Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 4.6

    MEDIUM
    CVE-2002-0164

    Vulnerability in the MIT-SHM extension of the X server on Linux (XFree86) 4.2.1 and earlier allows local users to read and write arbitrary shared memory, possibly to cause a denial of service or gain privileges.... Read more

    • EPSS Score: %0.08
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2002-0080

    rsync, when running in daemon mode, does not properly call setgroups before dropping privileges, which could provide supplemental group privileges to local users, who could then read certain files that would otherwise be disallowed.... Read more

    Affected Products : rsync linux
    • EPSS Score: %0.79
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 9.8

    CRITICAL
    CVE-2002-0059

    The decompression algorithm in zlib 1.1.3 and earlier, as used in many different utilities and packages, causes inflateEnd to release certain memory more than once (a "double free"), which may allow local and remote attackers to execute arbitrary code via... Read more

    Affected Products : zlib
    • EPSS Score: %33.67
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0091

    Multiple CGI scripts in CIDER SHADOW 1.5 and 1.6 allows remote attackers to execute arbitrary commands via certain form fields.... Read more

    Affected Products : cider_shadow
    • EPSS Score: %1.01
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0089

    Buffer overflow in admintool in Solaris 2.5 through 8 allows local users to gain root privileges via long arguments to (1) the -d command line option, or (2) the PRODVERS argument in the .cdtoc file.... Read more

    Affected Products : solaris sunos
    • EPSS Score: %0.08
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 2.1

    LOW
    CVE-2002-0087

    bindsock in Lotus Domino 5.07 on Solaris allows local users to create arbitrary files via a symlink attack on temporary files.... Read more

    Affected Products : lotus_domino domino
    • EPSS Score: %0.12
    • Published: Mar. 15, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-1619

    Buffer overflow in the FC client for IBM AIX 4.3.x allows remote attackers to cause a denial of service (crash and core dump).... Read more

    Affected Products : aix
    • EPSS Score: %1.41
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0021

    Network Product Identification (PID) Checker in Microsoft Office v. X for Mac allows remote attackers to cause a denial of service (crash) via a malformed product announcement.... Read more

    Affected Products : office
    • EPSS Score: %19.07
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0022

    Buffer overflow in the implementation of an HTML directive in mshtml.dll in Internet Explorer 5.5 and 6.0 allows remote attackers to execute arbitrary code via a web page that specifies embedded ActiveX controls in a way that causes 2 Unicode strings to b... Read more

    Affected Products : internet_explorer
    • EPSS Score: %35.25
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0023

    Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to read arbitrary files via malformed requests to the GetObject function, which bypass some of GetObject's security checks.... Read more

    Affected Products : internet_explorer
    • EPSS Score: %30.84
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0025

    Internet Explorer 5.01, 5.5 and 6.0 does not properly handle the Content-Type HTML header field, which allows remote attackers to modify which application is used to process a document.... Read more

    Affected Products : internet_explorer
    • EPSS Score: %15.34
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0027

    Internet Explorer 5.5 and 6.0 allows remote attackers to read certain files and spoof the URL in the address bar by using the Document.open function to pass information between two frames from different domains, a new variant of the "Frame Domain Verifica... Read more

    Affected Products : internet_explorer
    • EPSS Score: %11.70
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0056

    Buffer overflow in SQL Server 7.0 and 2000 allows remote attackers to execute arbitrary code via a long OLE DB provider name to (1) OpenDataSource or (2) OpenRowset in an ad hoc connection.... Read more

    Affected Products : sql_server sql_server
    • EPSS Score: %26.44
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0053

    Buffer overflow in SNMP agent service in Windows 95/98/98SE, Windows NT 4.0, Windows 2000, and Windows XP allows remote attackers to cause a denial of service or execute arbitrary code via a malformed management request. NOTE: this candidate may be split... Read more

    • EPSS Score: %33.40
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0068

    Squid 2.4 STABLE3 and earlier allows remote attackers to cause a denial of service (core dump) and possibly execute arbitrary code with an ftp:// URL with a larger number of special characters, which exceed the buffer when Squid URL-escapes the characters... Read more

    Affected Products : squid linux squid
    • EPSS Score: %5.56
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0063

    Buffer overflow in ippRead function of CUPS before 1.1.14 may allow attackers to execute arbitrary code via long attribute names or language values.... Read more

    Affected Products : cups
    • EPSS Score: %1.94
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2002-0018

    In Microsoft Windows NT and Windows 2000, a trusting domain that receives authorization information from a trusted domain does not verify that the trusted domain is authoritative for all listed SIDs, which allows remote attackers to gain Domain Administra... Read more

    Affected Products : windows_2000 windows_nt
    • EPSS Score: %36.04
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0054

    SMTP service in (1) Microsoft Windows 2000 and (2) Internet Mail Connector (IMC) in Exchange Server 5.5 does not properly handle responses to NTLM authentication, which allows remote attackers to perform mail relaying via an SMTP AUTH command using null s... Read more

    Affected Products : exchange_server windows_2000
    • EPSS Score: %8.24
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0081

    Buffer overflows in (1) php_mime_split in PHP 4.1.0, 4.1.1, and 4.0.6 and earlier, and (2) php3_mime_split in PHP 3.0.x allows remote attackers to execute arbitrary code via a multipart/form-data HTTP POST request when file_uploads is enabled.... Read more

    Affected Products : php
    • EPSS Score: %44.25
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0055

    SMTP service in Microsoft Windows 2000, Windows XP Professional, and Exchange 2000 allows remote attackers to cause a denial of service via a command with a malformed data transfer (BDAT) request.... Read more

    • EPSS Score: %33.31
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025
Showing 20 of 291401 Results