2002 CVE Vulnerabilities
2,393 CVEs published in 2002.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2002-1862 | — | — | 3.0% | Dec 31, 2002 | SmartMail Server 2.0 allows remote attackers to cause a denial of service (crash) by sending data and closing the connec... |
| CVE-2002-2166 | — | — | 0.9% | Dec 31, 2002 | Cross-site scripting (XSS) vulnerability in FuseTalk 2.0 and 3.0 allows remote attackers to insert arbitrary HTML and we... |
| CVE-2002-2311 | — | — | 9.5% | Dec 31, 2002 | Microsoft Internet Explorer 6.0 and possibly others allows remote attackers to upload arbitrary file contents when users... |
| CVE-2002-1863 | — | — | 0.3% | Dec 31, 2002 | Iomega Network Attached Storage (NAS) A300U, and possibly other models, does not allow the FTP service to be disabled, w... |
| CVE-2002-1864 | — | — | 17.8% | Dec 31, 2002 | Directory traversal vulnerability in Simple Web Server (SWS) 0.0.4 through 0.1.0 allows remote attackers to read arbitra... |
| CVE-2002-2167 | — | — | 1.7% | Dec 31, 2002 | Directory traversal vulnerability in function_foot_1.inc.php for Thorsten Korner 123tkShop before 0.3.1 allows remote at... |
| CVE-2002-1865 | — | — | 2.9% | Dec 31, 2002 | Buffer overflow in the Embedded HTTP server, as used in (1) D-Link DI-804 4.68, Dl-704 V2.56b6, and Dl-704 V2.56b5 and (... |
| CVE-2002-1866 | — | — | 1.6% | Dec 31, 2002 | Simple Web Server (SWS) 0.0.4 through 0.1.0 does not close file descriptors for 404 error messages, which could allow re... |
| CVE-2002-2168 | — | — | 1.2% | Dec 31, 2002 | SQL injection vulnerability in Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to execute arbitrary SQL q... |
| CVE-2002-2312 | — | — | 1.8% | Dec 31, 2002 | Opera 6.0.1 allows remote attackers to upload arbitrary file contents when users press a key corresponding to the JavaSc... |
| CVE-2002-2384 | — | — | 0.4% | Dec 31, 2002 | hotfoon4.exe in Hotfoon 4.00 stores user names and passwords in cleartext in the hotfoon2 registry key, which allows loc... |
| CVE-2002-1867 | — | — | 1.5% | Dec 31, 2002 | The default configuration of BizDesign ImageFolio 2.23 through 2.26 does not control access to (1) admin/setup.cgi, whic... |
| CVE-2002-1868 | — | — | 5.4% | Dec 31, 2002 | Dispair 0.1 and 0.2 allows remote attackers to execute arbitrary shell commands via certain form fields. |
| CVE-2002-2169 | — | — | 2.4% | Dec 31, 2002 | Cross-site scripting vulnerability AOL Instant Messenger (AIM) 4.5 and 4.7 for MacOS and Windows allows remote attackers... |
| CVE-2002-1870 | — | — | 2.7% | Dec 31, 2002 | Simple Web Server (SWS) 0.0.4 through 0.1.0 does not properly handle when the recv function call fails, which may allow ... |
| CVE-2002-1871 | — | — | 0.4% | Dec 31, 2002 | pkgadd in Sun Solaris 2.5.1 through 8 installs files setuid/setgid root if the pkgmap file contains a "?" (question mark... |
| CVE-2002-2170 | — | — | 4.7% | Dec 31, 2002 | Working Resources Inc. BadBlue Enterprise Edition 1.7 through 1.74 attempts to restrict administrator actions to the IP ... |
| CVE-2002-2313 | — | — | 0.8% | Dec 31, 2002 | Eudora email client 5.1.1, with "use Microsoft viewer" enabled, allows remote attackers to execute arbitrary programs vi... |
| CVE-2002-1873 | — | — | 13.6% | Dec 31, 2002 | Microsoft Exchange 2000, when used with Microsoft Remote Procedure Call (MSRPC), allows remote attackers to cause a deni... |
| CVE-2002-1874 | — | — | 3.3% | Dec 31, 2002 | astrocam.cgi in AstroCam 0.9-1-1 through 1.4.0 allows remote attackers to execute arbitrary commands via shell metachara... |
| CVE-2002-2171 | — | — | 1.7% | Dec 31, 2002 | Cross-site scripting (XSS) vulnerability in acWEB 1.8 and 1.14 allows remote attackers to insert arbitrary HTML and web ... |
| CVE-2002-1875 | — | — | 0.4% | Dec 31, 2002 | Entercept Agent 2.5 agent for Windows, released before May 21, 2002, allows local administrative users to obtain the ent... |
| CVE-2002-1876 | — | — | 4.7% | Dec 31, 2002 | Microsoft Exchange 2000 allows remote authenticated attackers to cause a denial of service via a large number of rapid r... |
| CVE-2002-2172 | — | — | 0.4% | Dec 31, 2002 | Informed (1) Designer and (2) Filler 3.05 does not zero out newly allocated disk blocks as an encrypted file grows in si... |
| CVE-2002-2314 | — | — | 8.5% | Dec 31, 2002 | Mozilla 1.0 allows remote attackers to steal cookies from other domains via a javascript: URL with a leading "//" and en... |
Check if your code is affected by 2002 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now