Export limit exceeded: 348706 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (348706 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2002-0090 | 1 Sun | 1 Solaris | 2026-04-16 | N/A |
| Buffer overflow in Low BandWidth X proxy (lbxproxy) in Solaris 8 allows local users to execute arbitrary code via a long display command line option. | ||||
| CVE-2002-0091 | 1 Nswc | 1 Cider Shadow | 2026-04-16 | N/A |
| Multiple CGI scripts in CIDER SHADOW 1.5 and 1.6 allows remote attackers to execute arbitrary commands via certain form fields. | ||||
| CVE-2002-0092 | 2 Cvs, Redhat | 2 Cvs, Linux | 2026-04-16 | N/A |
| CVS before 1.10.8 does not properly initialize a global variable, which allows remote attackers to cause a denial of service (server crash) via the diff capability. | ||||
| CVE-2002-0093 | 1 Compaq | 1 Tru64 | 2026-04-16 | N/A |
| Buffer overflow in ipcs for HP Tru64 UNIX 4.0f through 5.1a may allow attackers to execute arbitrary code, a different vulnerability than CVE-2001-0423. | ||||
| CVE-2002-0094 | 1 Fraunhofer Fit | 1 Bscw | 2026-04-16 | N/A |
| config_converters.py in BSCW (Basic Support for Cooperative Work) 3.x and versions before 4.06 allows remote attackers to execute arbitrary commands via shell metacharacters in the file name during filename conversion. | ||||
| CVE-2002-0095 | 1 Fraunhofer Fit | 1 Bscw | 2026-04-16 | N/A |
| The default configuration of BSCW (Basic Support for Cooperative Work) 3.x and possibly version 4 enables user self registration, which could allow remote attackers to upload files and possibly join a user community that was intended to be closed. | ||||
| CVE-2002-0096 | 1 Geeklog | 1 Geeklog | 2026-04-16 | N/A |
| The installation of Geeklog 1.3 creates an extra group_assignments record which is not properly deleted, which causes the first newly created user to be added to the GroupAdmin and UserAdmin groups, which could provide that user with administrative privileges that were not intended. | ||||
| CVE-2002-0098 | 1 Boozt | 1 Boozt Standard | 2026-04-16 | N/A |
| Buffer overflow in index.cgi administration interface for Boozt! Standard 0.9.8 allows local users to execute arbitrary code via a long name field when creating a new banner. | ||||
| CVE-2002-0099 | 1 Michael Lamont | 1 Savant Webserver | 2026-04-16 | N/A |
| Buffer overflow in Michael Lamont Savant Web Server 3.0 allows remote attackers to cause a denial of service (crash) via a long HTTP request to the cgi-bin directory in which the CGI program name contains a large number of . (dot) characters. | ||||
| CVE-2002-0100 | 1 Aol | 1 Aol Server | 2026-04-16 | N/A |
| AOL AOLserver 3.4.2 Win32 allows remote attackers to bypass authentication and read password-protected files via a URL that directly references the file. | ||||
| CVE-2002-0101 | 1 Microsoft | 1 Internet Explorer | 2026-04-16 | N/A |
| Microsoft Internet Explorer 6.0 and earlier allows local users to cause a denial of service via an infinite loop for modeless dialogs showModelessDialog, which causes CPU usage while the focus for the dialog is not released. | ||||
| CVE-2002-0102 | 1 Oracle | 1 Application Server Web Cache | 2026-04-16 | N/A |
| Oracle9iAS Web Cache 2.0.0.x allows remote attackers to cause a denial of service via (1) a request to TCP ports 1100, 4000, 4001, and 4002 with a large number of null characters, and (2) a request to TCP port 4000 with a large number of "." characters. | ||||
| CVE-2002-0103 | 1 Oracle | 1 Application Server Web Cache | 2026-04-16 | N/A |
| An installer program for Oracle9iAS Web Cache 2.0.0.x creates executable and configuration files with insecure permissions, which allows local users to gain privileges by (1) running webcached or (2) obtaining the administrator password from webcache.xml. | ||||
| CVE-2002-0104 | 1 Aftpd | 1 Aftpd | 2026-04-16 | N/A |
| AFTPD 5.4.4 allows remote attackers to gain sensitive information via a CD (CWD) ~ (tilde) command, which causes a core dump. | ||||
| CVE-2002-0105 | 1 Caldera | 1 Unixware | 2026-04-16 | N/A |
| CDE dtlogin in Caldera UnixWare 7.1.0, and possibly other operating systems, allows local users to gain privileges via a symlink attack on /var/dt/Xerrors since /var/dt is world-writable. | ||||
| CVE-2002-0108 | 1 Allaire | 1 Forums | 2026-04-16 | N/A |
| Allaire Forums 2.0.4 and 2.0.5 and Forums! 3.0 and 3.1 allows remote authenticated users to spoof messages as other users by modifying the hidden form fields for the name and e-mail address. | ||||
| CVE-2002-0110 | 1 Nevrona Designs | 1 Miramail | 2026-04-16 | N/A |
| Nevrona Designs MiraMail 1.04 and earlier stores authentication information such as POP usernames and passwords in plaintext in a .ini file, which allows an attacker to gain privileges by reading the passwords from the file. | ||||
| CVE-2002-0111 | 1 Funsoft | 1 Dinos Webserver | 2026-04-16 | N/A |
| Directory traversal vulnerability in Funsoft Dino's Webserver 1.2 and earlier allows remote attackers to read files or execute arbitrary commands via a .. (dot dot) in the URL. | ||||
| CVE-2002-0112 | 1 Etype | 1 Eserv | 2026-04-16 | N/A |
| Etype Eserv 2.97 allows remote attackers to view password protected files via /./ in the URL. | ||||
| CVE-2002-0113 | 1 Emc | 1 Networker | 2026-04-16 | N/A |
| EMC NetWorker (formerly Legato NetWorker) before 7.0 stores log files in the /nsr/logs/ directory with world-readable permissions, which allows local users to read sensitive information and possibly gain privileges. NOTE: this was originally reported for Legato NetWorker 6.1 on the Solaris 7 platform. | ||||