Total
29796 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2005-0201 | 2 D-bus, Redhat | 2 D-bus, Enterprise Linux | 2025-04-03 | N/A |
| D-BUS (dbus) before 0.22 does not properly restrict access to a socket, if the socket address is known, which allows local users to listen or send arbitrary messages on another user's per-user session bus via that socket. | ||||
| CVE-2002-2026 | 1 Browseftp | 1 Browseftp Client | 2025-04-03 | N/A |
| Buffer overflow in BrowseFTP 1.62 client allows remote FTP servers to execute arbitrary code via a long FTP "220" message reply. | ||||
| CVE-2002-2041 | 1 Qnx | 1 Rtos | 2025-04-03 | N/A |
| Multiple buffer overflows in realtime operating system (RTOS) 6.1.0 allows local users to execute arbitrary code via (1) a long ABLANG environment variable in phlocale or (2) a long -u option to pkg-installer. | ||||
| CVE-2002-2047 | 1 Sketch | 1 Sketch | 2025-04-03 | N/A |
| The file preview functionality in Sketch 0.6.12 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an encapsulated Postscript (EPS) file. | ||||
| CVE-2002-2064 | 1 Phpwebgallery | 1 Phpwebgallery | 2025-04-03 | N/A |
| isadmin.php in PhpWebGallery 1.0 allows remote attackers to gain administrative access via by setting the photo_login cookie to pseudo. | ||||
| CVE-2002-2065 | 1 Webcalendar | 1 Webcalendar | 2025-04-03 | N/A |
| WebCalendar 0.9.34 and earlier with 'browsing in includes directory' enabled allows remote attackers to read arbitrary include files with .inc extensions from the web root. | ||||
| CVE-2002-2063 | 1 Atguard | 1 Atguard Personal Firewall | 2025-04-03 | N/A |
| AtGuard 3.2 allows remote attackers to bypass firwall filters and execute prohibited programs by changing the filenames to permitted filenames. | ||||
| CVE-2002-2074 | 1 Erwin Lansing | 1 Mailidx | 2025-04-03 | N/A |
| SQL injection vulnerability in Mailidx before 20020105 allows remote attackers to execute arbitrary SQL commands via the search web page. | ||||
| CVE-2002-2091 | 1 Decfingerd | 1 Decfingerd | 2025-04-03 | N/A |
| Format string vulnerability in Deception Finger Daemon, decfingerd, 0.7 may allow remote attackers to execute arbitrary code via the username of a finger request. | ||||
| CVE-2002-2093 | 1 Sgi | 1 Irix | 2025-04-03 | N/A |
| The Video Control Panel on SGI O2/IRIX 6.5, when the Default Input is set to "Output Video", allows attackers to access a console session by running videoout then videoin. | ||||
| CVE-2002-2088 | 1 Mosix Project | 1 Clump Os | 2025-04-03 | N/A |
| The MOSIX Project clump/os 5.4 creates a default VNC account without a password, which allows remote attackers to gain root access. | ||||
| CVE-2002-2114 | 1 Netjuke | 1 Netjuke | 2025-04-03 | N/A |
| Artekopia Netjuke before 1.0 b7 allows remote attackers to execute arbitrary code on the web server, possibly via the section parameter, which is passed to an eval call. | ||||
| CVE-2002-2111 | 1 Gianni Tedesco | 1 Fwmon | 2025-04-03 | N/A |
| Fwmon before 1.0.10 allows remote attackers to cause a denial of service (crash) by causing the kernel to return a large packet. | ||||
| CVE-2005-0229 | 1 Citrusdb | 1 Citrusdb Customer Database | 2025-04-03 | N/A |
| CitrusDB 0.3.5 and earlier stores the newfile.txt temporary data file under the web root, which allows remote attackers to steal credit card information via a direct request to newfile.txt. | ||||
| CVE-2002-2110 | 1 Rca | 1 Digital Cable Modem | 2025-04-03 | N/A |
| The RCA Digital Cable Modems DCM225 and DCM225E allow remote attackers to cause a denial of service (modem device reset) by connecting to port 80 on the 10.0.0.0/8 device. | ||||
| CVE-2002-2113 | 1 Agh | 1 Htmlsearch | 2025-04-03 | N/A |
| search.cgi in AGH HTMLsearch 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the template parameter. | ||||
| CVE-2002-2115 | 1 Hns | 2 Hns, Hns-lite | 2025-04-03 | N/A |
| Cross-site scripting (XSS) vulnerability in Hyper NIKKI System (HNS) Lite before 0.9 and HNS before 2.10-pl2 allows remote attackers to inject arbitrary web script or HTML. | ||||
| CVE-2002-2121 | 1 Surfcontrol | 1 Superscout Email Filter | 2025-04-03 | N/A |
| SurfControl SuperScout Email filter for SMTP 3.5.1 allows remote attackers to cause a denial of service (crash) via a long SMTP (1) HELO or (2) RCPT TO command, possibly due to a buffer overflow. | ||||
| CVE-2002-2123 | 1 Gallery Project | 1 Gallery | 2025-04-03 | N/A |
| PHP remote file inclusion vulnerability in publish_xp_docs.php for Gallery 1.3.2 allows remote attackers to inject arbitrary PHP code by specifying a URL to an init.php file in the GALLERY_BASEDIR parameter. | ||||
| CVE-2005-2410 | 1 Gnome | 1 Networkmanager | 2025-04-03 | N/A |
| Format string vulnerability in the nm_info_handler function in Network Manager may allow remote attackers to execute arbitrary code via format string specifiers in a Wireless Access Point identifier, which is not properly handled in a syslog call. | ||||