Vulnerabilities (CVE)

Filtered by NVD-CWE-Other
Total 29913 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2002-0149 1 Microsoft 2 Internet Information Server, Internet Information Services 2026-06-16 7.5 HIGH N/A
Buffer overflow in ASP Server-Side Include Function in IIS 4.0, 5.0 and 5.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via long file names.
CVE-2002-0148 1 Microsoft 2 Internet Information Server, Internet Information Services 2026-06-16 7.5 HIGH N/A
Cross-site scripting vulnerability in Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remote attackers to execute arbitrary script as other users via an HTTP error page.
CVE-2002-0147 1 Microsoft 2 Internet Information Server, Internet Information Services 2026-06-16 7.5 HIGH N/A
Buffer overflow in the ASP data transfer mechanism in Internet Information Server (IIS) 4.0, 5.0, and 5.1 allows remote attackers to cause a denial of service or execute code, aka "Microsoft-discovered variant of Chunked Encoding buffer overrun."
CVE-2002-0145 1 Scott Parish 1 Chuid 2026-06-16 7.5 HIGH N/A
chuid 1.2 and earlier does not properly verify the ownership of files that will be changed, which allows remote attackers to change files owned by other users, such as root.
CVE-2002-0144 1 Scott Parish 1 Chuid 2026-06-16 7.5 HIGH N/A
Directory traversal vulnerability in chuid 1.2 and earlier allows remote attackers to change the ownership of files outside of the upload directory via a .. (dot dot) attack.
CVE-2002-0143 2 Enlightenment, Michael Jennings 2 Imlib, Eterm 2026-06-16 4.6 MEDIUM N/A
Buffer overflow in Eterm of Enlightenment Imlib2 1.0.4 and earlier allows local users to execute arbitrary code via a long HOME environment variable.
CVE-2002-0142 1 Pi3 1 Pi3web 2026-06-16 7.5 HIGH N/A
CGI handler in John Roy Pi3Web for Windows 2.0 beta 1 and 2 allows remote attackers to cause a denial of service (crash) via a series of requests whose physical path is exactly 260 characters long and ends in a series of . (dot) characters.
CVE-2002-0141 1 Maelstrom 1 Maelstrom Gpl 2026-06-16 1.2 LOW N/A
Maelstrom GPL 3.0.1 allows local users to overwrite arbitrary files of other Maelstrom users via a symlink attack on the /tmp/f file.
CVE-2002-0140 1 Dnrd 1 Dnrd 2026-06-16 7.5 HIGH N/A
Domain Name Relay Daemon (dnrd) 2.10 and earlier allows remote malicious DNS sites to cause a denial of service and possibly execute arbitrary code via a long or malformed DNS reply, which is not handled properly by parse_query, get_objectname, and possibly other functions.
CVE-2002-0139 1 Pi-soft 1 Spoonftp 2026-06-16 7.5 HIGH N/A
Pi-Soft SpoonFTP 1.1 and earlier allows remote attackers to redirect traffic to other sites (aka FTP bounce) via the PORT command.
CVE-2002-0138 1 Andreas Mueller 1 Cdrdao 2026-06-16 2.1 LOW N/A
CDRDAO 1.1.4 and 1.1.5 allows local users to read arbitrary files via the show-data command.
CVE-2002-0137 1 Andreas Mueller 1 Cdrdao 2026-06-16 7.2 HIGH N/A
CDRDAO 1.1.4 and 1.1.5 allows local users to overwrite arbitrary files via a symlink attack on the $HOME/.cdrdao configuration file.
CVE-2002-0136 1 Microsoft 1 Internet Explorer 2026-06-16 5.0 MEDIUM N/A
Microsoft Internet Explorer 5.5 on Windows 98 allows remote web pages to cause a denial of service (hang) via extremely long values for form fields such as INPUT and TEXTAREA, which can be automatically filled via Javascript.
CVE-2002-0135 1 Netopia 1 Timbuktu Pro 2026-06-16 5.0 MEDIUM N/A
Netopia Timbuktu Pro 6.0.1 and earlier allows remote attackers to cause a denial of service (crash) via a series of connections to one of the ports (1417 - 1420).
CVE-2002-0134 1 Avirt 1 Avirt Gateway Suite 2026-06-16 7.5 HIGH N/A
Telnet proxy in Avirt Gateway Suite 4.2 does not require authentication for connecting to the proxy system itself, which allows remote attackers to list file contents of the proxy and execute arbitrary commands via a "dos" command.
CVE-2002-0133 1 Avirt 3 Avirt Gateway, Avirt Gateway Suite, Avirt Soho 2026-06-16 7.5 HIGH N/A
Buffer overflows in Avirt Gateway Suite 4.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) long header fields to the HTTP proxy, or (2) a long string to the telnet proxy.
CVE-2002-0132 1 Chinput 1 Chinput 2026-06-16 7.2 HIGH N/A
Buffer overflow in Chinput 3.0 allows local users to execute arbitrary code via a long HOME environment variable.
CVE-2002-0131 1 Activestate 1 Activepython 2026-06-16 5.0 MEDIUM N/A
ActivePython ActiveX control for Python in the AXScript package, when used in Internet Explorer, does not prevent a script from reading files from the client's filesystem, which allows remote attackers to read arbitrary files via a malicious web page containing Python script.
CVE-2002-0130 1 Efax 1 Efax 2026-06-16 7.2 HIGH N/A
Buffer overflow in efax 0.9 and earlier, when installed setuid root, allows local users to execute arbitrary code via a long -x argument.
CVE-2002-0129 1 Efax 1 Efax 2026-06-16 2.1 LOW N/A
efax 0.9 and earlier, when installed setuid root, allows local users to read arbitrary files via the -d option, which prints the contents of the file in a warning message.