272201
|
- |
|
realnetworks
|
realjukebox_2 realjukebox_2_plus realone_player
|
RealJukebox 2 1.0.2.340 and 1.0.2.379, and RealOne Player Gold 6.0.10.505, allows remote attackers to execute arbitrary script in the Local computer zone by inserting the script into the skin.ini fil…
|
NVD-CWE-Other
|
CVE-2002-1015
|
2008-09-6 05:29 |
2002-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272202
|
- |
|
adobe
|
digital_editions
|
Adobe eBook Reader allows a user to bypass restrictions for copy, print, lend, and give operations by backing up key data files, performing the operations, and restoring the original data files.
|
NVD-CWE-Other
|
CVE-2002-1016
|
2008-09-6 05:29 |
2002-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272203
|
- |
|
adobe
|
digital_editions
|
Adobe eBook Reader 2.1 and 2.2 allows a user to copy eBooks to other systems by using the backup feature, capturing the encryption Challenge, and using the appropriate hash function to generate the a…
|
NVD-CWE-Other
|
CVE-2002-1017
|
2008-09-6 05:29 |
2002-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272204
|
- |
|
working_resources_inc.
|
badblue
|
BadBlue server allows remote attackers to read restricted files, such as EXT.INI, via an HTTP request that contains a hex-encoded null byte.
|
NVD-CWE-Other
|
CVE-2002-1021
|
2008-09-6 05:29 |
2002-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272205
|
- |
|
working_resources_inc.
|
badblue
|
BadBlue server stores passwords in plaintext in the ext.ini file, which could allow local and possibly remote attackers to gain privileges.
|
NVD-CWE-Other
|
CVE-2002-1022
|
2008-09-6 05:29 |
2002-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272206
|
- |
|
working_resources_inc.
|
badblue
|
BadBlue server allows remote attackers to cause a denial of service (crash) via an HTTP GET request without a URI.
|
NVD-CWE-Other
|
CVE-2002-1023
|
2008-09-6 05:29 |
2002-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272207
|
- |
|
macromedia
|
jrun
|
JRun 3.0 through 4.0 allows remote attackers to read JSP source code via an encoded null byte in an HTTP GET request, which causes the server to send the .JSP file unparsed.
|
NVD-CWE-Other
|
CVE-2002-1025
|
2008-09-6 05:29 |
2002-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272208
|
- |
|
macromedia
|
sitespring
|
Macromedia Sitespring 1.2.0 (277.1) using Sybase runtime engine 7.0.2.1480 allows remote attackers to cause a denial of service (crash) via a long malformed request to TCP port 2500, possibly trigger…
|
NVD-CWE-Other
|
CVE-2002-1026
|
2008-09-6 05:29 |
2002-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272209
|
- |
|
macromedia
|
sitespring
|
Cross-site scripting vulnerability in the default HTTP 500 error script (500error.jsp) for Macromedia Sitespring 1.2.0 (277.1) allows remote attackers to execute arbitrary web script via a link to 50…
|
NVD-CWE-Other
|
CVE-2002-1027
|
2008-09-6 05:29 |
2002-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
272210
|
- |
|
oddsock
|
song_requester
|
Multiple buffer overflows in the CGI programs for Oddsock Song Requester WinAmp plugin 2.1 allow remote attackers to cause a denial of service (crash) via long arguments.
|
NVD-CWE-Other
|
CVE-2002-1028
|
2008-09-6 05:29 |
2002-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|