Vulnerabilities (CVE)

Total 196854 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2002-0774 1 Hosting Controller 1 Hosting Controller 2008-09-05 10.0 HIGH N/A
Hosting Controller creates a default user AdvWebadmin with a default password, which could allow remote attackers to gain privileges if the password is not changed.
CVE-2002-0775 1 Hosting Controller 1 Hosting Controller 2008-09-05 5.0 MEDIUM N/A
browse.asp in Hosting Controller allows remote attackers to view arbitrary directories by specifying the target pathname in the FilePath parameter.
CVE-2002-0776 1 Hosting Controller 1 Hosting Controller 2008-09-05 7.5 HIGH N/A
getuserdesc.asp in Hosting Controller 2002 allows remote attackers to change the passwords of arbitrary users and gain privileges by modifying the username parameter, as addressed by the "UpdateUser" hot fix.
CVE-2002-0777 1 Ipswitch 1 Imail 2008-09-05 10.0 HIGH N/A
Buffer overflow in the LDAP component of Ipswitch IMail 7.1 and earlier allows remote attackers to execute arbitrary code via a long "bind DN" parameter.
CVE-2002-0779 1 Novell 1 Bordermanager 2008-09-05 5.0 MEDIUM N/A
FTP proxy server for Novell BorderManager 3.6 SP 1a allows remote attackers to cause a denial of service (network connectivity loss) via a connection to port 21 with a large amount of random data.
CVE-2002-0780 1 Novell 1 Bordermanager 2008-09-05 5.0 MEDIUM N/A
IP/IPX gateway for Novell BorderManager 3.6 SP 1a allows remote attackers to cause a denial of service via a connection to port 8225 with a large amount of random data, which causes ipipxgw.nlm to ABEND.
CVE-2002-0781 1 Novell 1 Bordermanager 2008-09-05 5.0 MEDIUM N/A
RTSP proxy for Novell BorderManager 3.6 SP 1a allows remote attackers to cause a denial of service via a GET request to port 9090 followed by a series of carriage returns, which causes proxy.nlm to ABEND.
CVE-2002-0782 1 Novell 1 Bordermanager 2008-09-05 5.0 MEDIUM N/A
Novell BorderManager 3.5 with PAT (Port-Address Translate) enabled allows remote attackers to cause a denial of service by filling the connection table with a large number of connection requests to hosts that do not have a specific route, which may be forwarded to the public interface.
CVE-2002-0783 1 Opera Software 1 Opera Web Browser 2008-09-05 7.5 HIGH N/A
Opera 6.01, 6.0, and 5.12 allows remote attackers to execute arbitrary JavaScript in the security context of other sites by setting the location of a frame or iframe to a Javascript: URL.
CVE-2002-0784 1 Lysias 1 Lidik Webserver 2008-09-05 5.0 MEDIUM N/A
Directory traversal vulnerability in Lysias Lidik web server 0.7b allows remote attackers to list directories via an HTTP request with a ... (modified dot dot).
CVE-2002-0785 1 Aol 1 Instant Messenger 2008-09-05 5.0 MEDIUM N/A
AOL Instant Messenger (AIM) allows remote attackers to cause a denial of service (crash) via an "AddBuddy" link with the ScreenName parameter set to a large number of comma-separated values, possibly triggering a buffer overflow.
CVE-2002-0786 1 Critical Path 1 Injoin Directory Server 2008-09-05 5.0 MEDIUM N/A
iCon administrative web server for Critical Path inJoin Directory Server 4.0 allows authenticated inJoin administrators to read arbitrary files by specifying the target file in the LOG parameter.
CVE-2002-0787 1 Critical Path 1 Injoin Directory Server 2008-09-05 7.5 HIGH N/A
Cross-site scripting vulnerabilities in iCon administrative web server for Critical Path inJoin Directory Server 4.0 allow remote attackers to execute script as the administrator via administrator URLs with modified (1) LOCID or (2) OC parameters.
CVE-2002-0789 1 Mnogosearch 1 Mnogosearch 2008-09-05 7.5 HIGH N/A
Buffer overflow in search.cgi in mnoGoSearch 3.1.19 and earlier allows remote attackers to execute arbitrary code via a long query (q) parameter.
CVE-2002-0791 1 Novell 1 Netware 2008-09-05 5.0 MEDIUM N/A
Novell Netware FTP server NWFTPD before 5.02r allows remote attackers to cause a denial of service (CPU consumption) via a connection to the server followed by a carriage return, and possibly other invalid commands with improper syntax or length.
CVE-2002-0792 1 Cisco 2 Content Services Switch 11000, Webns 2008-09-05 5.0 MEDIUM N/A
The web management interface for Cisco Content Service Switch (CSS) 11000 switches allows remote attackers to cause a denial of service (soft reset) via (1) an HTTPS POST request, or (2) malformed XML data.
CVE-2002-0794 1 Freebsd 1 Freebsd 2008-09-05 5.0 MEDIUM N/A
The accept_filter mechanism in FreeBSD 4 through 4.5 does not properly remove entries from the incomplete listen queue when adding a syncache, which allows remote attackers to cause a denial of service (network service availability) via a large number of connection attempts, which fills the queue.
CVE-2002-0795 1 Freebsd 1 Freebsd 2008-09-05 2.1 LOW N/A
The rc system startup script for FreeBSD 4 through 4.5 allows local users to delete arbitrary files via a symlink attack on X Windows lock files.
CVE-2002-0799 1 Youngzsoft 1 Cmailserver 2008-09-05 7.5 HIGH N/A
Buffer overflow in YoungZSoft CMailServer 3.30 allows remote attackers to execute arbitrary code via a long USER argument.
CVE-2002-0800 1 Working Resources Inc. 1 Badblue 2008-09-05 5.0 MEDIUM N/A
BadBlue 1.7.0 allows remote attackers to list the contents of directories via a URL with an encoded '%' character at the end.