|
346841
|
- |
|
ssh
|
secure_shell_for_servers
|
SSH Secure Shell for Servers 3.0.0 to 3.1.1 allows remote attackers to override the AllowedAuthentications configuration and use less secure authentication schemes (e.g. password) than configured for…
|
NVD-CWE-Other
|
CVE-2002-1646
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346842
|
- |
|
squirrelmail
|
squirrelmail
|
Cross-site request forgery (CSRF) vulnerability in compose.php in SquirrelMail before 1.2.3 allows remote attackers to send email as other users via an IMG URL with modified send_to and subject param…
|
NVD-CWE-Other
|
CVE-2002-1648
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346843
|
- |
|
squirrelmail
|
squirrelmail
|
Cross-site scripting (XSS) vulnerability in read_body.php in SquirrelMail before 1.2.3 allows remote attackers to execute arbitrary Javascript via a javascript: URL in an IMG tag.
|
NVD-CWE-Other
|
CVE-2002-1649
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346844
|
- |
|
squirrelmail
|
squirrelmail
|
The spell checker plugin (check_me.mod.php) for SquirrelMail before 1.2.3 allows remote attackers to execute arbitrary commands via a modified sqspell_command parameter.
|
NVD-CWE-Other
|
CVE-2002-1650
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346845
|
- |
|
verity
|
search97
|
Cross-site scripting (XSS) vulnerability in Verity Search97 allows remote attackers to insert arbitrary web content and steal sensitive information from other clients, possibly due to certain error m…
|
CWE-79
Cross-site Scripting
|
CVE-2002-1651
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346846
|
- |
|
mit
|
cgiemail
|
Buffer overflow in cgicso.c for cgiemail 1.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long query parameter.
|
NVD-CWE-Other
|
CVE-2002-1652
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346847
|
- |
|
farm9
|
cryptcat
|
Farm9 Cryptcat, when started in server mode with the -e option, does not enable encryption, which allows clients to communicate without encryption despite intended configuration, and may allow remote…
|
NVD-CWE-Other
|
CVE-2002-1653
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346848
|
- |
|
iplanet
netscape
|
iplanet_web_server
enterprise_server
|
iPlanet Web Server Enterprise Edition and Netscape Enterprise Server 4.0 and 4.1 allows remote attackers to conduct HTTP Basic Authentication via the wp-force-auth Web Publisher command, which provid…
|
NVD-CWE-Other
|
CVE-2002-1654
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346849
|
- |
|
iplanet
netscape
|
iplanet_web_server
enterprise_server
|
The Web Publishing feature in Netscape Enterprise Server 3.x and iPlanet Web Server 4.x allows remote attackers to cause a denial of service (crash) via a wp-html-rend request.
|
NVD-CWE-Other
|
CVE-2002-1655
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
346850
|
- |
|
xqus
|
x-news
|
X-News (x_news) 1.1 and earlier allows attackers to authenticate as other users by obtaining the MD5 checksum of the password, e.g. via sniffing or the users.txt data file, and providing it in a cook…
|
NVD-CWE-Other
|
CVE-2002-1656
|
2017-07-11 10:29 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
