2002 CVE Vulnerabilities
2,393 CVEs published in 2002.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2002-1848 | — | — | 0.3% | Dec 31, 2002 | TightVNC before 1.2.4 running on Windows stores unencrypted passwords in the password text control of the WinVNC Propert... |
| CVE-2002-1849 | — | — | 2.5% | Dec 31, 2002 | ParaChat Server 4.0 does not log users off if the browser's back button is used, which allows remote attackers to cause ... |
| CVE-2002-2159 | — | — | 2.4% | Dec 31, 2002 | Linksys EtherFast Cable/DSL BEFSR11, BEFSR41 and BEFSRU31 with the firmware 1.42.7 upgrade installed opens TCP port 5678... |
| CVE-2002-2308 | — | — | 1.1% | Dec 31, 2002 | Netscape Communicator 6.2.1 allows remote attackers to cause a denial of service in client browsers via a webpage contai... |
| CVE-2002-2382 | — | — | 0.3% | Dec 31, 2002 | cvsupd.sh in CVSup 1.2 allows local users to overwrite arbitrary files and gain privileges via a symlink attack on /var/... |
| CVE-2002-1851 | — | — | 3.2% | Dec 31, 2002 | Buffer overflow in WS_FTP Pro 7.5 allows remote attackers to execute code on a client system via unknown attack vectors. |
| CVE-2002-1852 | — | — | 3.4% | Dec 31, 2002 | Cross-site scripting (XSS) vulnerability in Monkey 0.5.0 allows remote attackers to inject arbitrary web script or HTML ... |
| CVE-2002-2161 | — | — | 1.6% | Dec 31, 2002 | Kerio Personal Firewall (KPF) 2.1.4 and earlier allows remote attackers to cause a denial of service (hang and CPU consu... |
| CVE-2002-1853 | — | — | 1.2% | Dec 31, 2002 | Cross-site scripting (XSS) vulnerability in MyNewsGroups 0.4 and 0.4.1 allows remote attackers to inject arbitrary web s... |
| CVE-2002-1854 | — | — | 4.8% | Dec 31, 2002 | Rlaj whois CGI script (whois.cgi) 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in ... |
| CVE-2002-2162 | — | — | 0.8% | Dec 31, 2002 | Cerulean Studios Trillian 0.73 and earlier use weak encrypttion (XOR) for storing user passwords in .ini files in the Tr... |
| CVE-2002-2309 | — | — | 4.1% | Dec 31, 2002 | php.exe in PHP 3.0 through 4.2.2, when running on Apache, does not terminate properly, which allows remote attackers to ... |
| CVE-2002-1855 | — | — | 2.2% | Dec 31, 2002 | Macromedia JRun 3.0 through 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF direc... |
| CVE-2002-1856 | — | — | 3.7% | Dec 31, 2002 | HP Application Server 8.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, ... |
| CVE-2002-2163 | — | — | 1.2% | Dec 31, 2002 | KvPoll 1.1 allows remote authenticated users to vote more than once by setting the "already_voted" cookie by various met... |
| CVE-2002-1857 | — | — | 2.1% | Dec 31, 2002 | jo! jo Webserver 1.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which... |
| CVE-2002-1858 | — | — | 4.5% | Dec 31, 2002 | Oracle Oracle9i Application Server 1.0.2.2 and 9.0.2 through 9.0.2.0.1, when running on Windows, allows remote attackers... |
| CVE-2002-2164 | — | — | 21.9% | Dec 31, 2002 | Buffer overflow in Microsoft Outlook Express 5.0, 5.5, and 6.0 allows remote attackers to cause a denial of service (cra... |
| CVE-2002-2310 | — | — | 1.3% | Dec 31, 2002 | ClickCartPro 4.0 stores the admin_user.db data file under the web document root with insufficient access control on serv... |
| CVE-2002-2383 | — | — | 1.0% | Dec 31, 2002 | SQL injection vulnerability in f2html.pl 0.1 through 0.4 allows remote attackers to execute arbitrary SQL commands via f... |
| CVE-2002-2419 | — | — | 1.6% | Dec 31, 2002 | Direct connect text client (DCTC) client 0.83.3 allows remote attackers to cause a denial of service (crash) via a strin... |
| CVE-2002-1859 | — | — | 2.5% | Dec 31, 2002 | Orion Application Server 1.5.3, when running on Windows, allows remote attackers to retrieve files in the WEB-INF direct... |
| CVE-2002-1860 | — | — | 2.1% | Dec 31, 2002 | Pramati Server 3.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which c... |
| CVE-2002-2165 | — | — | 0.8% | Dec 31, 2002 | The IMHO Webmail module 0.97.3 and earlier for Roxen leaks the REFERER from the browser's previous login session in an e... |
| CVE-2002-1861 | — | — | 2.1% | Dec 31, 2002 | Sybase Enterprise Application Server 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-... |
Check if your code is affected by 2002 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now