Total
210374 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2002-1927 | 1 Aquonics Scripting | 1 Aquonics File Manager | 2017-07-10 | 2.1 LOW | N/A |
| Aquonics File Manager 1.5 allows users with edit privileges to modify user accounts by editing the userlist.cgi file. | |||||
| CVE-2002-1983 | 1 Qnx | 1 Rtos | 2017-07-10 | 2.1 LOW | N/A |
| The timer implementation in QNX RTOS 6.1.0 allows local users to cause a denial of service (hang) and possibly execute arbitrary code by creating multiple timers with a 1-ms tick. | |||||
| CVE-2002-1997 | 1 Zonelabs | 1 Zonealarm | 2017-07-10 | 7.5 HIGH | N/A |
| ZoneAlarm Pro 3.0 MailSafe allows remote attackers to bypass filtering and possibly execute arbitrary code via email attachments containing a trailing dot after the file extension. | |||||
| CVE-2002-2045 | 1 Xqus | 1 X-stat | 2017-07-10 | 6.4 MEDIUM | N/A |
| x_stat_admin.php in x-stat 2.3 and earlier allows remote attackers to (1) execute PHP commands such as phpinfo or (2) obtain the full path of the web server via an invalid action parameter, which leaks the pathname in an error message. | |||||
| CVE-2002-2086 | 1 Squirrelmail | 1 Squirrelmail | 2017-07-10 | 4.3 MEDIUM | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in magicHTML of SquirrelMail before 1.2.6 allow remote attackers to inject arbitrary web script or HTML via (1) "<<script" in unspecified input fields or (2) a javascript: URL in the src attribute of an IMG tag. | |||||
| CVE-2002-2111 | 1 Gianni Tedesco | 1 Fwmon | 2017-07-10 | 5.0 MEDIUM | N/A |
| Fwmon before 1.0.10 allows remote attackers to cause a denial of service (crash) by causing the kernel to return a large packet. | |||||
| CVE-2002-2114 | 1 Netjuke | 1 Netjuke | 2017-07-10 | 7.5 HIGH | N/A |
| Artekopia Netjuke before 1.0 b7 allows remote attackers to execute arbitrary code on the web server, possibly via the section parameter, which is passed to an eval call. | |||||
| CVE-2002-2123 | 1 Gallery Project | 1 Gallery | 2017-07-10 | 7.5 HIGH | N/A |
| PHP remote file inclusion vulnerability in publish_xp_docs.php for Gallery 1.3.2 allows remote attackers to inject arbitrary PHP code by specifying a URL to an init.php file in the GALLERY_BASEDIR parameter. | |||||
| CVE-2002-2124 | 1 Nylon | 1 Nylon | 2017-07-10 | 5.0 MEDIUM | N/A |
| The recvn and sendn functions in nylon 0.2 do not check when the recv function call returns 0, which allows remote attackers to cause a denial of service (infinite loop and CPU consumption) by closing the connection while recv is executing. | |||||
| CVE-2002-2127 | 1 Pedestal Software | 1 Integrity Protection Driver | 2017-07-10 | 2.1 LOW | N/A |
| Integrity Protection Driver (IPD) 1.2 and earlier blocks access to \Device\PhysicalMemory by its name, which could allow local privileged processes to overwrite kernel memory by accessing the device through a symlink. | |||||
| CVE-2002-2129 | 1 W-agora | 1 W-agora | 2017-07-10 | 4.3 MEDIUM | N/A |
| Cross-site scripting vulnerability (XSS) in editform.php for w-Agora 4.1.5 allows remote attackers to execute arbitrary web script via an arbitrary form field name containing the script, which is echoed back to the user when displaying the form. | |||||
| CVE-2002-2153 | 1 Oracle | 1 Application Server | 2017-07-10 | 7.5 HIGH | N/A |
| Format string vulnerability in the administrative pages of the PL/SQL module for Oracle Application Server 4.0.8 and 4.0.8 2 allows remote attackers to execute arbitrary code. | |||||
| CVE-2003-0014 | 1 Bmv | 1 Bmv | 2017-07-10 | 4.6 MEDIUM | N/A |
| gsinterf.c in bmv 1.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files. | |||||
| CVE-2003-0026 | 1 Isc | 1 Dhcpd | 2017-07-10 | 7.5 HIGH | N/A |
| Multiple stack-based buffer overflows in the error handling routines of the minires library, as used in the NSUPDATE capability for ISC DHCPD 3.0 through 3.0.1RC10, allow remote attackers to execute arbitrary code via a DHCP message containing a long hostname. | |||||
| CVE-2003-0037 | 1 Noffle | 1 Noffle | 2017-07-10 | 7.5 HIGH | N/A |
| Buffer overflows in noffle news server 1.0.1 and earlier allow remote attackers to cause a denial of service (segmentation fault) and possibly execute arbitrary code. | |||||
| CVE-2003-0038 | 1 Gnu | 1 Mailman | 2017-07-10 | 4.3 MEDIUM | N/A |
| Cross-site scripting (XSS) vulnerability in options.py for Mailman 2.1 allows remote attackers to inject script or HTML into web pages via the (1) email or (2) language parameters. | |||||
| CVE-2003-0042 | 1 Apache | 1 Tomcat | 2017-07-10 | 5.0 MEDIUM | N/A |
| Jakarta Tomcat before 3.3.1a, when used with JDK 1.3.1 or earlier, allows remote attackers to list directories even with an index.html or other file present, or obtain unprocessed source code for a JSP file, via a URL containing a null character. | |||||
| CVE-2003-0044 | 1 Apache | 1 Tomcat | 2017-07-10 | 6.8 MEDIUM | N/A |
| Multiple cross-site scripting (XSS) vulnerabilities in the (1) examples and (2) ROOT web applications for Jakarta Tomcat 3.x through 3.3.1a allow remote attackers to insert arbitrary web script or HTML. | |||||
| CVE-2003-0057 | 1 Hypermail | 1 Hypermail | 2017-07-10 | 7.5 HIGH | N/A |
| Multiple buffer overflows in Hypermail 2 before 2.1.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code (1) via a long attachment filename that is not properly handled by the hypermail executable, or (2) by connecting to the mail CGI program from an IP address that reverse-resolves to a long hostname. | |||||
| CVE-2003-0080 | 1 Gnome | 1 Gnome-lokkit | 2017-07-10 | 7.5 HIGH | N/A |
| The iptables ruleset in Gnome-lokkit in Red Hat Linux 8.0 does not include any rules in the FORWARD chain, which could allow attackers to bypass intended access restrictions if packet forwarding is enabled. | |||||