| Max CVSS | 10.0 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2002-2199 | 4.6 |
The default aide.conf file in Advanced Intrusion Detection Environment (AIDE) before 0.7_1 on FreeBSD before 2002-08-28 does not properly check subdirectories, which could allow local users to bypass detection.
|
27-08-2021 - 14:25 | 31-12-2002 - 05:00 | |
| CVE-2002-2222 | 5.1 |
isakmpd/message.c in isakmpd in FreeBSD before isakmpd-20020403_1, and in OpenBSD 3.1, allows remote attackers to cause a denial of service (crash) by sending Internet Key Exchange (IKE) payloads out of sequence.
|
29-07-2017 - 01:29 | 31-12-2002 - 05:00 | |
| CVE-2002-0983 | 5.0 |
IRC client irssi in irssi-text before 0.8.4 allows remote attackers to cause a denial of service (crash) via an IRC channel that has a long topic followed by a certain string, possibly triggering a buffer overflow.
|
11-07-2017 - 01:29 | 24-09-2002 - 04:00 | |
| CVE-2002-0658 | 6.2 |
OSSP mm library (libmm) before 1.2.0 allows the local Apache user to gain privileges via temporary files, possibly via a symbolic link attack.
|
04-09-2013 - 04:18 | 12-08-2002 - 04:00 | |
| CVE-2002-0875 | 2.1 |
Vulnerability in FAM 2.6.8, 2.6.6, and other versions allows unprivileged users to obtain the names of files whose access is restricted to the root group.
|
10-09-2008 - 19:13 | 05-09-2002 - 04:00 | |
| CVE-2002-0803 | 5.0 |
Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, allows remote attackers to display restricted products and components via a direct HTTP request to queryhelp.cgi.
|
10-09-2008 - 19:12 | 12-08-2002 - 04:00 | |
| CVE-2002-2198 | 10.0 |
Buffer overflow in ZMailer before 2.99.51_1 allows remote attackers to execute arbitrary code during HELO processing from an IPv6 address, possibly using an address that resolves to a long hostname.
|
05-09-2008 - 20:32 | 31-12-2002 - 05:00 | |
| CVE-2002-2201 | 10.0 |
The Printer Administration module for Webmin 0.990 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the printer name.
|
05-09-2008 - 20:32 | 31-12-2002 - 05:00 | |
| CVE-2002-2196 | 7.5 |
Samba before 2.2.5 does not properly terminate the enum_csc_policy data structure, which may allow remote attackers to execute arbitrary code via a buffer overflow attack.
|
05-09-2008 - 20:32 | 31-12-2002 - 05:00 | |
| CVE-2002-1789 | 7.2 |
Format string vulnerability in newsx NNTP client before 1.4.8 allows local users to execute arbitrary code via format string specifiers that are not properly handled in a call to the syslog function.
|
05-09-2008 - 20:31 | 31-12-2002 - 05:00 | |
| CVE-2002-0810 | 5.0 |
Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, directs error messages from the syncshadowdb command to the HTML output, which could leak sensitive information, including plaintext passwords, if syncshadowdb fails.
|
05-09-2008 - 20:29 | 12-08-2002 - 04:00 |