|
307801
|
- |
|
hp
|
advancestack_10base-t_switching_hub_j3200a
advancestack_10base-t_switching_hub_j3201a
advancestack_10base-t_switching_hub_j3202a
advancestack_10base-t_switching_hub_j3203a
advancestack_10…
|
Web configuration utility in HP AdvanceStack hubs J3200A through J3210A with firmware version A.03.07 and earlier, allows unauthorized users to bypass authentication via a direct HTTP request to the …
|
NVD-CWE-Other
|
CVE-2002-0250
|
2016-10-18 11:17 |
2002-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307802
|
- |
|
php
|
php
|
PHP, when not configured with the "display_errors = Off" setting in php.ini, allows remote attackers to obtain the physical path for an include file via a trailing slash in a request to a directly ac…
|
NVD-CWE-Other
|
CVE-2002-0253
|
2016-10-18 11:17 |
2002-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307803
|
- |
|
mirabilis
|
icq
|
ICQ 2001b Build 3659 allows remote attackers to cause a denial of service (crash) via a malformed picture that contains large height and width values, which causes the crash when viewed in Userdetail…
|
NVD-CWE-Other
|
CVE-2002-0254
|
2016-10-18 11:17 |
2002-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307804
|
- |
|
arescom
|
netdsl
|
The default configuration of Arescom NetDSL 800 does not require authentication, which allows remote attackers to cause a denial of service or reconfigure the router.
|
NVD-CWE-Other
|
CVE-2002-0255
|
2016-10-18 11:17 |
2002-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307805
|
- |
|
arescom
|
netdsl
|
The telnet port in Arescom NetDSL 1000 router allows remote attackers to cause a denial of service via a series of connections with long strings, which causes a large number of login failures and cau…
|
NVD-CWE-Other
|
CVE-2002-0256
|
2016-10-18 11:17 |
2002-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307806
|
- |
|
apache
usanet_creations
|
http_server
makebid_auction_deluxe
|
Cross-site scripting vulnerability in auction.pl of MakeBid Auction Deluxe 3.30 allows remote attackers to obtain information from other users via the form fields (1) TITLE, (2) DESCTIT, (3) DESC, (4…
|
NVD-CWE-Other
|
CVE-2002-0257
|
2016-10-18 11:17 |
2002-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307807
|
- |
|
icewarp
merak
|
web_mail
mail_server
|
Merak Mail IceWarp Web Mail uses a static identifier as a user session ID that does not change across sessions, which could allow remote attackers with access to the ID to gain privileges as that use…
|
NVD-CWE-Other
|
CVE-2002-0258
|
2016-10-18 11:17 |
2002-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307808
|
- |
|
instantservers_inc.
|
miniportal
|
InstantServers MiniPortal 1.1.5 and earlier stores sensitive login and account data in plaintext in (1) .pwd files in the miniportal/apache directory, or (2) mplog.txt, which could allow local users …
|
NVD-CWE-Other
|
CVE-2002-0259
|
2016-10-18 11:17 |
2002-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307809
|
- |
|
instantservers_inc.
|
miniportal
|
Buffer overflow in InstantServers MiniPortal 1.1.5 and earlier allows remote attackers to execute arbitrary code via a long login name, which is not properly handled by the logging utility.
|
NVD-CWE-Other
|
CVE-2002-0260
|
2016-10-18 11:17 |
2002-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
307810
|
- |
|
instantservers_inc.
|
miniportal
|
Directory traversal vulnerability in InstantServers MiniPortal 1.1.5 and earlier allows remote authenticated users to read arbitrary files via a ... (modified dot dot) in the GET command.
|
NVD-CWE-Other
|
CVE-2002-0261
|
2016-10-18 11:17 |
2002-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
