file.

3.6
2002-12-31 CVE-2002-2409 QNX Information Exposure vulnerability in QNX Neutrino Rtos and Photon Microgui

Photon microGUI in QNX Neutrino realtime operating system (RTOS) 6.1.0 and 6.2.0 allows attackers to read user clipboard information via a direct request to the 1.TEXT file in a directory whose name is a hex-encoded user ID.

3.5
2002-12-31 CVE-2002-2301 Lawson Software Credentials Management vulnerability in Lawson Software Lawson Financials 8.0

Lawson Financials 8.0, when configured to use a third party relational database, stores usernames and passwords in a world-readable file, which allows local users to read the passwords and log onto the database.

3.3
2002-12-31 CVE-2002-2177 BEA Information Disclosure vulnerability in BEA Weblogic Server 6.1/7.0/7.0.0.1

BEA WebLogic Server and Express 6.1 through 7.0.0.1 buffers HTTP requests in a way that can cause BEA to send the same response for two different HTTP requests, which could allow remote attackers to obtain sensitive information that was intended for other users.

2.6
2002-12-31 CVE-2002-1996 Postnuke Software Foundation Cross-Site Scripting vulnerability in PostNuke

Cross-site scripting (XSS) vulnerability in PostNuke 0.71 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) name parameter in modules.php and (2) catid parameter in index.php.

2.6
2002-12-31 CVE-2002-1813 AOL Local File Execution vulnerability in AOL Instant Messenger

Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8.2790 allows remote attackers to execute arbitrary programs by specifying the program in the href attribute of a link.

2.6
2003-01-03 CVE-2003-1071 SUN Unspecified vulnerability in SUN Solaris and Sunos

rpc.walld (wall daemon) for Solaris 2.6 through 9 allows local users to send messages to logged on users that appear to come from arbitrary user IDs by closing stderr before executing wall, then supplying a spoofed from header.

2.1
2002-12-31 CVE-2002-2412 Nullsoft Credentials Management vulnerability in Nullsoft Winamp 2.80

Winamp 2.80 stores authentication credentials in plaintext in the (1) [HTTP-AUTH] and (2) [winamp] sections in winamp.ini, which allows local users to gain access to other accounts.

2.1
2002-12-31 CVE-2002-2280 Openbsd Configuration vulnerability in Openbsd

syslogd on OpenBSD 2.9 through 3.2 does not change the source IP address of syslog packets when the machine's IP addressed is changed without rebooting, e.g.

2.1
2002-12-31 CVE-2002-2275 Fortres Grand Corporation Denial-Of-Service vulnerability in Fortres Grand Corporation Fortres 4.1

Fortres 101 4.1 allows local users to bypass Fortres by pressing the Windows and "F" key together for 30 seconds, which opens multiple windows and eventually causes explorer.exe to crash, which then opens an unrestricted explorer.exe.

2.1
2002-12-31 CVE-2002-2274 Akfingerd Unspecified vulnerability in Akfingerd 0.5

akfingerd 0.5 allows local users to read arbitrary files as the akfingerd user (nobody) via a symlink attack on the .plan file.

2.1
2002-12-31 CVE-2002-2254 Linux Permissions, Privileges, and Access Controls vulnerability in Linux Kernel

The experimental IP packet queuing feature in Netfilter / IPTables in Linux kernel 2.4 up to 2.4.19 and 2.5 up to 2.5.31, when a privileged process exits and network traffic is not being queued, may allow a later process with the same Process ID (PID) to access certain network traffic that would otherwise be restricted.

2.1
2002-12-31 CVE-2002-2244 Akfingerd Race Condition vulnerability in Akfingerd 0.5

Akfingerd 0.5 and earlier versions allow local users to cause a denial of service (crash) via a .plan with a symlink to /dev/urandom or other device, then disconnecting while data is being transferred, which causes a SIGPIPE error that Akfingerd cannot handle.

2.1
2002-12-31 CVE-2002-2172 Shana Information Disclosure vulnerability in Shana Informed

Informed (1) Designer and (2) Filler 3.05 does not zero out newly allocated disk blocks as an encrypted file grows in size, which may allow attackers to obtain sensitive information.

2.1
2002-12-31 CVE-2002-2165 Imho Unspecified vulnerability in Imho Webmail

The IMHO Webmail module 0.97.3 and earlier for Roxen leaks the REFERER from the browser's previous login session in an error page, which allows local users to read another user's inbox.

2.1
2002-12-31 CVE-2002-2132 Microsoft Unspecified vulnerability in Microsoft Windows 2000 and Windows XP

Windows File Protection (WFP) in Windows 2000 and XP does not remove old security catalog .CAT files, which could allow local users to replace new files with vulnerable old files that have valid hash codes.

2.1
2002-12-31 CVE-2002-2127 Pedestal Software Local Security vulnerability in Pedestal Software Integrity Protection Driver 1.2

Integrity Protection Driver (IPD) 1.2 and earlier blocks access to \Device\PhysicalMemory by its name, which could allow local privileged processes to overwrite kernel memory by accessing the device through a symlink.

2.1
2002-12-31 CVE-2002-2126 Pedestal Software Unspecified vulnerability in Pedestal Software Integrity Protection Driver 1.2

restrictEnabled in Integrity Protection Driver (IPD) 1.2 delays driver installation for 20 minutes, which allows local users to insert malicious code by setting system clock to an earlier time.

2.1
2002-12-31 CVE-2002-2122 Pointsec Mobile Technologies Unspecified vulnerability in Pointsec Mobile Technologies Pointsec 1.0

Pointsec before 1.2 for PalmOS stores a user's PIN number in memory in plaintext, which allows a local attacker who steals an unlocked Palm to retrieve the PIN by dumping memory.

2.1
2002-12-31 CVE-2002-2105 Microsoft Denial of Service vulnerability in Microsoft Windows XP .Manifest

Microsoft Windows XP allows local users to prevent the system from booting via a corrupt explorer.exe.manifest file.

2.1
2002-12-31 CVE-2002-2093 SGI Information Disclosure vulnerability in SGI O2 Video Session Viewing

The Video Control Panel on SGI O2/IRIX 6.5, when the Default Input is set to "Output Video", allows attackers to access a console session by running videoout then videoin.

2.1
2002-12-31 CVE-2002-2083 Novell Local Security vulnerability in Novell Netware

The Novell Netware client running on Windows 95 allows local users to bypass the login and open arbitrary files via the "What is this?" help feature, which can be launched from the Novell Netware login screen.

2.1
2002-12-31 CVE-2002-2051 Modlogan Unspecified vulnerability in Modlogan

The processor_web plugin for ModLogAn 0.5.0 through 0.7.11, when used with the splitby option, allows local users to overwrite arbitrary files via a symlink attack on files specified as hostnames in a log file.

2.1
2002-12-31 CVE-2002-2050 Modlogan Unspecified vulnerability in Modlogan

Directory traversal vulnerability in processor_web plugin for ModLogAn 0.5.0 through 0.7.11, when used with the splitby option, allows local users to overwrite arbitrary files via a ..

2.1
2002-12-31 CVE-2002-2039 QNX Unspecified vulnerability in QNX Rtos 4.25/6.1.0

/bin/su in QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows local users to obtain sensitive information from core dump files by sending the SIGSERV (invalid memory reference) signal.

2.1
2002-12-31 CVE-2002-2028 Microsoft Unspecified vulnerability in Microsoft Windows 2000, Windows NT and Windows XP

The screensaver on Windows NT 4.0, 2000, XP, and 2002 does not verify if a domain account has already been locked when a valid password is provided, which makes it easier for users with physical access to conduct brute force password guessing.

2.1
2002-12-31 CVE-2002-2023 Yamaguchi Unspecified vulnerability in Yamaguchi Shingo Beep2

The get_parameter_from_freqency_source function in beep2 1.0, 1.1 and 1.2, when installed setuid root, allows local users to read arbitrary files via unknown attack vectors.

2.1
2002-12-31 CVE-2002-2000 Compaq Unspecified vulnerability in Compaq Acms 4.3/4.4

ACMS 4.3 and 4.4 in OpenVMS Alpha 7.2 and 7.3 does not properly use process privileges, which allows attackers to access data.

2.1
2002-12-31 CVE-2002-1983 QNX Local Denial of Service vulnerability in QNX Rtos 6.1.0

The timer implementation in QNX RTOS 6.1.0 allows local users to cause a denial of service (hang) and possibly execute arbitrary code by creating multiple timers with a 1-ms tick.

2.1
2002-12-31 CVE-2002-1977 PGP Unspecified vulnerability in PGP 7.0.4/7.1

Network Associates PGP 7.0.4 and 7.1 does not time out according to the value set in the "Passphrase Cache" option, which could allow attackers to open encrypted files without providing a passphrase.

2.1
2002-12-31 CVE-2002-1976 Linux Unspecified vulnerability in Linux Kernel

ifconfig, when used on the Linux kernel 2.2 and later, does not report when the network interface is in promiscuous mode if it was put in promiscuous mode using PACKET_MR_PROMISC, which could allow attackers to sniff the network without detection, as demonstrated using libpcap.

2.1
2002-12-31 CVE-2002-1975 Sharp Unspecified vulnerability in Sharp Zaurus Sl5000D/Sl5500

Sharp Zaurus PDA SL-5000D and SL-5500 uses a salt of "A0" to encrypt the screen-locking password as stored in the Security.conf file, which makes it easier for local users to guess the password via brute force methods.

2.1
2002-12-31 CVE-2002-1970 Snortcenter Unspecified vulnerability in Snortcenter 0.9.5

SnortCenter 0.9.5, when configured to push Snort rules, stores the rules in a temporary file with world-readable and world-writable permissions, which allows local users to obtain usernames and passwords for the alert database servers.

2.1
2002-12-31 CVE-2002-1968 Com21 Local Security vulnerability in Com21 Doxport 1100 2.1.1.106

Com21 DOXport 1100 series cable modem running firmware 2.1.1.106, and possibly other versions before 2.1.1.108.003, downloads a DOCSIS configuration file from a TFTP server running on the internal network, which allows local users to modify configuration of the modem via a malicious TFTP server.

2.1
2002-12-31 CVE-2002-1963 Linux Unspecified vulnerability in Linux Kernel

Linux kernel 2.4.1 through 2.4.19 sets root's NR_RESERVED_FILES limit to 10 files, which allows local users to cause a denial of service (resource exhaustion) by opening 10 setuid binaries.

2.1
2002-12-31 CVE-2002-1956 ROX Unspecified vulnerability in ROX Filer 1.1.9/1.2

ROX Filer 1.1.9 and 1.2 is installed with world writable permissions, which allows local users to write to arbitrary files.

2.1
2002-12-31 CVE-2002-1946 Videsh Sanchar Nigam Limited Local Security vulnerability in Videsh Sanchar Nigam Limited Integrated Dialer Software 1.2.000

Videsh Sanchar Nigam Limited (VSNL) Integrated Dialer Software 1.2.000, when the "Save Password" option is used, stores the password with a weak encryption scheme (one-to-one mapping) in a registry key, which allows local users to obtain and decrypt the password.

2.1
2002-12-31 CVE-2002-1939 Flashfxp Unspecified vulnerability in Flashfxp 1.4

FlashFXP 1.4 prints FTP passwords in plaintext when there are transfers in the queue, which allows attackers to obtain FTP passwords of other users by editing the queue properties.

2.1
2002-12-31 CVE-2002-1927 Aquonics Scripting Local Security vulnerability in Aquonics Scripting Aquonics File Manager 1.5

Aquonics File Manager 1.5 allows users with edit privileges to modify user accounts by editing the userlist.cgi file.

2.1
2002-12-31 CVE-2002-1915 Freebsd
Netbsd
Openbsd
Denial Of Service vulnerability in Tip File Locking

tip on multiple BSD-based operating systems allows local users to cause a denial of service (execution prevention) by using flock() to lock the /var/log/acculog file.

2.1
2002-12-31 CVE-2002-1914 Dump Denial Of Service vulnerability in Multiple Vendor Dump File Locking

dump 0.4 b10 through b29 allows local users to cause a denial of service (execution prevention) by using flock() to lock the /etc/dumpdates file.

2.1
2002-12-31 CVE-2002-1892 Netgear Unspecified vulnerability in Netgear Fvs318 1.1

NETGEAR FVS318 running firmware 1.1 stores the username and password in a readable format when a backup of the configuration file is made, which allows local users to obtain sensitive information.

2.1
2002-12-31 CVE-2002-1890 Redhat Local File Overwrite vulnerability in Redhat Rhmask 1.09

rhmask 1.0-9 in Red Hat Linux 7.1 allows local users to overwrite arbitrary files via a symlink attack on the mask file.

2.1
2002-12-31 CVE-2002-1888 Commonname Unspecified vulnerability in Commonname Toolbar 3.5.2.0

CommonName Toolbar 3.5.2.0 sends unqualified domain name requests to the CommonName organization and possibly other web servers for name resolution, which allows those organizations to obtain internal server names.

2.1
2002-12-31 CVE-2002-1876 Microsoft Resource Exhaustion vulnerability in Microsoft Exchange Server 2000

Microsoft Exchange 2000 allows remote authenticated attackers to cause a denial of service via a large number of rapid requests, which consumes all of the licenses that are granted to Exchange by IIS.

2.1
2002-12-31 CVE-2002-1869 Heysoft Unspecified vulnerability in Heysoft Eventsave and Eventsave+

Heysoft EventSave 5.1 and 5.2 and Heysoft EventSave+ 5.1 and 5.2 does not check whether the log file can be written to, which allows attackers to prevent events from being recorded by opening the log file using an application such as Microsoft's Event Viewer.

2.1
2002-12-31 CVE-2002-1848 Tightvnc Unspecified vulnerability in Tightvnc

TightVNC before 1.2.4 running on Windows stores unencrypted passwords in the password text control of the WinVNC Properties dialog, which could allow local users to access passwords.

2.1
2002-12-31 CVE-2002-1827 Sendmail Denial Of Service vulnerability in Sendmail File Locking

Sendmail 8.9.0 through 8.12.3 allows local users to cause a denial of service by obtaining an exclusive lock on the (1) alias, (2) map, (3) statistics, and (4) pid files.

2.1
2002-12-31 CVE-2002-1791 SGI Unspecified vulnerability in SGI Irix

SGI IRIX 6.5 through 6.5.17 creates temporary desktop files with world-writable permissions, which allows local users to overwrite or corrupt those files.

2.1
2002-12-31 CVE-2002-1786 SGI Unspecified vulnerability in SGI Irix

SGI IRIX 6.5 through 6.5.14 applies a umask of 022 to root core dumps, which allows local users to read the core dumps and possibly obtain sensitive information.

2.1
2002-12-31 CVE-2002-1782 University OF Washington Unspecified vulnerability in University of Washington Uw-Imap 2001.0A

The default configuration of University of Washington IMAP daemon (wu-imapd), when running on a system that does not allow shell access, allows a local user with a valid IMAP account to read arbitrary files as that user.

2.1
2002-12-31 CVE-2002-1764 Adobe Unspecified vulnerability in Adobe Acrobat Reader 4.0.5

acroread in Adobe Acrobat Reader 4.05 on Linux allows local users to overwrite arbitrary files via a symlink attack on temporary files.

2.1
2002-12-31 CVE-2002-1754 Novell Denial-Of-Service vulnerability in Netware Client

Buffer overflow in Novell NetWare Client 4.80 through 4.83 allows local users to cause a denial of service (crash) by using ping, traceroute, or a similar utility to force the client to resolve a large hostname.

2.1
2002-12-31 CVE-2002-1740 ALT N Buffer Overflow vulnerability in MDaemon WorldClient Folder Creation

Buffer overflow in WorldClient.cgi in WorldClient in Alt-N Technologies MDaemon 5.0.5.0 and earlier allows local users to execute arbitrary code via a long folder name (NewFolder parameter).

2.1
2002-12-31 CVE-2002-1739 ALT N Weak Password Encoding vulnerability in MDaemon

Alt-N Technologies Mdaemon 5.0 through 5.0.6 uses a weak encryption algorithm to store user passwords, which allows local users to crack passwords.

2.1
2002-12-31 CVE-2002-1737 Astaro Unspecified vulnerability in Astaro Security Linux 2.01

Astaro Security Linux 2.016 creates world-writable files and directories, which allows local users to overwrite arbitrary files.

2.1
2002-12-31 CVE-2002-1731 IBM Unspecified vulnerability in IBM OS 400

The System Request menu in IBM AS/400 allows local users to list valid user accounts by viewing the object names that are type USRPRF.

2.1
2002-12-31 CVE-2002-1713 Mandrakesoft Unspecified vulnerability in Mandrakesoft Mandrake Linux 8.2

The Standard security setting for Mandrake-Security package (msec) in Mandrake 8.2 installs home directories with world-readable permissions, which could allow local users to read other user's files.

2.1
2002-12-31 CVE-2002-1711 Basilix Unspecified vulnerability in Basilix Webmail 1.1.0

BasiliX 1.1.0 saves attachments in a world readable /tmp/BasiliX directory, which allows local users to read other users' attachments.

2.1
2002-12-31 CVE-2002-1696 Microsoft
PGP
Microsoft Outlook plug-in PGP version 7.0, 7.0.3, and 7.0.4 silently saves a decrypted copy of a message to hard disk when "Automatically decrypt/verify when opening messages" option is checked, "Always use Secure Viewer when decrypting" option is not checked, and the user replies to an encrypted message.
2.1
2002-12-31 CVE-2002-1687 IBM Local Security vulnerability in AIX

Buffer overflow in the diagnostics library in AIX allows local users to "cause data and instructions to be overwritten" via a long DIAGNOSTICS environment variable.

2.1
2002-12-31 CVE-2002-1682 Daansystems Unspecified vulnerability in Daansystems Newsreactor 1.0

NewsReactor 1.0 uses a weak encryption scheme, which could allow local users to decrypt the passwords and gain access to other users' newsgroup accounts.

2.1
2002-12-31 CVE-2002-1676 Bindview Unspecified vulnerability in Bindview Netinventory and Netrc

BindView NetInventory 1.0, when used with NetRC 1.0, allows local users to read sensitive information (passwords) by deleting the HOSTCFG._NI file and forcing an audit, which rewrites the HOSTCFG._NI to HOSTCFG.INI and stores the passwords in cleartext until the audit is complete.

2.1
2002-12-31 CVE-2002-1672 Webmin Unspecified vulnerability in Webmin 0.92/0.92.1

Webmin 0.92, when installed from an RPM, creates /var/webmin with insecure permissions (world readable), which could allow local users to read the root user's cookie-based authentication credentials and possibly hijack the root user's session using the credentials.

2.1
2002-12-31 CVE-2002-1669 Freebsd Unspecified vulnerability in Freebsd 4.2/4.3/4.4

pkg_add in FreeBSD 4.2 through 4.4 creates a temporary directory with world-searchable permissions, which may allow local users to modify world-writable parts of the package during installation.

2.1
2002-12-31 CVE-2002-1668 HP Denial of Service vulnerability in HP Hp-Ux, Hp-Ux Series 700 and Hp-Ux Series 800

HP-UX 11.11 and earlier allows local users to cause a denial of service (kernel deadlock), due to a "file system weakness" that is possibly via an mmap() system call and performing an I/O operation using data from the mapped buffer on the file descriptor for the mapped file.

2.1
2002-12-31 CVE-2002-1667 Freebsd Denial-Of-Service vulnerability in Freebsd 4.5

The virtual memory management system in FreeBSD 4.5-RELEASE and earlier does not properly check the existence of a VM object during page invalidation, which allows local users to cause a denial of service (crash) by calling msync on an unaccessed memory map created with MAP_ANON and MAP_NOSYNC flags.

2.1
2002-12-31 CVE-2002-1571 Linux Local Security vulnerability in kernel

The linux 2.4 kernel before 2.4.19 assumes that the fninit instruction clears all registers, which could lead to an information leak on processors that do not clear all relevant SSE registers.

2.1
2002-12-31 CVE-2002-2283 Microsoft Permissions, Privileges, and Access Controls vulnerability in Microsoft Windows XP

Microsoft Windows XP with Fast User Switching (FUS) enabled does not remove the "show processes from all users" privilege when the user is removed from the administrator group, which allows that user to view processes of other users.

1.9
2002-12-31 CVE-2002-1785 Zeus Technologies Cross-Site Scripting vulnerability in Zeus Web Server Admin Interface

Cross-site scripting (XSS) vulnerability in Zeus Administration Server in Zeus Web Server 4.0 through 4.1r2 allows remote authenticated users to inject arbitrary web script or HTML via the section parameter to index.fcgi.

1.9
2002-12-31 CVE-2002-2001 Jmcce
Mandrakesoft
Symbolic Link Attack vulnerability in jmcce Predictable Log File

jmcce 1.3.8 in Mandrake 8.1 creates log files in /tmp with predictable names, which allows local users to overwrite arbitrary files via a symlink attack.

1.2
2002-12-31 CVE-2002-1674 Freebsd Unspecified vulnerability in Freebsd

procfs on FreeBSD before 4.5 allows local users to cause a denial of service (kernel panic) by removing a file that the fstatfs function refers to.

1.2