Security Vulnerabilities, CVEs, Published In 2002 (Denial of service)
create_keyfiles in PSSP 3.2 with DCE 3.1 authentication on AIX creates keyfile directories with world-writable permissions, which could allow a local user to delete key files and cause a denial of service.
Max CVSS
3.6
EPSS Score
0.04%
Published
2002-02-13
Updated
2017-10-10
Buffer overflow in digest calculation function of multiple RADIUS implementations allows remote attackers to cause a denial of service and possibly execute arbitrary code via shared secret data.
Max CVSS
7.5
EPSS Score
3.66%
Published
2002-03-04
Updated
2018-10-30
Multiple RADIUS implementations do not properly validate the Vendor-Length of the Vendor-Specific attribute, which allows remote attackers to cause a denial of service (crash) via a Vendor-Length that is less than 2.
Max CVSS
5.0
EPSS Score
0.36%
Published
2002-03-04
Updated
2018-10-30
Memory leak in the SNMP LAN Manager (LANMAN) MIB extension for Microsoft Windows 2000 before SP3, when the Print Spooler is not running, allows remote attackers to cause a denial of service (memory consumption) via a large number of GET or GETNEXT requests.
Max CVSS
5.0
EPSS Score
1.41%
Published
2002-10-22
Updated
2019-04-30
Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges via SNMPv1 trap handling, as demonstrated by the PROTOS c06-SNMPv1 test suite. NOTE: It is highly likely that this candidate will be SPLIT into multiple candidates, one or more for each vendor. This and other SNMP-related candidates will be updated when more accurate information is available.
Max CVSS
10.0
EPSS Score
94.92%
Published
2002-02-13
Updated
2018-10-12
Vulnerabilities in the SNMPv1 request handling of a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges via (1) GetRequest, (2) GetNextRequest, and (3) SetRequest messages, as demonstrated by the PROTOS c06-SNMPv1 test suite. NOTE: It is highly likely that this candidate will be SPLIT into multiple candidates, one or more for each vendor. This and other SNMP-related candidates will be updated when more accurate information is available.
Max CVSS
10.0
EPSS Score
91.55%
Published
2002-02-13
Updated
2018-10-12
Network Product Identification (PID) Checker in Microsoft Office v. X for Mac allows remote attackers to cause a denial of service (crash) via a malformed product announcement.
Max CVSS
5.0
EPSS Score
3.78%
Published
2002-03-08
Updated
2018-10-12
Vulnerability in the cache-limiting function of the unified name service daemon (nsd) in IRIX 6.5.4 through 6.5.11 allows remote attackers to cause a denial of service by forcing the cache to fill the disk.
Max CVSS
5.0
EPSS Score
1.30%
Published
2002-01-31
Updated
2017-10-10
rpcbind in SGI IRIX 6.5 through 6.5.15f, and possibly earlier versions, allows remote attackers to cause a denial of service (crash) via malformed RPC packets with invalid lengths.
Max CVSS
5.0
EPSS Score
0.21%
Published
2002-03-28
Updated
2008-09-05
Vulnerability in the XFS file system for SGI IRIX before 6.5.12 allows local users to cause a denial of service (hang) by creating a file that is not properly processed by XFS.
Max CVSS
2.1
EPSS Score
0.04%
Published
2002-06-18
Updated
2008-09-05
CIPE VPN package before 1.3.0-3 allows remote attackers to cause a denial of service (crash) via a short malformed packet.
Max CVSS
5.0
EPSS Score
0.84%
Published
2002-01-31
Updated
2017-10-10
Multiple signedness errors (mixed signed and unsigned numbers) in the I/O functions of rsync 2.4.6, 2.3.2, and other versions allow remote attackers to cause a denial of service and execute arbitrary code in the rsync client or server.
Max CVSS
10.0
EPSS Score
91.75%
Published
2002-02-27
Updated
2016-10-18
Buffer overflow in SNMP agent service in Windows 95/98/98SE, Windows NT 4.0, Windows 2000, and Windows XP allows remote attackers to cause a denial of service or execute arbitrary code via a malformed management request. NOTE: this candidate may be split or merged with other candidates. This and other PROTOS-related candidates, especially CVE-2002-0012 and CVE-2002-0013, will be updated when more accurate information is available.
Max CVSS
7.5
EPSS Score
26.09%
Published
2002-03-08
Updated
2018-10-12
SMTP service in Microsoft Windows 2000, Windows XP Professional, and Exchange 2000 allows remote attackers to cause a denial of service via a command with a malformed data transfer (BDAT) request.
Max CVSS
5.0
EPSS Score
96.32%
Published
2002-03-08
Updated
2020-04-09
Squid 2.4 STABLE3 and earlier allows remote attackers to cause a denial of service (core dump) and possibly execute arbitrary code with an ftp:// URL with a larger number of special characters, which exceed the buffer when Squid URL-escapes the characters.
Max CVSS
7.5
EPSS Score
43.97%
Published
2002-03-08
Updated
2016-10-18
Memory leak in SNMP in Squid 2.4 STABLE3 and earlier allows remote attackers to cause a denial of service.
Max CVSS
2.6
EPSS Score
3.32%
Published
2002-03-08
Updated
2016-10-18
Buffer overflow in the ism.dll ISAPI extension that implements HTR scripting in Internet Information Server (IIS) 4.0 and 5.0 allows attackers to cause a denial of service or execute arbitrary code via HTR requests with long variable names.
Max CVSS
7.5
EPSS Score
34.45%
Published
2002-04-22
Updated
2018-10-30
The w3svc.dll ISAPI filter in Front Page Server Extensions and ASP.NET for Internet Information Server (IIS) 4.0, 5.0, and 5.1 does not properly handle the error condition when a long URL is provided, which allows remote attackers to cause a denial of service (crash) when the URL parser accesses a null pointer.
Max CVSS
5.0
EPSS Score
10.74%
Published
2002-04-22
Updated
2020-11-23
The FTP service in Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows attackers who have established an FTP session to cause a denial of service via a specially crafted status request containing glob characters.
Max CVSS
5.0
EPSS Score
96.62%
Published
2002-04-22
Updated
2020-11-23
Buffer overflow in the chunked encoding transfer mechanism in Internet Information Server (IIS) 4.0 and 5.0 Active Server Pages allows attackers to cause a denial of service or execute arbitrary code.
Max CVSS
7.5
EPSS Score
96.48%
Published
2002-04-22
Updated
2018-10-30
cachefsd in Solaris 2.6, 7, and 8 allows remote attackers to cause a denial of service (crash) via an invalid procedure call in an RPC request.
Max CVSS
5.0
EPSS Score
2.91%
Published
2002-03-15
Updated
2018-10-30
CVS before 1.10.8 does not properly initialize a global variable, which allows remote attackers to cause a denial of service (server crash) via the diff capability.
Max CVSS
5.0
EPSS Score
0.98%
Published
2002-03-15
Updated
2016-10-18
Buffer overflow in Michael Lamont Savant Web Server 3.0 allows remote attackers to cause a denial of service (crash) via a long HTTP request to the cgi-bin directory in which the CGI program name contains a large number of . (dot) characters.
Max CVSS
5.0
EPSS Score
1.26%
Published
2002-03-25
Updated
2016-10-18
Microsoft Internet Explorer 6.0 and earlier allows local users to cause a denial of service via an infinite loop for modeless dialogs showModelessDialog, which causes CPU usage while the focus for the dialog is not released.
Max CVSS
5.0
EPSS Score
0.04%
Published
2002-03-25
Updated
2021-07-23
Oracle9iAS Web Cache 2.0.0.x allows remote attackers to cause a denial of service via (1) a request to TCP ports 1100, 4000, 4001, and 4002 with a large number of null characters, and (2) a request to TCP port 4000 with a large number of "." characters.
Max CVSS
5.0
EPSS Score
2.06%
Published
2002-03-25
Updated
2017-12-19