2002 CVE Vulnerabilities
2,393 CVEs published in 2002.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2002-0498 | — | — | 0.3% | Aug 12, 2002 | Etnus TotalView 5.0.0-4 installs certain files with UID 5039 and GID 59, which could allow local users with that UID or ... |
| CVE-2002-0516 | — | — | 11.0% | Aug 12, 2002 | SquirrelMail 1.2.5 and earlier allows authenticated SquirrelMail users to execute arbitrary commands by modifying the TH... |
| CVE-2002-0499 | — | — | 1.0% | Aug 12, 2002 | The d_path function in Linux kernel 2.2.20 and earlier, and 2.4.18 and earlier, truncates long pathnames without generat... |
| CVE-2002-0500 | — | — | 15.3% | Aug 12, 2002 | Internet Explorer 5.0 through 6.0 allows remote attackers to determine the existence of files on the client via an IMG t... |
| CVE-2002-0501 | — | — | 1.3% | Aug 12, 2002 | Format string vulnerability in log_print() function of Posadis DNS server before version m5pre2 allows local users and p... |
| CVE-2002-0502 | — | — | 3.6% | Aug 12, 2002 | Citrix NFuse 1.6 may allow remote attackers to list applications without authentication by accessing the applist.asp pag... |
| CVE-2002-0503 | — | — | 2.5% | Aug 12, 2002 | Directory traversal vulnerability in boilerplate.asp for Citrix NFuse 1.5 allows remote authenticated users to read arbi... |
| CVE-2002-0504 | — | — | 7.9% | Aug 12, 2002 | Cross-site scripting vulnerability in Citrix NFuse 1.6 and earlier does not quote results from the getLastError method, ... |
| CVE-2002-0505 | — | — | 1.8% | Aug 12, 2002 | Memory leak in the Call Telephony Integration (CTI) Framework authentication for Cisco CallManager 3.0 and 3.1 before 3.... |
| CVE-2002-0506 | — | — | 0.5% | Aug 12, 2002 | Buffer overflow in newt.c of newt windowing library (libnewt) 0.50.33 and earlier may allow attackers to cause a denial ... |
| CVE-2002-0507 | — | — | 2.2% | Aug 12, 2002 | An interaction between Microsoft Outlook Web Access (OWA) with RSA SecurID allows local users to bypass the SecurID auth... |
| CVE-2002-0508 | — | — | 5.4% | Aug 12, 2002 | wwwisis 3.45 and earlier allows remote attackers to execute arbitrary commands and read files via the parameters (1) pro... |
| CVE-2002-0509 | — | — | 2.7% | Aug 12, 2002 | Transparent Network Substrate (TNS) Listener in Oracle 9i 9.0.1.1 allows remote attackers to cause a denial of service (... |
| CVE-2002-0510 | — | — | 2.5% | Aug 12, 2002 | The UDP implementation in Linux 2.4.x kernels keeps the IP Identification field at 0 for all non-fragmented packets, whi... |
| CVE-2002-0511 | — | — | 1.6% | Aug 12, 2002 | The default configuration of Name Service Cache Daemon (nscd) in Caldera OpenLinux 3.1 and 3.1.1 uses cached PTR records... |
| CVE-2002-0512 | — | — | 0.3% | Aug 12, 2002 | startkde in KDE for Caldera OpenLinux 2.3 through 3.1.1 sets the LD_LIBRARY_PATH environment variable to include the cur... |
| CVE-2002-0513 | — | — | 4.6% | Aug 12, 2002 | The PHP administration script in popper_mod 1.2.1 and earlier relies on Apache .htaccess authentication, which allows re... |
| CVE-2002-0514 | — | — | 2.0% | Aug 12, 2002 | PF in OpenBSD 3.0 with the return-rst rule sets the TTL to 128 in the RST packet, which allows remote attackers to deter... |
| CVE-2002-0515 | — | — | 2.2% | Aug 12, 2002 | IPFilter 3.4.25 and earlier sets a different TTL when a port is being filtered than when it is not being filtered, which... |
| CVE-2002-0451 | — | — | 7.2% | Aug 12, 2002 | filemanager_forms.php in PHProjekt 3.1 and 3.1a allows remote attackers to execute arbitrary PHP code by specifying the ... |
| CVE-2002-0452 | — | — | 1.5% | Aug 12, 2002 | Foundry Networks ServerIron switches do not decode URIs when applying "url-map" rules, which could make it easier for at... |
| CVE-2002-0453 | — | — | 1.8% | Aug 12, 2002 | The account lockout capability in Oblix NetPoint 5.2 and earlier only locks out users once for the specified lockout per... |
| CVE-2002-0454 | — | — | 5.2% | Aug 12, 2002 | Qpopper (aka in.qpopper or popper) 4.0.3 and earlier allows remote attackers to cause a denial of service (CPU consumpti... |
| CVE-2002-0455 | — | — | 1.3% | Aug 12, 2002 | IncrediMail stores attachments in a directory with a fixed name, which could make it easier for attackers to exploit vul... |
| CVE-2002-0456 | — | — | 0.8% | Aug 12, 2002 | Eudora 5.1 and earlier versions stores attachments in a directory with a fixed name, which could make it easier for atta... |
Check if your code is affected by 2002 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now