2002 CVE Vulnerabilities
2,393 CVEs published in 2002.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2002-0025 | — | — | 14.2% | Mar 8, 2002 | Internet Explorer 5.01, 5.5 and 6.0 does not properly handle the Content-Type HTML header field, which allows remote att... |
| CVE-2002-0026 | — | — | 13.3% | Mar 8, 2002 | Internet Explorer 5.5 and 6.0 allows remote attackers to bypass restrictions for executing scripts via an object that pr... |
| CVE-2002-1619 | — | — | 2.2% | Mar 8, 2002 | Buffer overflow in the FC client for IBM AIX 4.3.x allows remote attackers to cause a denial of service (crash and core ... |
| CVE-2002-0004 | — | — | 1.3% | Feb 27, 2002 | Heap corruption vulnerability in the "at" program allows local users to execute arbitrary code via a malformed execution... |
| CVE-2002-0003 | — | — | 1.8% | Feb 27, 2002 | Buffer overflow in the preprocessor in groff 1.16 and earlier allows remote attackers to gain privileges via lpd in the ... |
| CVE-2002-0048 | — | — | 34.0% | Feb 27, 2002 | Multiple signedness errors (mixed signed and unsigned numbers) in the I/O functions of rsync 2.4.6, 2.3.2, and other ver... |
| CVE-2002-0028 | — | — | 5.3% | Feb 27, 2002 | Buffer overflow in ICQ before 2001B Beta v5.18 Build #3659 allows remote attackers to execute arbitrary code via a Voice... |
| CVE-2002-0001 | — | — | 3.4% | Feb 27, 2002 | Vulnerability in RFC822 address parser in mutt before 1.2.5.1 and mutt 1.3.x before 1.3.25 allows remote attackers to ex... |
| CVE-2002-1637 | — | — | 0.6% | Feb 26, 2002 | Multiple components in Oracle 9i Application Server (9iAS) are installed with over 160 default usernames and passwords, ... |
| CVE-2002-1603 | — | — | 13.7% | Feb 13, 2002 | GoAhead Web Server 2.1.7 and earlier allows remote attackers to obtain the source code of ASP files via a URL terminated... |
| CVE-2002-0012 | — | — | 23.9% | Feb 13, 2002 | Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause a denial of service or gain pr... |
| CVE-2002-0013 | — | — | 50.8% | Feb 13, 2002 | Vulnerabilities in the SNMPv1 request handling of a large number of SNMP implementations allow remote attackers to cause... |
| CVE-2002-1601 | — | — | 2.1% | Feb 9, 2002 | The Connectables feature in Adobe PhotoDeluxe 3.1 prepends the Adobe directory to the CLASSPATH environment variable, wh... |
| CVE-2002-0010 | — | — | 2.3% | Jan 31, 2002 | Bugzilla before 2.14.1 allows remote attackers to inject arbitrary SQL code and create files or gain privileges via (1) ... |
| CVE-2002-0046 | — | — | 2.7% | Jan 31, 2002 | Linux kernel, and possibly other operating systems, allows remote attackers to read portions of memory via a series of f... |
| CVE-2002-0047 | — | — | 1.7% | Jan 31, 2002 | CIPE VPN package before 1.3.0-3 allows remote attackers to cause a denial of service (crash) via a short malformed packe... |
| CVE-2002-0044 | — | — | 0.4% | Jan 31, 2002 | GNU Enscript 1.6.1 and earlier allows local users to overwrite arbitrary files of the Enscript user via a symlink attack... |
| CVE-2002-0038 | — | — | 1.6% | Jan 31, 2002 | Vulnerability in the cache-limiting function of the unified name service daemon (nsd) in IRIX 6.5.4 through 6.5.11 allow... |
| CVE-2002-0002 | — | — | 5.3% | Jan 31, 2002 | Format string vulnerability in stunnel before 3.22 when used in client mode for (1) smtp, (2) pop, or (3) nntp allows re... |
| CVE-2002-0005 | — | — | 15.5% | Jan 31, 2002 | Buffer overflow in AOL Instant Messenger (AIM) 4.7.2480, 4.8.2616, and other versions allows remote attackers to execute... |
| CVE-2002-0007 | — | — | 2.4% | Jan 31, 2002 | CGI.pl in Bugzilla before 2.14.1, when using LDAP, allows remote attackers to obtain an anonymous bind to the LDAP serve... |
| CVE-2002-0008 | — | — | 1.9% | Jan 31, 2002 | Bugzilla before 2.14.1 allows remote attackers to (1) spoof a user comment via an HTTP request to process_bug.cgi using ... |
| CVE-2002-0009 | — | — | 1.2% | Jan 31, 2002 | show_bug.cgi in Bugzilla before 2.14.1 allows a user with "Bugs Access" privileges to see other products that are not ac... |
| CVE-2002-0043 | — | — | 0.9% | Jan 31, 2002 | sudo 1.6.0 through 1.6.3p7 does not properly clear the environment before calling the mail program, which could allow lo... |
| CVE-2002-0011 | — | — | 1.4% | Jan 31, 2002 | Information leak in doeditvotes.cgi in Bugzilla before 2.14.1 may allow remote attackers to more easily conduct attacks ... |
Check if your code is affected by 2002 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now