2002 CVE Vulnerabilities
2,393 CVEs published in 2002.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2002-0482 | — | — | 2.1% | Aug 12, 2002 | Directory traversal vulnerability in PCI Netsupport Manager before version 7, when running web extensions, allows remote... |
| CVE-2002-0483 | — | — | 8.2% | Aug 12, 2002 | index.php for PHP-Nuke 5.4 and earlier allows remote attackers to determine the physical pathname of the web server when... |
| CVE-2002-0391 | CRITICAL | 9.8 | 58.1% | Aug 12, 2002 | Integer overflow in xdr_array function in RPC servers for operating systems that use libc, glibc, or other code based on... |
| CVE-2002-0485 | HIGH | 7.5 | 1.5% | Aug 12, 2002 | Norton Anti-Virus (NAV) allows remote attackers to bypass content filtering via attachments whose Content-Type and Conte... |
| CVE-2002-0788 | MEDIUM | 5.5 | 0.4% | Aug 12, 2002 | An interaction between PGP 7.0.3 with the "wipe deleted files" option, when used on Windows Encrypted File System (EFS),... |
| CVE-2002-0793 | MEDIUM | 5.5 | 1.3% | Aug 12, 2002 | Hard link and possibly symbolic link following vulnerabilities in QNX RTOS 4.25 (aka QNX4) allow local users to overwrit... |
| CVE-2002-0849 | — | — | 0.4% | Aug 12, 2002 | Linux-iSCSI iSCSI implementation installs the iscsi.conf file with world-readable permissions on some operating systems,... |
| CVE-2002-0484 | — | — | 9.5% | Aug 12, 2002 | move_uploaded_file in PHP does not does not check for the base directory (open_basedir), which could allow remote attack... |
| CVE-2002-0472 | — | — | 11.9% | Aug 12, 2002 | MSN Messenger Service 3.6, and possibly other versions, uses weak authentication when exchanging messages between client... |
| CVE-2002-0487 | — | — | 0.4% | Aug 12, 2002 | Intellisol Xpede 4.1 stores passwords in plaintext in a Javascript "session timeout" re-authentication capability, which... |
| CVE-2002-0488 | — | — | 6.2% | Aug 12, 2002 | Linux Directory Penguin traceroute.pl CGI script 1.0 allows remote attackers to execute arbitrary code via shell metacha... |
| CVE-2002-0489 | — | — | 5.8% | Aug 12, 2002 | Linux Directory Penguin NsLookup CGI script (nslookup.pl) 1.0 allows remote attackers to execute arbitrary code via shel... |
| CVE-2002-0490 | — | — | 2.7% | Aug 12, 2002 | Instant Web Mail before 0.60 does not properly filter CR/LF sequences, which allows remote attackers to (1) execute arbi... |
| CVE-2002-0844 | HIGH | 7.8 | 0.7% | Aug 12, 2002 | Off-by-one overflow in the CVS PreservePermissions of rcs.c for CVSD before 1.11.2 allows local users to execute arbitra... |
| CVE-2002-0491 | — | — | 3.2% | Aug 12, 2002 | admin.php in AlGuest 1.0 guestbook checks for the existence of the admin cookie to authenticate the AlGuest administrato... |
| CVE-2002-0492 | — | — | 2.0% | Aug 12, 2002 | dcshop.cgi in DCShop 1.002 Beta allows remote attackers to delete arbitrary setup files via a null character in the data... |
| CVE-2002-0493 | — | — | 3.8% | Aug 12, 2002 | Apache Tomcat may be started without proper security settings if errors are encountered while reading the web.xml file, ... |
| CVE-2002-0494 | — | — | 1.6% | Aug 12, 2002 | Cross-site scripting vulnerability in WebSight Directory System 0.1 allows remote attackers to execute arbitrary Javascr... |
| CVE-2002-0495 | — | — | 13.1% | Aug 12, 2002 | csSearch.cgi in csSearch 2.3 and earlier allows remote attackers to execute arbitrary Perl code via the savesetup comman... |
| CVE-2002-0496 | — | — | 1.7% | Aug 12, 2002 | The HTTP server for SouthWest Talker server 1.0.0 allows remote attackers to cause a denial of service (server crash) vi... |
| CVE-2002-0411 | — | — | 2.8% | Aug 12, 2002 | Cross-site scripting vulnerability in message.php for AeroMail before 1.45 allows remote attackers to execute Javascript... |
| CVE-2002-0412 | — | — | 4.2% | Aug 12, 2002 | Format string vulnerability in TraceEvent function for ntop before 2.1 allows remote attackers to execute arbitrary code... |
| CVE-2002-0413 | — | — | 7.0% | Aug 12, 2002 | Cross-site scripting vulnerability in ReBB allows remote attackers to execute arbitrary Javascript and steal cookies via... |
| CVE-2002-0414 | — | — | 1.4% | Aug 12, 2002 | KAME-derived implementations of IPsec on NetBSD 1.5.2, FreeBSD 4.5, and other operating systems, does not properly consu... |
| CVE-2002-0415 | — | — | 1.3% | Aug 12, 2002 | Directory traversal vulnerability in the web server used in RealPlayer 6.0.7, and possibly other versions, may allow loc... |
Check if your code is affected by 2002 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now