|
347581
|
- |
|
bizdesign
|
imagefolio
|
The default configuration of BizDesign ImageFolio 2.23 through 2.26 does not control access to (1) admin/setup.cgi, which allows remote attackers to create an administrative account, or (2) admin/nph…
|
NVD-CWE-Other
|
CVE-2002-1867
|
2016-10-18 11:27 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347582
|
- |
|
qnx
|
rtos
|
/bin/su in QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows local users to obtain sensitive information from core dump files by sending the SIGSERV (invalid memory reference) signal.
|
NVD-CWE-Other
|
CVE-2002-2039
|
2016-10-18 11:27 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347583
|
- |
|
michael_baumer
|
pfinger
|
Buffer overflow in PFinger 0.7.8 client allows remote attackers to execute arbitrary code via a long query value passed to the (1) finger program, (2) -l, (3) -d, and (4) -t options. NOTE: if PFinge…
|
NVD-CWE-Other
|
CVE-2002-2048
|
2016-10-18 11:27 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347584
|
- |
|
teekai
|
teekai_forum
|
TeeKai Forum 1.2 allows remote attackers to authenticate as the administrator and and gain privileged web forum access by setting the valid_level cookie to admin.
|
NVD-CWE-Other
|
CVE-2002-2054
|
2016-10-18 11:27 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347585
|
- |
|
teekai
|
teekai_tracking_online
|
Cross-site scripting (XSS) vulnerability in userlog.php in TeeKai Tracking Online 1.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
|
NVD-CWE-Other
|
CVE-2002-2055
|
2016-10-18 11:27 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347586
|
- |
|
teekai
|
teekai_forum
|
Cross-site scripting (XSS) vulnerability in TeeKai Forum 1.2 allows remote attackers to inject arbitrary web script or HTML via the valid_username_online cookie.
|
NVD-CWE-Other
|
CVE-2002-2056
|
2016-10-18 11:27 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347587
|
- |
|
teekai
|
teekai_forum
|
TeeKai Forum 1.2 uses weak encryption of web usage statistics in data/member_log.txt, which is stored under the web document root with insufficient access control, which allows remote attackers to id…
|
NVD-CWE-Other
|
CVE-2002-2057
|
2016-10-18 11:27 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347588
|
- |
|
microsoft
|
site_server
site_server_commerce
windows_nt
|
Cross-site scripting (XSS) vulnerability in the default ASP pages on Microsoft Site Server 3.0 on Windows NT 4.0 allows remote attackers to inject arbitrary web script or HTML via the (1) ctr paramet…
|
NVD-CWE-Other
|
CVE-2002-2073
|
2016-10-18 11:27 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347589
|
- |
|
blue_world_communications
|
lasso_web_data_engine
|
Buffer overflow in Blue World Lasso Web Data Engine 3.6.5 allows remote attackers to cause a denial of service via a long URL.
|
NVD-CWE-Other
|
CVE-2002-2118
|
2016-10-18 11:27 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
347590
|
- |
|
surfcontrol
|
superscout_email_filter
|
SurfControl SuperScout Email filter for SMTP 3.5.1 allows remote attackers to cause a denial of service (crash) via a long SMTP (1) HELO or (2) RCPT TO command, possibly due to a buffer overflow.
|
NVD-CWE-Other
|
CVE-2002-2121
|
2016-10-18 11:27 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
