Search
14,626 CVEs · Low severity
CVEs (14,626, showing first 500)
Only the first 500 CVEs (by current sort) are shown when searching without a keyword. Add a search term above to narrow the results.
Showing 476–500 of 14,626 (capped at 500)
| CVE ID ↑ | Severity | Patch | CVSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2002-0296 | LOW | 1.2 | 2002-05-31 | The installation of Tarantella Enterprise 3 allows local users to overwrite arbitrary files via a symlink attack on the "spinning" temporary file. | |
| CVE-2002-0334 | LOW | Patched | 2.1 | 2002-06-25 | xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows local users to modify files via a symlink attack on the .xtell-log file. |
| CVE-2002-0355 | LOW | Patched | 2.1 | 2002-05-29 | netstat in SGI IRIX before 6.5.12 allows local users to determine the existence of files on the system, even if the users do not have the appropriate permissions. |
| CVE-2002-0377 | LOW | 2.1 | 2002-05-29 | Gaim 0.57 stores sensitive information in world-readable and group-writable files in the /tmp directory, which allows local users to access MSN web email accounts of other … | |
| CVE-2002-0389 | LOW | 2.1 | 2002-06-18 | Pipermail in Mailman stores private mail messages with predictable filenames in a world-executable directory, which allows local users to read private mailing list archives. | |
| CVE-2002-0415 | LOW | 1.7 | 2002-08-12 | Directory traversal vulnerability in the web server used in RealPlayer 6.0.7, and possibly other versions, may allow local users to read files that are accessible to RealPl… | |
| CVE-2002-0422 | LOW | 2.6 | 2002-08-12 | IIS 5 and 5.1 supporting WebDAV methods allows remote attackers to determine the internal IP address of the system (which may be obscured by NAT) via (1) a PROPFIND HTTP re… | |
| CVE-2002-0429 | LOW | 3.6 | 2002-08-12 | The iBCS routines in arch/i386/kernel/traps.c for Linux kernels 2.4.18 and earlier on x86 systems allow local users to kill arbitrary processes via a a binary compatibility… | |
| CVE-2002-0430 | LOW | 3.7 | 2002-08-12 | MultiFileUploadHandler.php in the Sun Cobalt RaQ XTR administration interface allows local users to bypass authentication and overwrite arbitrary files via a symlink attack… | |
| CVE-2002-0435 | LOW | 1.2 | 2002-07-26 | Race condition in the recursive (1) directory deletion and (2) directory move in GNU File Utilities (fileutils) 4.1 and earlier allows local users to delete directories as … | |
| CVE-2002-0497 | LOW | 2.1 | 2002-08-12 | Buffer overflow in mtr 0.46 and earlier, when installed setuid root, allows local users to access a raw socket via a long MTR_OPTIONS environment variable. | |
| CVE-2002-0499 | LOW | 2.1 | 2002-08-12 | The d_path function in Linux kernel 2.2.20 and earlier, and 2.4.18 and earlier, truncates long pathnames without generating an error, which could allow local users to force… | |
| CVE-2002-0507 | LOW | 2.1 | 2002-08-12 | An interaction between Microsoft Outlook Web Access (OWA) with RSA SecurID allows local users to bypass the SecurID authentication for a previous user via several submissio… | |
| CVE-2002-0568 | LOW | 2.1 | 2002-07-03 | Oracle 9i Application Server stores XSQL and SOAP configuration files insecurely, which allows local users to obtain sensitive information including usernames and passwords… | |
| CVE-2002-0570 | LOW | 2.1 | 2002-07-03 | The encrypted loop device in Linux kernel 2.4.10 and earlier does not authenticate the entity that is encrypting data, which allows local users to modify encrypted data wit… | |
| CVE-2002-0577 | LOW | 2.1 | 2002-06-18 | Vulnerability in passwd for HP-UX 11.00 and 11.11 allows local users to corrupt the password file and cause a denial of service. | |
| CVE-2002-0662 | LOW | 2.1 | 2002-10-04 | scrollkeeper-get-cl in ScrollKeeper 0.3 to 0.3.11 allows local users to create and overwrite files via a symlink attack on the scrollkeeper-tempfile.x temporary files. | |
| CVE-2002-0701 | LOW | 2.1 | 2002-07-23 | ktrace in BSD-based operating systems allows the owner of a process with special privileges to trace the process after its privileges have been lowered, which may allow the… | |
| CVE-2002-0712 | LOW | 2.1 | 2004-02-03 | Entrust Authority Security Manager (EASM) 6.0 does not properly require multiple master users to change the password of a master user, which could allow a master user to pe… | |
| CVE-2002-0760 | LOW | Patched | 1.2 | 2002-08-12 | Race condition in bzip2 before 1.0.2 in FreeBSD 4.5 and earlier, OpenLinux 3.1 and 3.1.1, and possibly other operating systems, decompresses files with world-readable permi… |
| CVE-2002-0761 | LOW | Patched | 2.1 | 2002-08-12 | bzip2 before 1.0.2 in FreeBSD 4.5 and earlier, OpenLinux 3.1 and 3.1.1, and possibly systems, uses the permissions of symbolic links instead of the actual files when creati… |
| CVE-2002-0790 | LOW | 2.1 | 2002-08-12 | clchkspuser and clpasswdremote in AIX expose an encrypted password in the cspoc.log file, which could allow local users to gain privileges. | |
| CVE-2002-0795 | LOW | 2.1 | 2002-08-12 | The rc system startup script for FreeBSD 4 through 4.5 allows local users to delete arbitrary files via a symlink attack on X Windows lock files. | |
| CVE-2002-0798 | LOW | 2.1 | 2002-08-12 | Vulnerability in swinstall for HP-UX 11.00 and 11.11 allows local users to view obtain data views for files that cannot be directly read by the user, which reportedly can b… | |
| CVE-2002-0806 | LOW | Patched | 2.1 | 2002-08-12 | Bugzilla 2.14 before 2.14.2, and 2.16 before 2.16rc2, allows authenticated users with editing privileges to delete other users by directly calling the editusers.cgi script … |