Export limit exceeded: 345232 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (345232 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2002-0242 | 1 Microsoft | 1 Internet Explorer | 2026-04-16 | N/A |
| Cross-site scripting vulnerability in Internet Explorer 6 earlier allows remote attackers to execute arbitrary script via an Extended HTML Form, whose output from the remote server is not properly cleansed. | ||||
| CVE-2002-0243 | 1 Opera Software | 1 Opera Web Browser | 2026-04-16 | N/A |
| Cross-site scripting vulnerability in Opera 6.0 and earlier allows remote attackers to execute arbitrary script via an Extended HTML Form, whose output from the remote server is not properly cleansed. | ||||
| CVE-2002-0244 | 1 Atheos | 1 Atheos | 2026-04-16 | N/A |
| Directory traversal vulnerability in chroot function in AtheOS 0.3.7 allows attackers to escape the jail via a .. (dot dot) in the pathname argument to chdir. | ||||
| CVE-2002-0245 | 1 Lotus | 1 Domino | 2026-04-16 | N/A |
| Lotus Domino server 5.0.8 with NoBanner enabled allows remote attackers to (1) determine the physical path of the server via a request for a nonexistent file with a .pl (Perl) extension, which leaks the pathname in the error message, or (2) make any request that causes an HTTP 500 error, which leaks the server's version name in the HTTP error message. | ||||
| CVE-2002-0246 | 1 Caldera | 1 Unixware | 2026-04-16 | N/A |
| Format string vulnerability in the message catalog library functions in UnixWare 7.1.1 allows local users to gain privileges by modifying the LC_MESSAGE environment variable to read other message catalogs containing format strings from setuid programs such as vxprint. | ||||
| CVE-2002-0247 | 1 Wliang | 1 Wmtv | 2026-04-16 | N/A |
| Buffer overflows in wmtv 0.6.5 and earlier may allow local users to gain privileges. | ||||
| CVE-2002-0248 | 1 Wliang | 1 Wmtv | 2026-04-16 | N/A |
| wmtv 0.6.5 and earlier allows local users to modify arbitrary files via a symlink attack on a configuration file. | ||||
| CVE-2002-0249 | 1 Apache | 1 Http Server | 2026-04-16 | N/A |
| PHP for Windows, when installed on Apache 2.0.28 beta as a standalone CGI module, allows remote attackers to obtain the physical path of the php.exe via a request with malformed arguments such as /123, which leaks the pathname in the error message. | ||||
| CVE-2002-0251 | 1 Licq | 1 Licq | 2026-04-16 | N/A |
| Buffer overflow in licq 1.0.4 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string of format string characters such as "%d". | ||||
| CVE-2002-0252 | 1 Apple | 1 Quicktime | 2026-04-16 | N/A |
| Buffer overflow in Apple QuickTime Player 5.01 and 5.02 allows remote web servers to execute arbitrary code via a response containing a long Content-Type MIME header. | ||||
| CVE-2002-0254 | 1 Mirabilis | 1 Icq | 2026-04-16 | N/A |
| ICQ 2001b Build 3659 allows remote attackers to cause a denial of service (crash) via a malformed picture that contains large height and width values, which causes the crash when viewed in Userdetails. | ||||
| CVE-2002-0255 | 1 Arescom | 1 Netdsl | 2026-04-16 | N/A |
| The default configuration of Arescom NetDSL 800 does not require authentication, which allows remote attackers to cause a denial of service or reconfigure the router. | ||||
| CVE-2002-0256 | 1 Arescom | 1 Netdsl | 2026-04-16 | N/A |
| The telnet port in Arescom NetDSL 1000 router allows remote attackers to cause a denial of service via a series of connections with long strings, which causes a large number of login failures and causes the telnet service to stop. | ||||
| CVE-2002-0259 | 1 Instantservers Inc. | 1 Miniportal | 2026-04-16 | N/A |
| InstantServers MiniPortal 1.1.5 and earlier stores sensitive login and account data in plaintext in (1) .pwd files in the miniportal/apache directory, or (2) mplog.txt, which could allow local users to gain privileges. | ||||
| CVE-2002-0260 | 1 Instantservers Inc. | 1 Miniportal | 2026-04-16 | N/A |
| Buffer overflow in InstantServers MiniPortal 1.1.5 and earlier allows remote attackers to execute arbitrary code via a long login name, which is not properly handled by the logging utility. | ||||
| CVE-2002-0261 | 1 Instantservers Inc. | 1 Miniportal | 2026-04-16 | N/A |
| Directory traversal vulnerability in InstantServers MiniPortal 1.1.5 and earlier allows remote authenticated users to read arbitrary files via a ... (modified dot dot) in the GET command. | ||||
| CVE-2002-0262 | 1 Sybex | 1 E-trainer | 2026-04-16 | N/A |
| Directory traversal vulnerability in netget for Sybex E-Trainer web server allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter. | ||||
| CVE-2002-0263 | 1 Ezne.net | 1 Ezboard 2000 | 2026-04-16 | N/A |
| Buffer overflow in EasyBoard 2000 1.27 (aka EZboard) allows remote attackers to execute arbitrary code via a long boundary value in a multipart Content-Type header to (1) ezboard.cgi, (2) ezman.cgi, or (3) ezadmin.cgi. | ||||
| CVE-2002-0264 | 1 Cooolsoft | 1 Powerftp | 2026-04-16 | N/A |
| PowerFTP Personal FTP Server 2.03 through 2.10 stores sensitive account information in plaintext in the ftpserver.ini file, which allows attackers with access to the file to gain privileges. | ||||
| CVE-2002-0265 | 1 Sawmill | 1 Sawmill | 2026-04-16 | N/A |
| Sawmill for Solaris 6.2.14 and earlier creates the AdminPassword file with world-writable permissions, which allows local users to gain privileges by modifying the file. | ||||