Latest CVE Feed
-
5.0
MEDIUMCVE-2002-2012
Unknown vulnerability in Apache 1.3.19 running on HP Secure OS for Linux 1.0 allows remote attackers to cause "unexpected results" via an HTTP request.... Read more
Affected Products : http_server- EPSS Score: %8.55
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2002-2020
Netgear RP114 Cable/DSL Web Safe Router Firmware 3.26 uses a default administrator password and accepts admin logins on the external interface, which allows remote attackers to gain privileges if the password is not changed.... Read more
Affected Products : rp114- EPSS Score: %1.22
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
7.2
HIGHCVE-2002-2022
Format string vulnerability in Kaffe OpenVM 1.0.6 and earlier allows local users to execute arbitrary code, when a java.lang.NoClassDefFoundError is thrown, via format specifiers in the forName attribute.... Read more
Affected Products : kaffe_openvm- EPSS Score: %0.21
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2002-2023
The get_parameter_from_freqency_source function in beep2 1.0, 1.1 and 1.2, when installed setuid root, allows local users to read arbitrary files via unknown attack vectors.... Read more
Affected Products : shingo_beep2- EPSS Score: %0.06
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2002-2027
Database of Our Owlish Wisdom (DOOW) 0.1 through 0.2.1 does not properly verify user permissions, which allows remote attackers to perform unauthorized activities.... Read more
Affected Products : doow- EPSS Score: %0.48
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2002-2036
Sun Ray Server Software (SRSS) 1.3, when Non-Smartcard Mobility (NSCM) is enabled, allows remote attackers to login as another user by running dtlogin from a system that supports the XDMCP client.... Read more
Affected Products : ray_server_software- EPSS Score: %1.51
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
7.2
HIGHCVE-2002-2042
ptrace in the QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows programs to attach to privileged processes, which could allow local users to execute arbitrary code by modifying running processes.... Read more
Affected Products : rtos- EPSS Score: %0.42
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2002-2144
Directory traversal vulnerability in BearShare 4.0.5 and 4.0.6 allows remote attackers to read files outside of the web root by hex-encoding the "/" (forward slash) or "." (dot) characters.... Read more
Affected Products : bearshare- EPSS Score: %0.21
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2002-2035
SQL injection vulnerability in RealityScape MyLogin 2000 1.0.0 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) Username or (2) Password in the login form.... Read more
Affected Products : mylogin_2000- EPSS Score: %1.10
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2002-1747
Vtun 2.5b1 does not authenticate forwarded packets, which allows remote attackers to inject data into user sessions without detection, and possibly control the data contents via cut-and-paste attacks on ECB.... Read more
Affected Products : vtun- EPSS Score: %0.34
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2002-2349
phpinfo.php in phpBBmod 1.3.3 executes the phpinfo function, which allows remote attackers to obtain sensitive environment information.... Read more
Affected Products : phpbbmod- EPSS Score: %1.09
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
2.1
LOWCVE-2002-2412
Winamp 2.80 stores authentication credentials in plaintext in the (1) [HTTP-AUTH] and (2) [winamp] sections in winamp.ini, which allows local users to gain access to other accounts.... Read more
Affected Products : winamp- EPSS Score: %0.13
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
7.8
HIGHCVE-2002-2354
Netgear FM114P firmware 1.3 wireless firewall allows remote attackers to cause a denial of service (crash or hang) via a large number of TCP connection requests.... Read more
Affected Products : fm114p- EPSS Score: %0.98
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2002-2013
Mozilla 0.9.6 and earlier and Netscape 6.2 and earlier allows remote attackers to steal cookies from another domain via a link with a hex-encoded null character (%00) followed by the target domain.... Read more
- EPSS Score: %0.48
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2002-2014
Lotus Domino 5.0.8 web server returns different error messages when a valid or invalid user is provided in HTTP requests, which allows remote attackers to determine valid user names and makes it easier to conduct brute force attacks.... Read more
Affected Products : lotus_domino- EPSS Score: %0.46
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
4.3
MEDIUMCVE-2002-2021
Cross-site scripting (XSS) vulnerability in WoltLab Burning Board (wbboard) 1.1.1 allows remote attackers to inject arbitrary web script or HTML via the message parameter.... Read more
Affected Products : burning_board- EPSS Score: %0.40
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2002-2069
PGP 6.x and 7.x does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.... Read more
Affected Products : personal_privacy- EPSS Score: %0.70
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2002-2323
Sun PC NetLink 1.0 through 1.2 does not properly set the access control list (ACL) for files and directories that use symbolic links and have been restored from backup, which could allow local or remote attackers to bypass intended access restrictions.... Read more
Affected Products : solaris_pc_netlink- EPSS Score: %0.11
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
7.5
HIGHCVE-2002-2168
SQL injection vulnerability in Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to execute arbitrary SQL queries via various programs including function_describe_item1.inc.php.... Read more
Affected Products : 123tkshop- EPSS Score: %1.04
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025
-
5.0
MEDIUMCVE-2002-2003
ypbind in Compaq Tru64 4.0F, 4.0G, 5.0A, 5.1 and 5.1A allows remote attackers to cause the process to core dump via certain network packets generated by nmap.... Read more
Affected Products : tru64- EPSS Score: %0.35
- Published: Dec. 31, 2002
- Modified: Apr. 03, 2025