CVE-2002-1266
- EPSS 0.32%
- Veröffentlicht 11.12.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:59:01
Mac OS X 10.2.2 allows local users to gain privileges by mounting a disk image file that was created on another system, aka "Local User Privilege Elevation via Disk Image File."
- EPSS 1.54%
- Veröffentlicht 11.12.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:59:01
Mac OS X 10.2.2 allows remote attackers to cause a denial of service by accessing the CUPS Printing Web Administration utility, aka "CUPS Printing Web Administration is Remotely Accessible."
CVE-2002-1268
- EPSS 0.32%
- Veröffentlicht 11.12.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:59:01
Mac OS X 10.2.2 allows local users to gain privileges via a mounted ISO 9600 CD, aka "User Privilege Elevation via Mounting an ISO 9600 CD."
CVE-2002-1269
- EPSS 0.31%
- Veröffentlicht 11.12.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:59:02
Unknown vulnerability in NetInfo Manager application in Mac OS X 10.2.2 allows local users to access restricted parts of a filesystem.
CVE-2002-1270
- EPSS 0.33%
- Veröffentlicht 11.12.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:59:02
Mac OS X 10.2.2 allows local users to read files that only allow write access via the map_fd() Mach system call.
- EPSS 2.5%
- Veröffentlicht 12.11.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:59:01
The Sun RPC functionality in multiple libc implementations does not provide a time-out mechanism when reading data from TCP connections, which allows remote attackers to cause a denial of service (hang).
- EPSS 2.47%
- Veröffentlicht 04.11.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:57:54
IPSEC implementations including (1) FreeS/WAN and (2) KAME do not properly calculate the length of authentication data, which allows remote attackers to cause a denial of service (kernel panic) via spoofed, short Encapsulating Security Payload (ESP) ...
CVE-2002-0655
- EPSS 8.17%
- Veröffentlicht 12.08.2002 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:57:52
OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, does not properly handle ASCII representations of integers on 64 bit platforms, which could allow attackers to cause a denial of service and possibly execute arbitrary code.
CVE-2002-0656
- EPSS 89.82%
- Veröffentlicht 12.08.2002 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:57:52
Buffer overflows in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, allow remote attackers to execute arbitrary code via (1) a large client master key in SSL2 or (2) a large session ID in SSL3.
- EPSS 36.04%
- Veröffentlicht 12.08.2002 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:57:53
The ASN1 library in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, allows remote attackers to cause a denial of service via invalid encodings.