Search Results (29815 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2002-2082 1 Floosietek 2 Ftgateoffice, Ftgatepro 2025-04-03 N/A
FTGate and FTGate Pro 1.05 lock user mailboxes before authentication succeeds, which allows remote attackers to lock the mailboxes of other users.
CVE-2002-2089 1 Sun 1 Solaris 2025-04-03 N/A
Buffer overflow in rcp in Solaris 9.0 allows local users to execute arbitrary code via a long command line argument.
CVE-2002-2090 1 Caucho Technology 1 Resin 2025-04-03 N/A
Caucho Technology Resin server 2.1.1 to 2.1.2 allows remote attackers to obtain server's root path via requests for MS-DOS device names such as lpt9.xtp.
CVE-2002-2091 1 Decfingerd 1 Decfingerd 2025-04-03 N/A
Format string vulnerability in Deception Finger Daemon, decfingerd, 0.7 may allow remote attackers to execute arbitrary code via the username of a finger request.
CVE-2002-2097 1 Maradns 1 Maradns 2025-04-03 N/A
The compression code in MaraDNS before 0.9.01 allows remote attackers to cause a denial of service via crafted DNS packets.
CVE-2002-2099 1 Gnu 1 Data Display Debugger 2025-04-03 N/A
Buffer overflow in the GNU DataDisplay Debugger (DDD) 3.3.1 allows local users to execute arbitrary code and possibly gain privileges via a long HOME environment variable. NOTE: since DDD is not installed setuid or setgid, perhaps this issue should not be included in CVE.
CVE-2002-2100 1 Microsoft 1 Outlook 2025-04-03 N/A
Microsoft Outlook 2002 allows remote attackers to embed bypass the file download restrictions for attachments via an HTML email message that uses an IFRAME to reference malicious content.
CVE-2002-2105 1 Microsoft 1 Windows Xp 2025-04-03 N/A
Microsoft Windows XP allows local users to prevent the system from booting via a corrupt explorer.exe.manifest file.
CVE-2002-2106 1 Wikkitikkitavi 1 Wikkitikkitavi 2025-04-03 N/A
PHP remote file inclusion vulnerability in WikkiTikkiTavi before 0.21 allows remote attackers to execute arbitrary PHP code via the TemplateDir variable, as demonstrated using conflict.php.
CVE-2002-2111 1 Gianni Tedesco 1 Fwmon 2025-04-03 N/A
Fwmon before 1.0.10 allows remote attackers to cause a denial of service (crash) by causing the kernel to return a large packet.
CVE-2002-2116 1 Netgear 2 Rm356, Rt338 2025-04-03 N/A
Netgear RM-356 and RT-338 series SOHO routers allow remote attackers to cause a denial of service (crash) via a UDP port scan, as demonstrated using nmap.
CVE-2002-2120 1 Qnx 1 Rtos 2025-04-03 N/A
Multiple buffer overflows in QNX RTOS 4.25 may allow attackers to execute arbitrary code via long filename arguments to (1) Watcom or (2) int10.
CVE-2002-2129 1 W-agora 1 W-agora 2025-04-03 N/A
Cross-site scripting vulnerability (XSS) in editform.php for w-Agora 4.1.5 allows remote attackers to execute arbitrary web script via an arbitrary form field name containing the script, which is echoed back to the user when displaying the form.
CVE-2002-2146 1 Savant 1 Savant Webserver 2025-04-03 N/A
cgitest.exe in Savant Web Server 3.1 and earlier allows remote attackers to cause a denial of service (crash) via a long HTTP request.
CVE-2002-2156 1 Cerulean Studios 1 Trillian 2025-04-03 N/A
Buffer overflow in Trillian 0.73 allows remote IRC servers to execute arbitrary code via a long PING response.
CVE-2005-2394 1 Cutephp 1 Cutenews 2025-04-03 N/A
show_news.php in CuteNews 1.3.6 allows remote attackers to obtain the full path of the server via an invalid archive parameter.
CVE-2003-0337 1 Platform 1 Lsadmin 2025-04-03 N/A
The ckconfig command in lsadmin for Load Sharing Facility (LSF) 5.1 allows local users to execute arbitrary programs by modifying the LSF_ENVDIR environment variable to reference an alternate lsf.conf file, then modifying LSF_SERVERDIR to point to a malicious lim program, which lsadmin then executes.
CVE-2003-0339 1 Wsmp3 2 Wsmp3 Daemon, Wsmp3 Web Server 2025-04-03 N/A
Multiple heap-based buffer overflows in WsMp3 daemon (WsMp3d) 0.0.10 and earlier allow remote attackers to execute arbitrary code via long HTTP requests.
CVE-2003-0341 1 Owl 1 Owl Intranet Engine 2025-04-03 N/A
Cross-site scripting (XSS) vulnerability in Owl Intranet Engine 0.71 and earlier allows remote attackers to insert arbitrary script via the Search field.
CVE-2005-2419 1 Eci Telecom 1 B-focus Router 2025-04-03 N/A
B-FOCuS Router 312+ allows remote attackers to bypass authentication and gain unauthorized access via a direct request to firmwarecfg.