2002 CVE Vulnerabilities

2,393 CVEs published in 2002.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2002-0228Microsoft MSN Messenger allows remote attackers to use Javascript that references an ActiveX object to obtain sensitive ...
CVE-2002-0227KICQ 2.0.0b1 allows remote attackers to cause a denial of service (crash) via a malformed message.
CVE-2002-0226retrieve_password.pl in DCForum 6.x and 2000 generates predictable new passwords based on a sessionID, which allows remo...
CVE-2002-0225tac_plus Tacacs+ daemon F4.0.4.alpha, originally maintained by Cisco, creates files from the accounting directive with w...
CVE-2002-0224The MSDTC (Microsoft Distributed Transaction Service Coordinator) for Microsoft Windows 2000, Microsoft IIS 5.0 and SQL ...
CVE-2002-0223Infopop UBB.Threads 5.4 and Wired Community Software WWWThreads 5.0 through 5.0.9 allows remote attackers to upload arbi...
CVE-2002-0222Etype Eserv 2.97 allows remote attackers to redirect traffic to other sites (aka FTP bounce) via the PORT command.
CVE-2002-0221Etype Eserv 2.97 allows remote attackers to cause a denial of service (resource exhaustion) via a large number of PASV c...
CVE-2002-0220phpsmssend.php in PhpSmsSend 1.0 allows remote attackers to execute arbitrary commands via an SMS message containing she...
CVE-2002-0219Buffer overflow in (1) sastcpd in SAS/Base 8.0 and 8.1 or (2) objspawn in SAS/Integration Technologies 8.0 and 8.1 allow...
CVE-2002-0218Format string vulnerability in (1) sastcpd in SAS/Base 8.0 and 8.1 or (2) objspawn in SAS/Integration Technologies 8.0 a...
CVE-2002-0216userinfo.php in XOOPS 1.0 RC1 allows remote attackers to obtain sensitive information via a SQL injection attack in the ...
CVE-2002-0215Agora.cgi 3.2r through 4.0 while in debug mode allows remote attackers to determine the full pathname of the agora.cgi f...
CVE-2002-0214Compaq Intel PRO/Wireless 2011B LAN USB Device Driver 1.5.16.0 through 1.5.18.0 stores the 128-bit WEP (Wired Equivalent...
CVE-2002-0213xkas in Xinet K-AShare 0.011.01 for IRIX allows local users to read arbitrary files via a symlink attack on the VOLICON ...
CVE-2002-0212The login for Hosting Controller 1.1 through 1.4.1 returns different error messages when a valid or invalid user is prov...
CVE-2002-0211Race condition in the installation script for Tarantella Enterprise 3 3.01 through 3.20 creates a world-writeable tempor...
CVE-2002-0210setlicense for TOLIS Group Backup and Restore Utility (BRU) 17.0 allows local users to overwrite arbitrary files via a s...
CVE-2002-0209Nortel Alteon ACEdirector WebOS 9.0, with the Server Load Balancing (SLB) and Cookie-Based Persistence features enabled,...
CVE-2002-0208PGP Security PGPfire 7.1 for Windows alters the system's TCP/IP stack and modifies packets in ICMP error messages in a w...
CVE-2002-0207Buffer overflow in Real Networks RealPlayer 8.0 and earlier allows remote attackers to execute arbitrary code via a head...
CVE-2002-0206index.php in Francisco Burzi PHP-Nuke 5.3.1 and earlier, and possibly other versions before 5.5, allows remote attackers...
CVE-2002-0205Cross-site scripting (CSS) vulnerability in error.asp for Plumtree Corporate Portal 3.5 through 4.5 allows remote attack...
CVE-2002-0204Buffer overflow in GNU Chess (gnuchess) 5.02 and earlier, if modified or used in a networked capacity contrary to its ow...
CVE-2002-0203ttawebtop.cgi in Tarantella Enterprise 3.20 on SPARC Solaris and Linux, and 3.1x and 3.0x including 3.11.903, allows rem...

Check if your code is affected by 2002 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now