2002 CVE Vulnerabilities
2,393 CVEs published in 2002.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2002-1843 | — | — | 2.1% | Dec 31, 2002 | Perlbot 1.9.2 allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the $text variable i... |
| CVE-2002-1845 | — | — | 3.6% | Dec 31, 2002 | Cross-site scripting (XSS) vulnerability in index.php in Yet Another Bulletin Board (YaBB) 1.40 and 1.41 allows remote a... |
| CVE-2002-2156 | — | — | 2.0% | Dec 31, 2002 | Buffer overflow in Trillian 0.73 allows remote IRC servers to execute arbitrary code via a long PING response. |
| CVE-2002-2307 | — | — | 2.0% | Dec 31, 2002 | The default configuration of BenHur Firewall release 3 update 066 fix 2 allows remote attackers to access arbitrary serv... |
| CVE-2002-1846 | — | — | 1.1% | Dec 31, 2002 | Yet Another Bulletin Board (YaBB) 1.40 and 1.41 does not require a user to submit the correct password before changing i... |
| CVE-2002-1847 | — | — | 33.6% | Dec 31, 2002 | Buffer overflow in mplay32.exe of Microsoft Windows Media Player (WMP) 6.3 through 7.1 allows remote attackers to execut... |
| CVE-2002-2158 | — | — | 1.4% | Dec 31, 2002 | zenTrack 2.0.3 and earlier allows remote attackers to obtain the full path to the web root via an invalid ticket ID, whi... |
| CVE-2002-1848 | — | — | 0.3% | Dec 31, 2002 | TightVNC before 1.2.4 running on Windows stores unencrypted passwords in the password text control of the WinVNC Propert... |
| CVE-2002-1849 | — | — | 2.5% | Dec 31, 2002 | ParaChat Server 4.0 does not log users off if the browser's back button is used, which allows remote attackers to cause ... |
| CVE-2002-2159 | — | — | 2.4% | Dec 31, 2002 | Linksys EtherFast Cable/DSL BEFSR11, BEFSR41 and BEFSRU31 with the firmware 1.42.7 upgrade installed opens TCP port 5678... |
| CVE-2002-2308 | — | — | 1.1% | Dec 31, 2002 | Netscape Communicator 6.2.1 allows remote attackers to cause a denial of service in client browsers via a webpage contai... |
| CVE-2002-2382 | — | — | 0.3% | Dec 31, 2002 | cvsupd.sh in CVSup 1.2 allows local users to overwrite arbitrary files and gain privileges via a symlink attack on /var/... |
| CVE-2002-1851 | — | — | 3.2% | Dec 31, 2002 | Buffer overflow in WS_FTP Pro 7.5 allows remote attackers to execute code on a client system via unknown attack vectors. |
| CVE-2002-1852 | — | — | 3.4% | Dec 31, 2002 | Cross-site scripting (XSS) vulnerability in Monkey 0.5.0 allows remote attackers to inject arbitrary web script or HTML ... |
| CVE-2002-2161 | — | — | 1.6% | Dec 31, 2002 | Kerio Personal Firewall (KPF) 2.1.4 and earlier allows remote attackers to cause a denial of service (hang and CPU consu... |
| CVE-2002-1853 | — | — | 1.2% | Dec 31, 2002 | Cross-site scripting (XSS) vulnerability in MyNewsGroups 0.4 and 0.4.1 allows remote attackers to inject arbitrary web s... |
| CVE-2002-1854 | — | — | 4.8% | Dec 31, 2002 | Rlaj whois CGI script (whois.cgi) 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in ... |
| CVE-2002-2162 | — | — | 0.8% | Dec 31, 2002 | Cerulean Studios Trillian 0.73 and earlier use weak encrypttion (XOR) for storing user passwords in .ini files in the Tr... |
| CVE-2002-2309 | — | — | 4.1% | Dec 31, 2002 | php.exe in PHP 3.0 through 4.2.2, when running on Apache, does not terminate properly, which allows remote attackers to ... |
| CVE-2002-1855 | — | — | 2.2% | Dec 31, 2002 | Macromedia JRun 3.0 through 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF direc... |
| CVE-2002-1856 | — | — | 3.7% | Dec 31, 2002 | HP Application Server 8.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, ... |
| CVE-2002-2163 | — | — | 1.2% | Dec 31, 2002 | KvPoll 1.1 allows remote authenticated users to vote more than once by setting the "already_voted" cookie by various met... |
| CVE-2002-1857 | — | — | 2.1% | Dec 31, 2002 | jo! jo Webserver 1.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which... |
| CVE-2002-1858 | — | — | 4.5% | Dec 31, 2002 | Oracle Oracle9i Application Server 1.0.2.2 and 9.0.2 through 9.0.2.0.1, when running on Windows, allows remote attackers... |
| CVE-2002-2164 | — | — | 21.9% | Dec 31, 2002 | Buffer overflow in Microsoft Outlook Express 5.0, 5.5, and 6.0 allows remote attackers to cause a denial of service (cra... |
Check if your code is affected by 2002 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now