2002 CVE Vulnerabilities
2,393 CVEs published in 2002.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2002-0387 | — | — | 3.2% | Mar 18, 2003 | Buffer overflow in gxnsapi6.dll NSAPI plugin of the Connector Module for Sun ONE Application Server before 6.5 allows re... |
| CVE-2002-1337 | — | — | 72.2% | Mar 7, 2003 | Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted addre... |
| CVE-2002-0841 | — | — | — | Mar 3, 2003 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2002-0842. Reason: This candidate is a duplicate of... |
| CVE-2002-1511 | — | — | 1.8% | Mar 3, 2003 | The vncserver wrapper for vnc before 3.3.3r2-21 uses the rand() function instead of srand(), which causes vncserver to g... |
| CVE-2002-1472 | — | — | 0.4% | Mar 3, 2003 | Untrusted search path vulnerability in libX11.so in xfree86, when used in setuid or setgid programs, allows local users ... |
| CVE-2002-0842 | — | — | 14.6% | Mar 3, 2003 | Format string vulnerability in certain third party modifications to mod_dav for logging bad gateway messages (e.g. Oracl... |
| CVE-2002-1509 | — | — | 0.4% | Mar 3, 2003 | A patch for shadow-utils 20000902 causes the useradd command to create a mail spool files with read/write privileges of ... |
| CVE-2002-1510 | — | — | 2.0% | Mar 3, 2003 | xdm, with the authComplain variable set to false, allows arbitrary attackers to connect to the X server if the xdm auth ... |
| CVE-2002-1405 | — | — | 5.0% | Feb 19, 2003 | CRLF injection vulnerability in Lynx 2.8.4 and earlier allows remote attackers to inject false HTTP headers into an HTTP... |
| CVE-2002-1404 | — | — | — | Feb 19, 2003 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2002-1348. Reason: This candidate is a reservation ... |
| CVE-2002-0036 | — | — | 4.5% | Feb 19, 2003 | Integer signedness error in MIT Kerberos V5 ASN.1 decoder before krb5 1.2.5 allows remote attackers to cause a denial of... |
| CVE-2002-0669 | — | — | 1.1% | Feb 19, 2003 | The web interface for Pingtel xpressa SIP-based voice-over-IP phone 1.2.5 through 1.2.7.4 allows administrators to cause... |
| CVE-2002-1160 | — | — | 0.4% | Feb 19, 2003 | The default configuration of the pam_xauth module forwards MIT-Magic-Cookies to new X sessions, which could allow local ... |
| CVE-2002-1348 | — | — | 2.0% | Feb 19, 2003 | w3m before 0.3.2.2 does not properly escape HTML tags in the ALT attribute of an IMG tag, which could allow remote attac... |
| CVE-2002-1508 | — | — | 0.3% | Feb 19, 2003 | slapd in OpenLDAP2 (OpenLDAP 2) 2.2.0 and earlier allows local users to overwrite arbitrary files via a race condition d... |
| CVE-2002-1252 | — | — | 1.4% | Feb 7, 2003 | The Application Messaging Gateway for PeopleTools 8.1x before 8.19, as used in various PeopleSoft products, allows remot... |
| CVE-2002-1400 | — | — | 3.9% | Jan 17, 2003 | Heap-based buffer overflow in the repeat() function for PostgreSQL before 7.2.2 allows attackers to execute arbitrary co... |
| CVE-2002-1403 | — | — | 0.4% | Jan 17, 2003 | dhcpcd DHCP client daemon 1.3.22 and earlier allows local users to execute arbitrary code via shell metacharacters that ... |
| CVE-2002-1399 | — | — | 1.8% | Jan 17, 2003 | Unknown vulnerability in cash_out and possibly other functions in PostgreSQL 7.2.1 and earlier, and possibly later versi... |
| CVE-2002-1398 | — | — | 0.5% | Jan 17, 2003 | Buffer overflow in the date parser for PostgreSQL before 7.2.2 allows attackers to cause a denial of service and possibl... |
| CVE-2002-1402 | — | — | 0.5% | Jan 17, 2003 | Buffer overflows in the (1) TZ and (2) SET TIME ZONE enivronment variables for PostgreSQL 7.2.1 and earlier allow local ... |
| CVE-2002-1395 | — | — | 0.4% | Jan 17, 2003 | Internet Message (IM) 141-18 and earlier uses predictable file and directory names, which allows local users to (1) obta... |
| CVE-2002-1394 | — | — | 5.3% | Jan 17, 2003 | Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to... |
| CVE-2002-1396 | — | — | 3.6% | Jan 17, 2003 | Heap-based buffer overflow in the wordwrap function in PHP after 4.1.2 and before 4.3.0 may allow attackers to cause a d... |
| CVE-2002-1392 | — | — | 0.4% | Jan 17, 2003 | faxspool in mgetty before 1.1.29 uses a world-writable spool directory for outgoing faxes, which allows local users to m... |
Check if your code is affected by 2002 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now