Strix
26.1K

2002 CVE Vulnerabilities

2,393 CVEs published in 2002.

CRITICAL12

0.5%

HIGH35

1.5%

MEDIUM13

0.5%

LOW1

0.0%

UNKNOWN2,332

97.5%

CVE IDSeverityCVSSDescription
CVE-2002-1848TightVNC before 1.2.4 running on Windows stores unencrypted passwords in the password text control of the WinVNC Propert...
CVE-2002-23033D3.Com ShopFactory 5.8 uses client-side encryption and decryption for sensitive price data, which allows remote attacke...
CVE-2002-1851Buffer overflow in WS_FTP Pro 7.5 allows remote attackers to execute code on a client system via unknown attack vectors.
CVE-2002-1854Rlaj whois CGI script (whois.cgi) 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in ...
CVE-2002-1855Macromedia JRun 3.0 through 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF direc...
CVE-2002-2356HAMweather 2.x allows remote attackers to modify administrative settings and obtain sensitive information via a direct r...
CVE-2002-1859Orion Application Server 1.5.3, when running on Windows, allows remote attackers to retrieve files in the WEB-INF direct...
CVE-2002-1861Sybase Enterprise Application Server 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-...
CVE-2002-1896Buffer overflow in Alsaplayer 0.99.71, when installed setuid root, allows local users to execute arbitrary code via a lo...
CVE-2002-2374Unspecified vulnerability in pprosetup in Sun PatchPro 2.0 has unknown impact and attack vectors related to "unsafe use ...
CVE-2002-1864Directory traversal vulnerability in Simple Web Server (SWS) 0.0.4 through 0.1.0 allows remote attackers to read arbitra...
CVE-2002-1897MyWebServer LLC MyWebServer 1.0.2 allows remote attackers to cause a denial of service (crash) via a long HTTP request, ...
CVE-2002-1866Simple Web Server (SWS) 0.0.4 through 0.1.0 does not close file descriptors for 404 error messages, which could allow re...
CVE-2002-2328Active Directory in Windows 2000, when supporting Kerberos V authentication and GSSAPI, allows remote attackers to cause...
CVE-2002-1875Entercept Agent 2.5 agent for Windows, released before May 21, 2002, allows local administrative users to obtain the ent...
CVE-2002-1874astrocam.cgi in AstroCam 0.9-1-1 through 1.4.0 allows remote attackers to execute arbitrary commands via shell metachara...
CVE-2002-1873Microsoft Exchange 2000, when used with Microsoft Remote Procedure Call (MSRPC), allows remote attackers to cause a deni...
CVE-2002-2388Buffer overflow in INweb POP3 mail server 2.01 allows remote attackers to cause a denial of service (crash) via a long H...
CVE-2002-1876Microsoft Exchange 2000 allows remote authenticated attackers to cause a denial of service via a large number of rapid r...
CVE-2002-1914MEDIUM5.5dump 0.4 b10 through b29 allows local users to cause a denial of service (execution prevention) by using flock() to lock...
CVE-2002-1879SQL injection vulnerability in LokwaBB 1.2.2 allows remote attackers to execute arbitrary SQL commands via the (1) membe...
CVE-2002-2353tftpd32 2.50 and 2.50.2 allows remote attackers to read or write arbitrary files via a full pathname in GET and PUT requ...
CVE-2002-1915MEDIUM5.5tip on multiple BSD-based operating systems allows local users to cause a denial of service (execution prevention) by us...
CVE-2002-1884index.php in Py-Membres 3.1 allows remote attackers to log in as an administrator by setting the pymembs parameter to "a...
CVE-2002-1825Format string vulnerability in PerlRTE_example1.pl in WASD 7.1, 7.2.0 through 7.2.3, and 8.0.0 allows remote attackers t...

Check if your code is affected by 2002 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now