|
353061
|
- |
|
emumail
|
emumail
emumail_red_hat_linux
emumail_unix
|
Directory traversal vulnerability in emumail.cgi in EMU Webmail 4.5.x and 5.1.0 allows remote attackers to read arbitrary files or list arbitrary directories via a .. (dot dot) in the type parameter.
|
NVD-CWE-Other
|
CVE-2002-0531
|
2008-09-6 05:28 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
353062
|
- |
|
emumail
|
emumail
emumail_red_hat_linux
emumail_unix
|
EMU Webmail allows local users to execute arbitrary programs via a .. (dot dot) in the HTTP Host header that points to a Trojan horse configuration file that contains a pageroot specifier that contai…
|
NVD-CWE-Other
|
CVE-2002-0532
|
2008-09-6 05:28 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
353063
|
- |
|
postboard
|
postboard
|
PostBoard 2.0.1 and earlier with BBcode allows remote attackers to cause a denial of service (CPU consumption) and corrupt the database via null \0 characters within [code] tags.
|
NVD-CWE-Other
|
CVE-2002-0534
|
2008-09-6 05:28 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
353064
|
- |
|
phpgroupware
|
phpgroupware
|
PHPGroupware 0.9.12 and earlier, when running with the magic_quotes_gpc feature disabled, allows remote attackers to compromise the database via a SQL injection attack.
|
NVD-CWE-Other
|
CVE-2002-0536
|
2008-09-6 05:28 |
2002-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
353065
|
- |
|
stepweb
|
sws
|
The admin.html file in StepWeb Search Engine (SWS) 2.5 stores passwords in links to manager.pl, which allows remote attackers who can access the admin.html file to gain administrative privileges to S…
|
NVD-CWE-Other
|
CVE-2002-0537
|
2008-09-6 05:28 |
2002-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
353066
|
- |
|
demarc_security
|
puresecure
|
Demarc PureSecure 1.05 allows remote attackers to gain administrative privileges via a SQL injection attack in a session ID that is stored in the s_key cookie.
|
NVD-CWE-Other
|
CVE-2002-0539
|
2008-09-6 05:28 |
2002-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
353067
|
- |
|
nortel
|
cvx_1800_multi-service_access_switch
|
Nortel CVX 1800 is installed with a default "public" community string, which allows remote attackers to read usernames and passwords and modify the CVX configuration.
|
NVD-CWE-Other
|
CVE-2002-0540
|
2008-09-6 05:28 |
2002-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
353068
|
- |
|
ibm
|
tivoli_storage_manager
|
Buffer overflow in Tivoli Storage Manager TSM (1) Server or Storage Agents 3.1 through 5.1, and (2) the TSM Client Acceptor Service 4.2 and 5.1, allows remote attackers to cause a denial of service (…
|
NVD-CWE-Other
|
CVE-2002-0541
|
2008-09-6 05:28 |
2002-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
353069
|
- |
|
aprelium_technologies
|
abyss_web_server
|
Directory traversal vulnerability in Aprelium Abyss Web Server (abyssws) before 1.0.0.2 allows remote attackers to read files outside the web root, including the abyss.conf file, via URL-encoded .. (…
|
NVD-CWE-Other
|
CVE-2002-0543
|
2008-09-6 05:28 |
2002-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
353070
|
- |
|
aprelium_technologies
|
abyss_web_server
|
Aprelium Abyss Web Server (abyssws) before 1.0.3 stores the administrative console password in plaintext in the abyss.conf file, which allows local users with access to the file to gain privileges.
|
NVD-CWE-Other
|
CVE-2002-0544
|
2008-09-6 05:28 |
2002-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
