2002 CVE Vulnerabilities

2,393 CVEs published in 2002.

CVE IDSeverityCVSSDescription
CVE-2002-0316Cross-site scripting vulnerability in eXtreme message board (XMB) 1.6x and earlier allows remote attackers to execute sc...
CVE-2002-0314fasttrack p2p, as used in (1) KaZaA before 1.5, (2) grokster, and (3) morpheus allows remote attackers to cause a denial...
CVE-2002-0313Buffer overflow in Essentia Web Server 2.1 allows remote attackers to cause a denial of service, and possibly execute ar...
CVE-2002-0367HIGH7.8smss.exe debugging subsystem in Windows NT and Windows 2000 does not properly authenticate programs that connect to othe...
CVE-2002-0312Directory traversal vulnerability in Essentia Web Server 2.1 allows remote attackers to read arbitrary files via a .. (d...
CVE-2002-0006XChat 1.8.7 and earlier, including default configurations of 1.4.2 and 1.4.3, allows remote attackers to execute arbitra...
CVE-2002-0146fetchmail email client before 5.9.10 does not properly limit the maximum number of messages available, which allows a re...
CVE-2002-0382XChat IRC client allows remote attackers to execute arbitrary commands via a /dns command on a host whose DNS reverse lo...
CVE-2002-0381The TCP implementation in various BSD operating systems (tcp_input.c) does not properly block connections to broadcast a...
CVE-2002-0379Buffer overflow in University of Washington imap server (uw-imapd) imap-2001 (imapd 2001.315) and imap-2001a (imapd 2001...
CVE-2002-0360Buffer overflow in Sun AnswerBook2 1.4 through 1.4.3 allows remote attackers to execute arbitrary code via a long filena...
CVE-2002-0354The XMLHttpRequest object (XMLHTTP) in Netscape 6.1 and Mozilla 0.9.7 allows remote attackers to read arbitrary files an...
CVE-2002-0353The ASN.1 parser in Ethereal 0.9.2 and earlier allows remote attackers to cause a denial of service (crash) via a certai...
CVE-2002-0352Phorum 3.3.2 allows remote attackers to determine the email addresses of the 10 most active users via a direct HTTP requ...
CVE-2002-0351Buffer overflows in CFS daemon (cfsd) before 1.3.3-8.1, and 1.4x before 1.4.1-5, allow remote attackers to cause a denia...
CVE-2002-0350HP Procurve Switch 4000M running firmware C.08.22 and C.09.09 allows remote attackers to cause a denial of service via a...
CVE-2002-0349Tiny Personal Firewall (TPF) 2.0.15, under certain configurations, will pop up an alert to the system even when the scre...
CVE-2002-0348service.cgi in Cobalt RAQ 4 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, v...
CVE-2002-0347Directory traversal vulnerability in Cobalt RAQ 4 allows remote attackers to read password-protected files, and possibly...
CVE-2002-0346Cross-site scripting vulnerability in Cobalt RAQ 4 allows remote attackers to execute arbitrary script as other Cobalt u...
CVE-2002-0345Symantec Ghost 7.0 stores usernames and passwords in plaintext in the NGServer\params registry key, which could allow an...
CVE-2002-0344Symantec LiveUpdate 1.5 and earlier in Norton Antivirus stores usernames and passwords for a local LiveUpdate server in ...
CVE-2002-0343Hotline Client 1.8.5 stores sensitive user information, including passwords, in plaintext in the bookmarks file, which c...
CVE-2002-0342Kmail 1.2 on KDE 2.1.1 allows remote attackers to cause a denial of service (crash) via an email message whose body is a...
CVE-2002-0341GWWEB.EXE in GroupWise Web Access 5.5, and possibly other versions, allows remote attackers to determine the full pathna...

Check if your code is affected by 2002 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now