|
356461
|
- |
|
yahoo
|
messenger
|
The installer in Yahoo! Messenger 4.0, 5.0 and 5.5 does not verify package signatures which could allow remote attackers to install trojan programs via DNS spoofing.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2002-2361
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356462
|
- |
|
sourceforge
|
mymarket
|
Cross-site scripting (XSS) vulnerability in form_header.php in MyMarket 1.71 allows remote attackers to inject arbitrary web script or HTML via the noticemsg parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2002-2362
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356463
|
- |
|
hp
|
hp-ux
|
VJE.VJE-RUN in HP-UX 11.00 adds bin to /etc/PATH, which could allow local users to gain privileges.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2002-2363
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356464
|
- |
|
sourceforge
|
php_ticket
|
Cross-site scripting (XSS) vulnerability in PHP Ticket 0.5 and earlier allows remote attackers to inject arbitrary web script or HTML via a help ticket.
|
CWE-79
Cross-site Scripting
|
CVE-2002-2364
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356465
|
- |
|
springer_verlag_berlin_heidelberg
|
simple_wais
|
Simple WAIS (SWAIS) 1.11 allows remote attackers to execute arbitrary commands via the shell metacharacters in the search field, as demonstrated using the "|" (pipe) character.
|
CWE-20
Improper Input Validation
|
CVE-2002-2365
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356466
|
- |
|
cerulean_studios
|
trillian
|
Buffer overflow in the XML parser of Trillian 0.6351, 0.725 and 0.73 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a skin with a long colors fil…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2002-2366
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356467
|
- |
|
socks5
|
socks5
|
Off-by-one buffer overflow in NEC SOCKS5 1.0 r11 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long hostname.
|
CWE-189
CWE-119
Numeric Errors
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2002-2367
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356468
|
- |
|
nec
|
socks_5
|
Multiple buffer overflows in NEC SOCKS5 1.0 r11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via a long username to (1) the GetString function i…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2002-2368
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356469
|
- |
|
perception
|
liteserve
|
Perception LiteServe 2.0 allows remote attackers to read password protected files via a leading "/./" in a URL.
|
CWE-200
Information Exposure
|
CVE-2002-2369
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
356470
|
- |
|
sws
|
sws_simple_web_server
|
SWS web server 0.0.4, 0.0.3 and 0.1.0 allows remote attackers to cause a denial of service (crash) via a URL request that does not end with a newline.
|
NVD-CWE-Other
|
CVE-2002-2370
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
