| | CVE-2002-0149 |  Microsoft | high | 7.5 | 52.4%
| | Buffer overflow in ASP Server-Side Include Function in IIS 4.0, 5.0 and 5.1 allows remote attackers … | Apr 22, 2002 | Apr 16, 2026 |
| | CVE-2002-0148 | Microsoft | high | 7.5 | 74.2%
| | Cross-site scripting vulnerability in Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remo… | Apr 22, 2002 | Apr 16, 2026 |
| | CVE-2002-0147 | Microsoft | high | 7.5 | 40.1%
| | Buffer overflow in the ASP data transfer mechanism in Internet Information Server (IIS) 4.0, 5.0, an… | Apr 22, 2002 | Apr 16, 2026 |
| | CVE-2002-0079 | Microsoft | high | 7.5 | 83.6%
| | Buffer overflow in the chunked encoding transfer mechanism in Internet Information Server (IIS) 4.0 … | Apr 22, 2002 | Apr 16, 2026 |
| | CVE-2002-0075 | Microsoft | high | 7.5 | 69.5%
| | Cross-site scripting vulnerability for Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows rem… | Apr 22, 2002 | Apr 16, 2026 |
| | CVE-2002-0074 | Microsoft | high | 7.5 | 69.5%
| | Cross-site scripting vulnerability in Help File search facility for Internet Information Server (IIS… | Apr 22, 2002 | Apr 16, 2026 |
| | CVE-2002-0073 | Microsoft | medium | 5.0 | 64.0%
| | The FTP service in Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows attackers who have esta… | Apr 22, 2002 | Apr 16, 2026 |
| | CVE-2002-0072 | Microsoft | medium | 5.0 | 33.4%
| | The w3svc.dll ISAPI filter in Front Page Server Extensions and ASP.NET for Internet Information Serv… | Apr 22, 2002 | Apr 16, 2026 |
| | CVE-2002-0071 | Microsoft | high | 7.5 | 69.5%
| | Buffer overflow in the ism.dll ISAPI extension that implements HTR scripting in Internet Information… | Apr 22, 2002 | Apr 16, 2026 |
| | CVE-2002-1592 |  Apache | medium | 5.0 | 5.5%
| | The ap_log_rerror function in Apache 2.0 through 2.035, when a CGI application encounters an error, … | May 6, 2002 | Apr 16, 2026 |
| | CVE-2002-0185 | Apache | high | 7.5 | 4.0%
| | mod_python version 2.7.6 and earlier allows a module indirectly imported by a published module to th… | May 16, 2002 | Apr 16, 2026 |
| | CVE-2002-0225 |  Cisco | medium | 4.6 | 0.2%
| | tac_plus Tacacs+ daemon F4.0.4.alpha, originally maintained by Cisco, creates files from the account… | May 16, 2002 | Apr 16, 2026 |
| | CVE-2002-1056 | Microsoft | high | 7.5 | 16.4%
| | Microsoft Outlook 2000 and 2002, when configured to use Microsoft Word as the email editor, does not… | May 16, 2002 | Apr 16, 2026 |
| | CVE-2002-0228 | Microsoft | medium | 5.0 | 28.6%
| | Microsoft MSN Messenger allows remote attackers to use Javascript that references an ActiveX object … | May 16, 2002 | Apr 16, 2026 |
| | CVE-2002-0224 | Microsoft | medium | 5.0 | 58.3%
| | The MSDTC (Microsoft Distributed Transaction Service Coordinator) for Microsoft Windows 2000, Micros… | May 16, 2002 | Apr 16, 2026 |
| | CVE-2002-0154 | Microsoft | high | 7.5 | 23.6%
| | Buffer overflows in extended stored procedures for Microsoft SQL Server 7.0 and 2000 allow remote at… | May 16, 2002 | Apr 16, 2026 |
| | CVE-2002-1447 | Cisco | high | 7.2 | 1.4%
| | Buffer overflow in the vpnclient program for UNIX VPN Client before 3.5.2 allows local users to gain… | May 28, 2002 | Apr 16, 2026 |
| | CVE-2002-0257 | Apache | high | 7.5 | 6.6%
| | Cross-site scripting vulnerability in auction.pl of MakeBid Auction Deluxe 3.30 allows remote attack… | May 29, 2002 | Apr 16, 2026 |
| | CVE-2002-0249 | Apache | medium | 5.0 | 2.8%
| | PHP for Windows, when installed on Apache 2.0.28 beta as a standalone CGI module, allows remote atta… | May 29, 2002 | Apr 16, 2026 |
| | CVE-2002-0240 | Apache | medium | 5.0 | 1.7%
| | PHP, when installed with Apache and configured to search for index.php as a default web page, allows… | May 29, 2002 | Apr 16, 2026 |
| | CVE-2002-0241 | Cisco | high | 7.5 | 0.2%
| | NDSAuth.DLL in Cisco Secure Authentication Control Server (ACS) 3.0.1 does not check the Expired or … | May 29, 2002 | Apr 16, 2026 |
| | CVE-2002-0269 | Microsoft | high | 7.5 | 4.2%
| | Internet Explorer 5.x and 6 interprets an object as an HTML document even when its MIME Content-Type… | May 29, 2002 | Apr 16, 2026 |
| | CVE-2002-0242 | Microsoft | high | 7.5 | 3.4%
| | Cross-site scripting vulnerability in Internet Explorer 6 earlier allows remote attackers to execute… | May 29, 2002 | Apr 16, 2026 |
| | CVE-2002-0193 | Microsoft | high | 7.5 | 45.8%
| | Microsoft Internet Explorer 5.01 and 6.0 allow remote attackers to execute arbitrary code via malfor… | May 29, 2002 | Apr 16, 2026 |
| | CVE-2002-0191 | Microsoft | medium | 5.0 | 16.6%
| | Microsoft Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to view arbitrary files that c… | May 29, 2002 | Apr 16, 2026 |
| | CVE-2002-0190 | Microsoft | high | 7.5 | 18.2%
| | Microsoft Internet Explorer 5.01, 5.5 and 6.0 allows remote attackers to execute arbitrary code unde… | May 29, 2002 | Apr 16, 2026 |
| | CVE-2002-0189 | Microsoft | high | 7.5 | 13.8%
| | Cross-site scripting vulnerability in Internet Explorer 6.0 allows remote attackers to execute scrip… | May 29, 2002 | Apr 16, 2026 |
| | CVE-2002-0188 | Microsoft | high | 7.5 | 20.2%
| | Microsoft Internet Explorer 5.01 and 6.0 allow remote attackers to execute arbitrary code via malfor… | May 29, 2002 | Apr 16, 2026 |
| | CVE-2002-0155 | Microsoft | high | 7.5 | 19.1%
| | Buffer overflow in Microsoft MSN Chat ActiveX Control, as used in MSN Messenger 4.5 and 4.6, and Exc… | May 29, 2002 | Apr 16, 2026 |
| | CVE-2002-0285 | Microsoft | high | 7.5 | 7.1%
| | Outlook Express 5.5 and 6.0 on Windows treats a carriage return ("CR") in a message header as if it … | May 31, 2002 | Apr 16, 2026 |
| | CVE-2002-0368 | Microsoft | medium | 5.0 | 21.3%
| | The Store Service in Microsoft Exchange 2000 allows remote attackers to cause a denial of service (C… | Jun 18, 2002 | Apr 16, 2026 |
| | CVE-2002-0340 | Microsoft | high | 7.5 | 4.0%
| | Windows Media Player (WMP) 8.00.00.4477, and possibly other versions, automatically detects and exec… | Jun 25, 2002 | Apr 16, 2026 |
| | CVE-2002-0392 | Apache | high | 7.5 | 53.9%
| | Apache 1.3 through 1.3.24, and Apache 2.0 through 2.0.36, allows remote attackers to cause a denial … | Jul 3, 2002 | Apr 16, 2026 |
| | CVE-2002-0623 | Microsoft | high | 7.5 | 17.3%
| | Buffer overflow in AuthFilter ISAPI filter on Microsoft Commerce Server 2000 and 2002 allows remote … | Jul 3, 2002 | Apr 16, 2026 |
| | CVE-2002-0622 | Microsoft | high | 7.5 | 10.3%
| | The Office Web Components (OWC) package installer for Microsoft Commerce Server 2000 allows remote a… | Jul 3, 2002 | Apr 16, 2026 |
| | CVE-2002-0621 | Microsoft | medium | 5.0 | 16.7%
| | Buffer overflow in the Office Web Components (OWC) package installer used by Microsoft Commerce Serv… | Jul 3, 2002 | Apr 16, 2026 |
| | CVE-2002-0620 | Microsoft | medium | 5.0 | 16.0%
| | Buffer overflow in the Profile Service of Microsoft Commerce Server 2000 allows remote attackers to … | Jul 3, 2002 | Apr 16, 2026 |
| | CVE-2002-0615 | Microsoft | high | 7.5 | 11.4%
| | The Windows Media Active Playlist in Microsoft Windows Media Player 7.1 stores information in a well… | Jul 3, 2002 | Apr 16, 2026 |
| | CVE-2002-0373 | Microsoft | high | 7.2 | 1.9%
| | The Windows Media Device Manager (WMDM) Service in Microsoft Windows Media Player 7.1 on Windows 200… | Jul 3, 2002 | Apr 16, 2026 |
| | CVE-2002-0372 | Microsoft | high | 7.5 | 7.4%
| | Microsoft Windows Media Player versions 6.4 and 7.1 and Media Player for Windows XP allow remote att… | Jul 3, 2002 | Apr 16, 2026 |
| | CVE-2002-0371 | Microsoft | high | 7.5 | 60.2%
| | Buffer overflow in gopher client for Microsoft Internet Explorer 5.1 through 6.0, Proxy Server 2.0, … | Jul 3, 2002 | Apr 16, 2026 |
| | CVE-2002-0364 | Microsoft | high | 7.5 | 62.4%
| | Buffer overflow in the chunked encoding transfer mechanism in IIS 4.0 and 5.0 allows attackers to ex… | Jul 3, 2002 | Apr 16, 2026 |
| | CVE-2002-0187 | Microsoft | high | 7.5 | 14.9%
| | Cross-site scripting vulnerability in the SQLXML component of Microsoft SQL Server 2000 allows an at… | Jul 3, 2002 | Apr 16, 2026 |
| | CVE-2002-0186 | Microsoft | high | 7.5 | 73.4%
| | Buffer overflow in the SQLXML ISAPI extension of Microsoft SQL Server 2000 allows remote attackers t… | Jul 3, 2002 | Apr 16, 2026 |
| | CVE-2002-0682 | Apache | high | 7.5 | 83.1%
| | Cross-site scripting vulnerability in Apache Tomcat 4.0.3 allows remote attackers to execute script … | Jul 23, 2002 | Apr 16, 2026 |
| | CVE-2002-0643 | Microsoft | medium | 4.6 | 0.5%
| | The installation of Microsoft Data Engine 1.0 (MSDE 1.0), and Microsoft SQL Server 2000 creates setu… | Jul 23, 2002 | Apr 16, 2026 |
| | CVE-2002-0642 | Microsoft | high | 7.2 | 57.3%
| | The registry key containing the SQL Server service account information in Microsoft SQL Server 2000,… | Jul 23, 2002 | Apr 16, 2026 |
| | CVE-2002-0641 | Microsoft | high | 7.5 | 17.8%
| | Buffer overflow in bulk insert procedure of Microsoft SQL Server 2000, including Microsoft SQL Serve… | Jul 23, 2002 | Apr 16, 2026 |
| | CVE-2002-0624 | Microsoft | high | 7.5 | 5.4%
| | Buffer overflow in the password encryption function of Microsoft SQL Server 2000, including Microsof… | Jul 23, 2002 | Apr 16, 2026 |
| | CVE-2002-0409 | Microsoft | medium | 5.0 | 52.9%
| | orderdetails.aspx, as made available to Microsoft .NET developers as example code and demonstrated o… | Jul 26, 2002 | Apr 16, 2026 |