2002 CVE Vulnerabilities

2,393 CVEs published in 2002.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2002-0355netstat in SGI IRIX before 6.5.12 allows local users to determine the existence of files on the system, even if the user...
CVE-2002-0033Heap-based buffer overflow in cfsd_calloc function of Solaris cachefsd allows remote attackers to execute arbitrary code...
CVE-2002-0255The default configuration of Arescom NetDSL 800 does not require authentication, which allows remote attackers to cause ...
CVE-2002-0155Buffer overflow in Microsoft MSN Chat ActiveX Control, as used in MSN Messenger 4.5 and 4.6, and Exchange Instant Messen...
CVE-2002-0374Format string vulnerability in the logging function for the pam_ldap PAM LDAP module before version 144 allows attackers...
CVE-2002-0375Cross-site scripting vulnerability in sgdynamo.exe for Sgdynamo allows remote attackers to execute arbitrary Javascript ...
CVE-2002-0377Gaim 0.57 stores sensitive information in world-readable and group-writable files in the /tmp directory, which allows lo...
CVE-2002-0271Runtime library in GNU Ada compiler (GNAT) 3.12p through 3.14p allows local users to modify files of other users via a s...
CVE-2002-0169The default stylesheet for DocBook on Red Hat Linux 6.2 through 7.2 is installed with an insecure option enabled, which ...
CVE-2002-0363ghostscript before 6.53 allows attackers to execute arbitrary commands by using .locksafe or .setsafe to reset the curre...
CVE-2002-0269Internet Explorer 5.x and 6 interprets an object as an HTML document even when its MIME Content-Type is text/plain, whic...
CVE-2002-0362Buffer overflow in AOL Instant Messenger (AIM) 4.2 and later allows remote attackers to execute arbitrary code via a lon...
CVE-2002-0256The telnet port in Arescom NetDSL 1000 router allows remote attackers to cause a denial of service via a series of conne...
CVE-2002-0257Cross-site scripting vulnerability in auction.pl of MakeBid Auction Deluxe 3.30 allows remote attackers to obtain inform...
CVE-2002-0258Merak Mail IceWarp Web Mail uses a static identifier as a user session ID that does not change across sessions, which co...
CVE-2002-0192Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2002-0193, CVE-2002-1564. Reason: This candidate wa...
CVE-2002-0270Opera, when configured with the "Determine action by MIME type" option disabled, interprets an object as an HTML documen...
CVE-2002-1447Buffer overflow in the vpnclient program for UNIX VPN Client before 3.5.2 allows local users to gain administrative priv...
CVE-2002-1641Multiple buffer overflows in Oracle Web Cache for Oracle 9i Application Server (9iAS) allow remote attackers to execute ...
CVE-2002-1638Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2002-2153. Reason: This candidate is a duplicate of...
CVE-2002-1280Memory leak in RealSecure Event Collector 6.5 allows attackers to cause a denial of service (memory consumption and cras...
CVE-2002-1056Microsoft Outlook 2000 and 2002, when configured to use Microsoft Word as the email editor, does not block scripts that ...
CVE-2002-0217Cross-site scripting (CSS) vulnerabilities in the Private Message System for XOOPS 1.0 RC1 allow remote attackers to exe...
CVE-2002-0230Cross-site scripting vulnerability in fom.cgi of Faq-O-Matic 2.712 allows remote attackers to execute arbitrary Javascri...
CVE-2002-0229Safe Mode feature (safe_mode) in PHP 3.0 through 4.1.0 allows attackers with access to the MySQL database to bypass Safe...

Check if your code is affected by 2002 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now