Vulnerabilities (CVE)

Filtered by NVD-CWE-Other
Total 29914 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2002-0109 1 Linksys 3 Befn2ps4, Befsr41, Befsr81 2026-06-16 6.4 MEDIUM N/A
Linksys EtherFast BEFN2PS4, BEFSR41, and BEFSR81 Routers, and possibly other products, allow remote attackers to gain sensitive information and cause a denial of service via an SNMP query for the default community string "public," which causes the router to change its configuration and send SNMP trap information back to the system that initiated the query.
CVE-2002-0108 1 Allaire 1 Forums 2026-06-16 7.5 HIGH N/A
Allaire Forums 2.0.4 and 2.0.5 and Forums! 3.0 and 3.1 allows remote authenticated users to spoof messages as other users by modifying the hidden form fields for the name and e-mail address.
CVE-2002-0107 1 Cacheflow 1 Cacheos 2026-06-16 5.0 MEDIUM N/A
Web administration interface in CacheFlow CacheOS 4.0.13 and earlier allows remote attackers to obtain sensitive information via a series of GET requests that do not end in with HTTP/1.0 or another version string, which causes the information to be leaked in the error message.
CVE-2002-0106 1 Bea 1 Weblogic Server 2026-06-16 5.0 MEDIUM N/A
BEA Systems Weblogic Server 6.1 allows remote attackers to cause a denial of service via a series of requests to .JSP files that contain an MS-DOS device name.
CVE-2002-0105 1 Caldera 1 Unixware 2026-06-16 7.2 HIGH N/A
CDE dtlogin in Caldera UnixWare 7.1.0, and possibly other operating systems, allows local users to gain privileges via a symlink attack on /var/dt/Xerrors since /var/dt is world-writable.
CVE-2002-0104 1 Aftpd 1 Aftpd 2026-06-16 5.0 MEDIUM N/A
AFTPD 5.4.4 allows remote attackers to gain sensitive information via a CD (CWD) ~ (tilde) command, which causes a core dump.
CVE-2002-0103 1 Oracle 1 Application Server Web Cache 2026-06-16 4.6 MEDIUM N/A
An installer program for Oracle9iAS Web Cache 2.0.0.x creates executable and configuration files with insecure permissions, which allows local users to gain privileges by (1) running webcached or (2) obtaining the administrator password from webcache.xml.
CVE-2002-0102 1 Oracle 1 Application Server Web Cache 2026-06-16 5.0 MEDIUM N/A
Oracle9iAS Web Cache 2.0.0.x allows remote attackers to cause a denial of service via (1) a request to TCP ports 1100, 4000, 4001, and 4002 with a large number of null characters, and (2) a request to TCP port 4000 with a large number of "." characters.
CVE-2002-0101 1 Microsoft 1 Internet Explorer 2026-06-16 5.0 MEDIUM N/A
Microsoft Internet Explorer 6.0 and earlier allows local users to cause a denial of service via an infinite loop for modeless dialogs showModelessDialog, which causes CPU usage while the focus for the dialog is not released.
CVE-2002-0100 1 Aol 1 Aol Server 2026-06-16 7.5 HIGH N/A
AOL AOLserver 3.4.2 Win32 allows remote attackers to bypass authentication and read password-protected files via a URL that directly references the file.
CVE-2002-0099 1 Michael Lamont 1 Savant Webserver 2026-06-16 5.0 MEDIUM N/A
Buffer overflow in Michael Lamont Savant Web Server 3.0 allows remote attackers to cause a denial of service (crash) via a long HTTP request to the cgi-bin directory in which the CGI program name contains a large number of . (dot) characters.
CVE-2002-0098 1 Boozt 1 Boozt Standard 2026-06-16 7.5 HIGH N/A
Buffer overflow in index.cgi administration interface for Boozt! Standard 0.9.8 allows local users to execute arbitrary code via a long name field when creating a new banner.
CVE-2002-0097 1 Geeklog 1 Geeklog 2026-06-16 7.5 HIGH N/A
Geeklog 1.3 allows remote attackers to hijack user accounts, including the administrator account, by modifying the UID of a user's permanent cookie to the target account.
CVE-2002-0096 1 Geeklog 1 Geeklog 2026-06-16 7.2 HIGH N/A
The installation of Geeklog 1.3 creates an extra group_assignments record which is not properly deleted, which causes the first newly created user to be added to the GroupAdmin and UserAdmin groups, which could provide that user with administrative privileges that were not intended.
CVE-2002-0095 1 Fraunhofer Fit 1 Bscw 2026-06-16 7.5 HIGH N/A
The default configuration of BSCW (Basic Support for Cooperative Work) 3.x and possibly version 4 enables user self registration, which could allow remote attackers to upload files and possibly join a user community that was intended to be closed.
CVE-2002-0094 1 Fraunhofer Fit 1 Bscw 2026-06-16 7.5 HIGH N/A
config_converters.py in BSCW (Basic Support for Cooperative Work) 3.x and versions before 4.06 allows remote attackers to execute arbitrary commands via shell metacharacters in the file name during filename conversion.
CVE-2002-0093 1 Compaq 1 Tru64 2026-06-16 7.2 HIGH N/A
Buffer overflow in ipcs for HP Tru64 UNIX 4.0f through 5.1a may allow attackers to execute arbitrary code, a different vulnerability than CVE-2001-0423.
CVE-2002-0092 1 Cvs 1 Cvs 2026-06-16 5.0 MEDIUM N/A
CVS before 1.10.8 does not properly initialize a global variable, which allows remote attackers to cause a denial of service (server crash) via the diff capability.
CVE-2002-0091 1 Nswc 1 Cider Shadow 2026-06-16 7.5 HIGH N/A
Multiple CGI scripts in CIDER SHADOW 1.5 and 1.6 allows remote attackers to execute arbitrary commands via certain form fields.
CVE-2002-0090 1 Sun 1 Solaris 2026-06-16 7.2 HIGH N/A
Buffer overflow in Low BandWidth X proxy (lbxproxy) in Solaris 8 allows local users to execute arbitrary code via a long display command line option.