2002 CVE Vulnerabilities
2,393 CVEs published in 2002.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2002-0034 | — | — | 1.9% | Feb 3, 2004 | The Microsoft CONVERT.EXE program, when used on Windows 2000 and Windows XP systems, does not apply the default NTFS per... |
| CVE-2002-1568 | — | — | 2.7% | Nov 17, 2003 | OpenSSL 0.9.6e uses assertions when detecting buffer overflow attacks instead of less severe mechanisms, which allows re... |
| CVE-2002-1569 | — | — | 2.3% | Nov 17, 2003 | gv 3.5.8, and possibly earlier versions, allows remote attackers to execute arbitrary commands via shell metacharacters ... |
| CVE-2002-1570 | — | — | 5.5% | Nov 3, 2003 | Heap-based buffer overflow in snmpnetstat for ucd-snmp 4.2.3 and earlier, and net-snmp, allows remote attackers to execu... |
| CVE-2002-1567 | — | — | 26.8% | Oct 6, 2003 | Cross-site scripting (XSS) vulnerability in Apache Tomcat 4.1 allows remote attackers to execute arbitrary web script an... |
| CVE-2002-1352 | — | — | 1.1% | Sep 17, 2003 | Per Magne Knutsen's CartMan shopping cart (cartman.php) 1.04 and earlier allows remote attackers to modify product price... |
| CVE-2002-1566 | — | — | 3.4% | Aug 27, 2003 | netris 0.5, and possibly other versions before 0.52, when running with the -w (wait) option, allows remote attackers to ... |
| CVE-2002-1155 | — | — | 1.1% | Jun 16, 2003 | Buffer overflow in KON kon2 0.3.9b and earlier allows local users to execute arbitrary code via a long -Coding command l... |
| CVE-2002-1565 | — | — | 3.0% | Jun 16, 2003 | Buffer overflow in url_filename function for wget 1.8.1 allows attackers to cause a denial of service (segmentation faul... |
| CVE-2002-1564 | — | — | 11.7% | Jun 9, 2003 | Internet Explorer 5.5 and 6.0 allows remote attackers to steal potentially sensitive information from cookies via a cook... |
| CVE-2002-1460 | — | — | 1.9% | Jun 9, 2003 | L-Forum 2.40 and earlier does not properly verify whether a file was uploaded or if the associated variables were set by... |
| CVE-2002-1459 | — | — | 1.6% | Jun 9, 2003 | Cross-site scripting vulnerability in L-Forum 2.40 and earlier, when the "Enable HTML in messages" option is off, allows... |
| CVE-2002-1461 | — | — | 2.4% | Jun 9, 2003 | Web Shop Manager 1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the search box. |
| CVE-2002-1457 | — | — | 1.2% | Jun 9, 2003 | SQL injection vulnerability in search.php for L-Forum 2.40 allows remote attackers to execute arbitrary SQL statements v... |
| CVE-2002-1456 | — | — | 11.6% | Jun 9, 2003 | Buffer overflow in mIRC 6.0.2 and earlier allows remote attackers to execute arbitrary code via a long $asctime value. |
| CVE-2002-1458 | — | — | 1.6% | Jun 9, 2003 | Cross-site scripting vulnerability in L-Forum 2.40 and earlier, when the "Enable HTML in messages" option is on, allows ... |
| CVE-2002-1462 | — | — | 1.5% | Jun 9, 2003 | details2.php in OrganicPHP PHP-affiliate 1.0, and possibly later versions, allows remote attackers to modify information... |
| CVE-2002-1454 | — | — | 1.7% | Jun 9, 2003 | MyWebServer 1.0.2 allows remote attackers to determine the absolute path of the web document root via a request for a di... |
| CVE-2002-1455 | — | — | 3.9% | Jun 9, 2003 | Multiple cross-site scripting (XSS) vulnerabilities in OmniHTTPd allow remote attackers to insert script or HTML into we... |
| CVE-2002-1463 | — | — | 6.9% | Jun 9, 2003 | Symantec Raptor Firewall 6.5 and 6.5.3, Enterprise Firewall 6.5.2 and 7.0, VelociRaptor Models 500/700/1000 and 1100/120... |
| CVE-2002-1562 | — | — | 2.8% | May 12, 2003 | Directory traversal vulnerability in thttpd, when using virtual hosting, allows remote attackers to read arbitrary files... |
| CVE-2002-1563 | — | — | 0.3% | May 12, 2003 | stunnel 4.0.3 and earlier allows attackers to cause a denial of service (crash) via SIGCHLD signal handler race conditio... |
| CVE-2002-1484 | CRITICAL | 9.8 | 13.7% | Apr 22, 2003 | DB4Web server, when configured to use verbose debug messages, allows remote attackers to use DB4Web as a proxy and attem... |
| CVE-2002-1482 | — | — | 3.7% | Apr 22, 2003 | SQL injection vulnerability in login.php for phpGB 1.20 and earlier, when magic_quotes_gpc is not enabled, allows remote... |
| CVE-2002-1481 | — | — | 7.2% | Apr 22, 2003 | savesettings.php in phpGB 1.20 and earlier does not require authentication, which allows remote attackers to cause a den... |
Check if your code is affected by 2002 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now