2002 CVE Vulnerabilities
2,393 CVEs published in 2002.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2002-1545 | — | — | 1.3% | Mar 31, 2003 | CooolSoft Personal FTP Server 2.24 allows remote attackers to obtain the absolute pathname of the FTP root via a PWD com... |
| CVE-2002-1551 | — | — | 0.4% | Mar 31, 2003 | Buffer overflow in nslookup in IBM AIX may allow attackers to cause a denial of service or execute arbitrary code. |
| CVE-2002-1529 | — | — | 3.6% | Mar 31, 2003 | Cross-site scripting (XSS) vulnerability in msgError.asp for the administrative web interface (STEMWADM) for SurfControl... |
| CVE-2002-1530 | — | — | 5.9% | Mar 31, 2003 | The administrative web interface (STEMWADM) for SurfControl SuperScout Email Filter allows users to obtain usernames and... |
| CVE-2002-1546 | — | — | 1.8% | Mar 31, 2003 | BRS WebWeaver Web Server 1.01 allows remote attackers to bypass password protections for files and directories via an HT... |
| CVE-2002-1547 | — | — | 3.5% | Mar 31, 2003 | Netscreen running ScreenOS 4.0.0r6 and earlier allows remote attackers to cause a denial of service via a malformed SSH ... |
| CVE-2002-0387 | — | — | 3.2% | Mar 18, 2003 | Buffer overflow in gxnsapi6.dll NSAPI plugin of the Connector Module for Sun ONE Application Server before 6.5 allows re... |
| CVE-2002-1337 | — | — | 72.2% | Mar 7, 2003 | Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted addre... |
| CVE-2002-0841 | — | — | — | Mar 3, 2003 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2002-0842. Reason: This candidate is a duplicate of... |
| CVE-2002-1510 | — | — | 2.0% | Mar 3, 2003 | xdm, with the authComplain variable set to false, allows arbitrary attackers to connect to the X server if the xdm auth ... |
| CVE-2002-1509 | — | — | 0.4% | Mar 3, 2003 | A patch for shadow-utils 20000902 causes the useradd command to create a mail spool files with read/write privileges of ... |
| CVE-2002-1511 | — | — | 1.8% | Mar 3, 2003 | The vncserver wrapper for vnc before 3.3.3r2-21 uses the rand() function instead of srand(), which causes vncserver to g... |
| CVE-2002-0842 | — | — | 14.6% | Mar 3, 2003 | Format string vulnerability in certain third party modifications to mod_dav for logging bad gateway messages (e.g. Oracl... |
| CVE-2002-1472 | — | — | 0.4% | Mar 3, 2003 | Untrusted search path vulnerability in libX11.so in xfree86, when used in setuid or setgid programs, allows local users ... |
| CVE-2002-1405 | — | — | 5.0% | Feb 19, 2003 | CRLF injection vulnerability in Lynx 2.8.4 and earlier allows remote attackers to inject false HTTP headers into an HTTP... |
| CVE-2002-1348 | — | — | 2.0% | Feb 19, 2003 | w3m before 0.3.2.2 does not properly escape HTML tags in the ALT attribute of an IMG tag, which could allow remote attac... |
| CVE-2002-1160 | — | — | 0.4% | Feb 19, 2003 | The default configuration of the pam_xauth module forwards MIT-Magic-Cookies to new X sessions, which could allow local ... |
| CVE-2002-1404 | — | — | — | Feb 19, 2003 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2002-1348. Reason: This candidate is a reservation ... |
| CVE-2002-0036 | — | — | 4.5% | Feb 19, 2003 | Integer signedness error in MIT Kerberos V5 ASN.1 decoder before krb5 1.2.5 allows remote attackers to cause a denial of... |
| CVE-2002-0669 | — | — | 1.1% | Feb 19, 2003 | The web interface for Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 allows administrators to cause... |
| CVE-2002-1508 | — | — | 0.3% | Feb 19, 2003 | slapd in OpenLDAP2 (OpenLDAP 2) 2.2.0 and earlier allows local users to overwrite arbitrary files via a race condition d... |
| CVE-2002-1252 | — | — | 1.4% | Feb 7, 2003 | The Application Messaging Gateway for PeopleTools 8.1x before 8.19, as used in various PeopleSoft products, allows remot... |
| CVE-2002-1400 | — | — | 3.9% | Jan 17, 2003 | Heap-based buffer overflow in the repeat() function for PostgreSQL before 7.2.2 allows attackers to execute arbitrary co... |
| CVE-2002-1402 | — | — | 0.5% | Jan 17, 2003 | Buffer overflows in the (1) TZ and (2) SET TIME ZONE enivronment variables for PostgreSQL 7.2.1 and earlier allow local ... |
| CVE-2002-1399 | — | — | 1.8% | Jan 17, 2003 | Unknown vulnerability in cash_out and possibly other functions in PostgreSQL 7.2.1 and earlier, and possibly later versi... |
Check if your code is affected by 2002 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now