|
270001
|
- |
|
websight_directory_system
|
websight_directory_system
|
Cross-site scripting vulnerability in WebSight Directory System 0.1 allows remote attackers to execute arbitrary Javascript and gain access to the WebSight administrator via a new link submission con…
|
NVD-CWE-Other
|
CVE-2002-0494
|
2008-09-6 05:28 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270002
|
- |
|
websight_directory_system
|
websight_directory_system
|
This vulnerability is addressed in the following product release:
WebSight Directory System, WebSight Directory System, 0.1.1
|
NVD-CWE-Other
|
CVE-2002-0494
|
2008-09-6 05:28 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270003
|
- |
|
southwest
|
southwest
|
The HTTP server for SouthWest Talker server 1.0.0 allows remote attackers to cause a denial of service (server crash) via a malformed URL to port 5002.
|
NVD-CWE-Other
|
CVE-2002-0496
|
2008-09-6 05:28 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270004
|
- |
|
mtr
|
mtr
|
Buffer overflow in mtr 0.46 and earlier, when installed setuid root, allows local users to access a raw socket via a long MTR_OPTIONS environment variable.
|
NVD-CWE-Other
|
CVE-2002-0497
|
2008-09-6 05:28 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270005
|
- |
|
etnus
|
totalview
|
Etnus TotalView 5.0.0-4 installs certain files with UID 5039 and GID 59, which could allow local users with that UID or GID to modify the files and gain privileges as other TotalView users.
|
NVD-CWE-Other
|
CVE-2002-0498
|
2008-09-6 05:28 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270006
|
- |
|
linux
|
linux_kernel
|
The d_path function in Linux kernel 2.2.20 and earlier, and 2.4.18 and earlier, truncates long pathnames without generating an error, which could allow local users to force programs to perform inappr…
|
NVD-CWE-Other
|
CVE-2002-0499
|
2008-09-6 05:28 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270007
|
- |
|
posadis
|
posadis
|
Format string vulnerability in log_print() function of Posadis DNS server before version m5pre2 allows local users and possibly remote attackers to execute arbitrary code via format strings that are …
|
NVD-CWE-Other
|
CVE-2002-0501
|
2008-09-6 05:28 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270008
|
- |
|
citrix
|
nfuse
|
Directory traversal vulnerability in boilerplate.asp for Citrix NFuse 1.5 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the NFuse_Template parameter.
|
NVD-CWE-Other
|
CVE-2002-0503
|
2008-09-6 05:28 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270009
|
- |
|
citrix
|
nfuse
|
Cross-site scripting vulnerability in Citrix NFuse 1.6 and earlier does not quote results from the getLastError method, which allows remote attackers to execute script in other clients via the NFuse_…
|
NVD-CWE-Other
|
CVE-2002-0504
|
2008-09-6 05:28 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270010
|
- |
|
cisco
|
call_manager
|
Memory leak in the Call Telephony Integration (CTI) Framework authentication for Cisco CallManager 3.0 and 3.1 before 3.1(3) allows remote attackers to cause a denial of service (crash and reload) vi…
|
NVD-CWE-Other
|
CVE-2002-0505
|
2008-09-6 05:28 |
2002-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
