Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.5

    HIGH
    CVE-2002-0056

    Buffer overflow in SQL Server 7.0 and 2000 allows remote attackers to execute arbitrary code via a long OLE DB provider name to (1) OpenDataSource or (2) OpenRowset in an ad hoc connection.... Read more

    Affected Products : sql_server sql_server
    • EPSS Score: %26.44
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0025

    Internet Explorer 5.01, 5.5 and 6.0 does not properly handle the Content-Type HTML header field, which allows remote attackers to modify which application is used to process a document.... Read more

    Affected Products : internet_explorer
    • EPSS Score: %15.34
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0027

    Internet Explorer 5.5 and 6.0 allows remote attackers to read certain files and spoof the URL in the address bar by using the Document.open function to pass information between two frames from different domains, a new variant of the "Frame Domain Verifica... Read more

    Affected Products : internet_explorer
    • EPSS Score: %11.70
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2002-0057

    XMLHTTP control in Microsoft XML Core Services 2.6 and later does not properly handle IE Security Zone settings, which allows remote attackers to read arbitrary files by specifying a local file as an XML Data Source.... Read more

    • EPSS Score: %41.76
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0053

    Buffer overflow in SNMP agent service in Windows 95/98/98SE, Windows NT 4.0, Windows 2000, and Windows XP allows remote attackers to cause a denial of service or execute arbitrary code via a malformed management request. NOTE: this candidate may be split... Read more

    • EPSS Score: %33.40
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0063

    Buffer overflow in ippRead function of CUPS before 1.1.14 may allow attackers to execute arbitrary code via long attribute names or language values.... Read more

    Affected Products : cups
    • EPSS Score: %1.94
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0068

    Squid 2.4 STABLE3 and earlier allows remote attackers to cause a denial of service (core dump) and possibly execute arbitrary code with an ftp:// URL with a larger number of special characters, which exceed the buffer when Squid URL-escapes the characters... Read more

    Affected Products : squid linux squid
    • EPSS Score: %5.56
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0054

    SMTP service in (1) Microsoft Windows 2000 and (2) Internet Mail Connector (IMC) in Exchange Server 5.5 does not properly handle responses to NTLM authentication, which allows remote attackers to perform mail relaying via an SMTP AUTH command using null s... Read more

    Affected Products : exchange_server windows_2000
    • EPSS Score: %8.24
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2002-0018

    In Microsoft Windows NT and Windows 2000, a trusting domain that receives authorization information from a trusted domain does not verify that the trusted domain is authoritative for all listed SIDs, which allows remote attackers to gain Domain Administra... Read more

    Affected Products : windows_2000 windows_nt
    • EPSS Score: %36.04
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0060

    IRC connection tracking helper module in the netfilter subsystem for Linux 2.4.18-pre9 and earlier does not properly set the mask for conntrack expectations for incoming DCC connections, which could allow remote attackers to bypass intended firewall restr... Read more

    Affected Products : linux_kernel linux
    • EPSS Score: %3.33
    • Published: Mar. 08, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1376

    Buffer overflow in digest calculation function of multiple RADIUS implementations allows remote attackers to cause a denial of service and possibly execute arbitrary code via shared secret data.... Read more

    • EPSS Score: %29.86
    • Published: Mar. 04, 2002
    • Modified: Apr. 03, 2025

  • 5.0

    MEDIUM
    CVE-2001-1377

    Multiple RADIUS implementations do not properly validate the Vendor-Length of the Vendor-Specific attribute, which allows remote attackers to cause a denial of service (crash) via a Vendor-Length that is less than 2.... Read more

    • EPSS Score: %10.28
    • Published: Mar. 04, 2002
    • Modified: Apr. 03, 2025

  • 7.2

    HIGH
    CVE-2002-0004

    Heap corruption vulnerability in the "at" program allows local users to execute arbitrary code via a malformed execution time, which causes at to free the same memory twice.... Read more

    • EPSS Score: %0.27
    • Published: Feb. 27, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0003

    Buffer overflow in the preprocessor in groff 1.16 and earlier allows remote attackers to gain privileges via lpd in the LPRng printing system.... Read more

    Affected Products : linux groff
    • EPSS Score: %1.07
    • Published: Feb. 27, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0001

    Vulnerability in RFC822 address parser in mutt before 1.2.5.1 and mutt 1.3.x before 1.3.25 allows remote attackers to execute arbitrary commands via an improperly terminated comment or phrase in the address list.... Read more

    Affected Products : mutt linux
    • EPSS Score: %2.09
    • Published: Feb. 27, 2002
    • Modified: Apr. 03, 2025

  • 10.0

    HIGH
    CVE-2002-0048

    Multiple signedness errors (mixed signed and unsigned numbers) in the I/O functions of rsync 2.4.6, 2.3.2, and other versions allow remote attackers to cause a denial of service and execute arbitrary code in the rsync client or server.... Read more

    Affected Products : linux rsync
    • EPSS Score: %69.46
    • Published: Feb. 27, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2002-0028

    Buffer overflow in ICQ before 2001B Beta v5.18 Build #3659 allows remote attackers to execute arbitrary code via a Voice Video & Games request.... Read more

    Affected Products : icq icq
    • EPSS Score: %19.08
    • Published: Feb. 27, 2002
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2001-1465

    SurfControl SuperScout only filters packets containing both an HTTP GET request and a Host header, which allows local users to bypass filtering by fragmenting packets so that no packet contains both data elements.... Read more

    Affected Products : superscout_web_filter
    • EPSS Score: %0.05
    • Published: Feb. 26, 2002
    • Modified: Apr. 03, 2025

  • 4.6

    MEDIUM
    CVE-2002-1637

    Multiple components in Oracle 9i Application Server (9iAS) are installed with over 160 default usernames and passwords, including (1) SYS, (2) SYSTEM, (3) AQJAVA, (4) OWA, (5) IMAGEUSER, (6) USER1, (7) USER2, (8) PLSQL, (9) DEMO, (10) FINANCE, and many ot... Read more

    Affected Products : application_server
    • EPSS Score: %0.12
    • Published: Feb. 26, 2002
    • Modified: Apr. 03, 2025

  • 7.5

    HIGH
    CVE-2001-1058

    The License Manager (mathlm) for Mathematica 4.0 and 4.1 allows remote attackers to bypass access control (specified by the -restrict argument) and steal a license via a client request that includes the name of a host that is allowed to obtain the license... Read more

    Affected Products : mathematica
    • EPSS Score: %0.35
    • Published: Feb. 13, 2002
    • Modified: Apr. 03, 2025
Showing 20 of 291400 Results