|
348121
|
- |
|
mozilla
|
mozilla
|
Cross-site scripting (XSS) vulnerability in the FTP view feature in Mozilla 1.0 allows remote attackers to inject arbitrary web script or HTML via the title tag of an ftp URL.
|
CWE-79
Cross-site Scripting
|
CVE-2002-2359
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348122
|
- |
|
webmin
|
webmin
|
The RPC module in Webmin 0.21 through 0.99, when installed without root or admin privileges, allows remote attackers to read and write to arbitrary files and execute arbitrary commands via remote_for…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2002-2360
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348123
|
- |
|
yahoo
|
messenger
|
The installer in Yahoo! Messenger 4.0, 5.0 and 5.5 does not verify package signatures which could allow remote attackers to install trojan programs via DNS spoofing.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2002-2361
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348124
|
- |
|
sourceforge
|
mymarket
|
Cross-site scripting (XSS) vulnerability in form_header.php in MyMarket 1.71 allows remote attackers to inject arbitrary web script or HTML via the noticemsg parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2002-2362
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348125
|
- |
|
hp
|
hp-ux
|
VJE.VJE-RUN in HP-UX 11.00 adds bin to /etc/PATH, which could allow local users to gain privileges.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2002-2363
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348126
|
- |
|
sourceforge
|
php_ticket
|
Cross-site scripting (XSS) vulnerability in PHP Ticket 0.5 and earlier allows remote attackers to inject arbitrary web script or HTML via a help ticket.
|
CWE-79
Cross-site Scripting
|
CVE-2002-2364
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348127
|
- |
|
springer_verlag_berlin_heidelberg
|
simple_wais
|
Simple WAIS (SWAIS) 1.11 allows remote attackers to execute arbitrary commands via the shell metacharacters in the search field, as demonstrated using the "|" (pipe) character.
|
CWE-20
Improper Input Validation
|
CVE-2002-2365
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348128
|
- |
|
cerulean_studios
|
trillian
|
Buffer overflow in the XML parser of Trillian 0.6351, 0.725 and 0.73 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a skin with a long colors fil…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2002-2366
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348129
|
- |
|
socks5
|
socks5
|
Off-by-one buffer overflow in NEC SOCKS5 1.0 r11 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long hostname.
|
CWE-189
CWE-119
Numeric Errors
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2002-2367
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
348130
|
- |
|
nec
|
socks_5
|
Multiple buffer overflows in NEC SOCKS5 1.0 r11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via a long username to (1) the GetString function i…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2002-2368
|
2008-09-6 05:33 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
