2002 CVE Vulnerabilities
2,393 CVEs published in 2002.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2002-0240 | — | — | 7.8% | May 29, 2002 | PHP, when installed with Apache and configured to search for index.php as a default web page, allows remote attackers to... |
| CVE-2002-0241 | — | — | 1.6% | May 29, 2002 | NDSAuth.DLL in Cisco Secure Authentication Control Server (ACS) 3.0.1 does not check the Expired or Disabled state of us... |
| CVE-2002-0242 | — | — | 11.4% | May 29, 2002 | Cross-site scripting vulnerability in Internet Explorer 6 earlier allows remote attackers to execute arbitrary script vi... |
| CVE-2002-0243 | — | — | 1.4% | May 29, 2002 | Cross-site scripting vulnerability in Opera 6.0 and earlier allows remote attackers to execute arbitrary script via an E... |
| CVE-2002-0244 | — | — | 2.9% | May 29, 2002 | Directory traversal vulnerability in chroot function in AtheOS 0.3.7 allows attackers to escape the jail via a .. (dot d... |
| CVE-2002-0245 | — | — | 2.5% | May 29, 2002 | Lotus Domino server 5.0.8 with NoBanner enabled allows remote attackers to (1) determine the physical path of the server... |
| CVE-2002-0246 | — | — | 1.0% | May 29, 2002 | Format string vulnerability in the message catalog library functions in UnixWare 7.1.1 allows local users to gain privil... |
| CVE-2002-0247 | — | — | 0.5% | May 29, 2002 | Buffer overflows in wmtv 0.6.5 and earlier may allow local users to gain privileges. |
| CVE-2002-0248 | — | — | 0.3% | May 29, 2002 | wmtv 0.6.5 and earlier allows local users to modify arbitrary files via a symlink attack on a configuration file. |
| CVE-2002-0249 | — | — | 7.6% | May 29, 2002 | PHP for Windows, when installed on Apache 2.0.28 beta as a standalone CGI module, allows remote attackers to obtain the ... |
| CVE-2002-0250 | — | — | 4.0% | May 29, 2002 | Web configuration utility in HP AdvanceStack hubs J3200A through J3210A with firmware version A.03.07 and earlier, allow... |
| CVE-2002-0251 | — | — | 3.5% | May 29, 2002 | Buffer overflow in licq 1.0.4 and earlier allows remote attackers to cause a denial of service (crash) and possibly exec... |
| CVE-2002-0252 | — | — | 10.5% | May 29, 2002 | Buffer overflow in Apple QuickTime Player 5.01 and 5.02 allows remote web servers to execute arbitrary code via a respon... |
| CVE-2002-0253 | — | — | 5.2% | May 29, 2002 | PHP, when not configured with the "display_errors = Off" setting in php.ini, allows remote attackers to obtain the physi... |
| CVE-2002-0254 | — | — | 1.3% | May 29, 2002 | ICQ 2001b Build 3659 allows remote attackers to cause a denial of service (crash) via a malformed picture that contains ... |
| CVE-2002-0255 | — | — | 2.8% | May 29, 2002 | The default configuration of Arescom NetDSL 800 does not require authentication, which allows remote attackers to cause ... |
| CVE-2002-0174 | — | — | 0.3% | May 29, 2002 | nsd on SGI IRIX before 6.5.11 allows local users to overwrite arbitrary files and gain root privileges via a symlink att... |
| CVE-2002-0169 | — | — | 0.4% | May 29, 2002 | The default stylesheet for DocBook on Red Hat Linux 6.2 through 7.2 is installed with an insecure option enabled, which ... |
| CVE-2002-0155 | — | — | 24.1% | May 29, 2002 | Buffer overflow in Microsoft MSN Chat ActiveX Control, as used in MSN Messenger 4.5 and 4.6, and Exchange Instant Messen... |
| CVE-2002-0193 | — | — | 33.3% | May 29, 2002 | Microsoft Internet Explorer 5.01 and 6.0 allow remote attackers to execute arbitrary code via malformed Content-Disposit... |
| CVE-2002-0191 | — | — | 29.7% | May 29, 2002 | Microsoft Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to view arbitrary files that contain the "{" chara... |
| CVE-2002-0377 | — | — | 0.4% | May 29, 2002 | Gaim 0.57 stores sensitive information in world-readable and group-writable files in the /tmp directory, which allows lo... |
| CVE-2002-0375 | — | — | 6.4% | May 29, 2002 | Cross-site scripting vulnerability in sgdynamo.exe for Sgdynamo allows remote attackers to execute arbitrary Javascript ... |
| CVE-2002-0374 | — | — | 3.8% | May 29, 2002 | Format string vulnerability in the logging function for the pam_ldap PAM LDAP module before version 144 allows attackers... |
| CVE-2002-0363 | — | — | 2.1% | May 29, 2002 | ghostscript before 6.53 allows attackers to execute arbitrary commands by using .locksafe or .setsafe to reset the curre... |
Check if your code is affected by 2002 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now