Strix
26.1K

2002 CVE Vulnerabilities

2,393 CVEs published in 2002.

CRITICAL12

0.5%

HIGH35

1.5%

MEDIUM13

0.5%

LOW1

0.0%

UNKNOWN2,332

97.5%

CVE IDSeverityCVSSDescription
CVE-2002-1930Buffer overflow in AN HTTPd 1.38 through 1.4.1c allows remote attackers to execute arbitrary code via a SOCKS4 request w...
CVE-2002-1623The design of the Internet Key Exchange (IKE) protocol, when using Aggressive Mode for shared secret authentication, doe...
CVE-2002-1919SQL injection vulnerability in shopadmin.asp in VP-ASP 4.0 allows remote attackers to execute arbitrary SQL commands and...
CVE-2002-2364Cross-site scripting (XSS) vulnerability in PHP Ticket 0.5 and earlier allows remote attackers to inject arbitrary web s...
CVE-2002-1926Directory traversal vulnerability in source.php in Aquonics File Manager 1.5 allows remote attackers to read arbitrary f...
CVE-2002-1626Directory traversal vulnerability in Mike Spice My Calendar before 1.5 allows remote attackers to write arbitrary files ...
CVE-2002-1951Buffer overflow in GoAhead WebServer 2.1 allows remote attackers to execute arbitrary code via a long HTTP GET request w...
CVE-2002-1632Oracle 9i Application Server (9iAS) installs multiple sample pages that allow remote attackers to obtain environment var...
CVE-2002-1936UTStarcom BAS 1000 3.1.10 creates several default or back door accounts and passwords, which allows remote attackers to ...
CVE-2002-1630The sendmail.jsp sample page in Oracle 9i Application Server (9iAS) allows remote attackers to send arbitrary emails.
CVE-2002-1947Webmin 0.21 through 1.0 uses the same built-in SSL key for all installations, which allows remote attackers to eavesdrop...
CVE-2002-1633Multiple buffer overflows in QNX 4.25 may allow local users to execute arbitrary code via long command line arguments to...
CVE-2002-1916Pirch and RusPirch, when auto-log is enabled, allows remote attackers to cause a denial of service (crash) via a nicknam...
CVE-2002-1634Novell NetWare 5.1 installs sample applications that allow remote attackers to obtain sensitive information via (1) ndso...
CVE-2002-1650The spell checker plugin (check_me.mod.php) for SquirrelMail before 1.2.3 allows remote attackers to execute arbitrary c...
CVE-2002-1649Cross-site scripting (XSS) vulnerability in read_body.php in SquirrelMail before 1.2.3 allows remote attackers to execut...
CVE-2002-1651Cross-site scripting (XSS) vulnerability in Verity Search97 allows remote attackers to insert arbitrary web content and ...
CVE-2002-1653Farm9 Cryptcat, when started in server mode with the -e option, does not enable encryption, which allows clients to comm...
CVE-2002-1912HIGH7.5SkyStream EMR5000 1.16 through 1.18 does not drop packets or disable the Ethernet interface when the buffers are full, w...
CVE-2002-1655The Web Publishing feature in Netscape Enterprise Server 3.x and iPlanet Web Server 4.x allows remote attackers to cause...
CVE-2002-1736Unknown vulnerability in CGINews before 1.06 allow remote attackers to read arbitrary files via "unfiltered user input."
CVE-2002-1656X-News (x_news) 1.1 and earlier allows attackers to authenticate as other users by obtaining the MD5 checksum of the pas...
CVE-2002-1661The leafnode server in leafnode 1.9.20 to 1.9.29 allows remote attackers to cause a denial of service (infinite loop) wh...
CVE-2002-1660calendar.php in vBulletin before 2.2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in...
CVE-2002-1913phptonuke.php in myPHPNuke 1.8.8 allows remote attackers to read arbitrary files via a full pathname in the filnavn vari...

Check if your code is affected by 2002 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now