2002 CVE Vulnerabilities

2,393 CVEs published in 2002.

CVE IDSeverityCVSSDescription
CVE-2002-0113EMC NetWorker (formerly Legato NetWorker) before 7.0 stores log files in the /nsr/logs/ directory with world-readable pe...
CVE-2002-0112Etype Eserv 2.97 allows remote attackers to view password protected files via /./ in the URL.
CVE-2002-0111Directory traversal vulnerability in Funsoft Dino's Webserver 1.2 and earlier allows remote attackers to read files or e...
CVE-2002-0110Nevrona Designs MiraMail 1.04 and earlier stores authentication information such as POP usernames and passwords in plain...
CVE-2002-0109Linksys EtherFast BEFN2PS4, BEFSR41, and BEFSR81 Routers, and possibly other products, allow remote attackers to gain se...
CVE-2002-0108Allaire Forums 2.0.4 and 2.0.5 and Forums! 3.0 and 3.1 allows remote authenticated users to spoof messages as other user...
CVE-2002-0107Web administration interface in CacheFlow CacheOS 4.0.13 and earlier allows remote attackers to obtain sensitive informa...
CVE-2002-0106BEA Systems Weblogic Server 6.1 allows remote attackers to cause a denial of service via a series of requests to .JSP fi...
CVE-2002-0105CDE dtlogin in Caldera UnixWare 7.1.0, and possibly other operating systems, allows local users to gain privileges via a...
CVE-2002-0104AFTPD 5.4.4 allows remote attackers to gain sensitive information via a CD (CWD) ~ (tilde) command, which causes a core ...
CVE-2002-0103An installer program for Oracle9iAS Web Cache 2.0.0.x creates executable and configuration files with insecure permissio...
CVE-2002-0117Cross-site scripting vulnerability in Yet Another Bulletin Board (YaBB) 1 Gold SP 1 and earlier allows remote attackers ...
CVE-2002-0145chuid 1.2 and earlier does not properly verify the ownership of files that will be changed, which allows remote attacker...
CVE-2002-0144Directory traversal vulnerability in chuid 1.2 and earlier allows remote attackers to change the ownership of files outs...
CVE-2002-0143Buffer overflow in Eterm of Enlightenment Imlib2 1.0.4 and earlier allows local users to execute arbitrary code via a lo...
CVE-2002-0142CGI handler in John Roy Pi3Web for Windows 2.0 beta 1 and 2 allows remote attackers to cause a denial of service (crash)...
CVE-2002-0141Maelstrom GPL 3.0.1 allows local users to overwrite arbitrary files of other Maelstrom users via a symlink attack on the...
CVE-2002-0094config_converters.py in BSCW (Basic Support for Cooperative Work) 3.x and versions before 4.06 allows remote attackers t...
CVE-2002-0095The default configuration of BSCW (Basic Support for Cooperative Work) 3.x and possibly version 4 enables user self regi...
CVE-2002-0096The installation of Geeklog 1.3 creates an extra group_assignments record which is not properly deleted, which causes th...
CVE-2002-0097Geeklog 1.3 allows remote attackers to hijack user accounts, including the administrator account, by modifying the UID o...
CVE-2002-0061Apache for Win32 before 1.3.24, and 2.0.x before 2.0.34-beta, allows remote attackers to execute arbitrary commands via ...
CVE-2002-0076Java Runtime Environment (JRE) Bytecode Verifier allows remote attackers to escape the Java sandbox and execute commands...
CVE-2002-0085cachefsd in Solaris 2.6, 7, and 8 allows remote attackers to cause a denial of service (crash) via an invalid procedure ...
CVE-2002-0083CRITICAL9.8Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain...

Check if your code is affected by 2002 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now