|
349121
|
- |
|
oracle
|
application_server
reports
|
rwcgi60 CGI program in Oracle Reports Server, by design, provides sensitive information such as the full pathname, which could enable remote attackers to use the information in additional attacks.
|
NVD-CWE-Other
|
CVE-2002-1089
|
2008-09-6 05:29 |
2002-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349122
|
- |
|
libesmtp
|
libesmtp
|
Buffer overflow in read_smtp_response of protocol.c in libesmtp before 0.8.11 allows a remote SMTP server to (1) execute arbitrary code via a certain response or (2) cause a denial of service via lon…
|
NVD-CWE-Other
|
CVE-2002-1090
|
2008-09-6 05:29 |
2002-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349123
|
- |
|
purity
|
purity
|
Multiple buffer overflows in purity 1-16 allow local users to gain privileges and modify high scores tables.
|
NVD-CWE-Other
|
CVE-2002-1124
|
2008-09-6 05:29 |
2002-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349124
|
- |
|
digital
|
osf_1
|
Buffer overflow in uucp in Compaq Tru64/OSF1 3.x allows local users to execute arbitrary code via a long source (-s) command line parameter.
|
NVD-CWE-Other
|
CVE-2002-1127
|
2008-09-6 05:29 |
2002-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349125
|
- |
|
squirrelmail
|
squirrelmail
|
Cross-site scripting vulnerabilities in SquirrelMail 1.2.7 and earlier allows remote attackers to execute script as other web users via (1) addressbook.php, (2) options.php, (3) search.php, or (4) he…
|
NVD-CWE-Other
|
CVE-2002-1131
|
2008-09-6 05:29 |
2002-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349126
|
- |
|
squirrelmail
|
squirrelmail
|
SquirrelMail 1.2.7 and earlier allows remote attackers to determine the absolute pathname of the options.php script via a malformed optpage file argument, which generates an error message when the fi…
|
NVD-CWE-Other
|
CVE-2002-1132
|
2008-09-6 05:29 |
2002-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349127
|
- |
|
stephen_turner
|
analog
|
anlgform.pl in Analog before 5.23 does not restrict access to the PROGRESSFREQ progress update command, which allows remote attackers to cause a denial of service (disk consumption) by using the comm…
|
NVD-CWE-Other
|
CVE-2002-1154
|
2008-09-6 05:29 |
2002-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349128
|
- |
|
mod_ssl
|
mod_ssl
|
Cross-site scripting vulnerability in the mod_ssl Apache module 2.8.9 and earlier, when UseCanonicalName is off and wildcard DNS is enabled, allows remote attackers to execute script as other web sit…
|
NVD-CWE-Other
|
CVE-2002-1157
|
2008-09-6 05:29 |
2002-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349129
|
- |
|
checkpoint
|
check_point_vpn
firewall-1
next_generation
|
Check Point FireWall-1 SecuRemote/SecuClient 4.0 and 4.1 allows clients to bypass the "authentication timeout" by modifying the to_expire or expire values in the client's users.C configuration file.
|
NVD-CWE-Other
|
CVE-2002-0428
|
2008-09-6 05:28 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
349130
|
- |
|
dave_lawrence
|
xtux
|
XTux allows remote attackers to cause a denial of service (CPU consumption) via random inputs in the initial connection.
|
NVD-CWE-Other
|
CVE-2002-0431
|
2008-09-6 05:28 |
2002-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
