| | CVE-2002-1138 |  Microsoft | high | 7.5 | 11.4%
| | Microsoft SQL Server 7.0 and 2000, including Microsoft Data Engine (MSDE) 1.0 and Microsoft Desktop … | Oct 11, 2002 | Apr 16, 2026 |
| | CVE-2002-1137 | Microsoft | high | 7.5 | 18.7%
| | Buffer overflow in the Database Console Command (DBCC) that handles user inputs in Microsoft SQL Ser… | Oct 11, 2002 | Apr 16, 2026 |
| | CVE-2002-0867 | Microsoft | medium | 5.0 | 11.5%
| | Microsoft Virtual Machine (VM) up to and including build 5.0.3805 allows remote attackers to cause a… | Oct 11, 2002 | Apr 16, 2026 |
| | CVE-2002-0866 | Microsoft | high | 7.5 | 41.3%
| | Java Database Connectivity (JDBC) classes in Microsoft Virtual Machine (VM) up to and including 5.0.… | Oct 11, 2002 | Apr 16, 2026 |
| | CVE-2002-0865 | Microsoft | high | 7.5 | 13.1%
| | A certain class that supports XML (Extensible Markup Language) in Microsoft Virtual Machine (VM) 5.0… | Oct 11, 2002 | Apr 16, 2026 |
| | CVE-2002-0864 | Microsoft | medium | 5.0 | 23.5%
| | The Remote Data Protocol (RDP) version 5.1 in Microsoft Windows XP allows remote attackers to cause … | Oct 11, 2002 | Apr 16, 2026 |
| | CVE-2002-0863 | Microsoft | medium | 5.0 | 20.2%
| | Remote Data Protocol (RDP) version 5.0 in Microsoft Windows 2000 and RDP 5.1 in Windows XP does not … | Oct 11, 2002 | Apr 16, 2026 |
| | CVE-2002-1618 |  HPE | high | 7.2 | 0.2%
| | JFS (JFS3.1 and OnlineJFS) in HP-UX 10.20, 11.00, and 11.04 does not properly implement the sticky b… | Oct 16, 2002 | Apr 16, 2026 |
| | CVE-2002-1217 | Microsoft | high | 7.5 | 64.8%
| | Cross-Frame scripting vulnerability in the WebBrowser control as used in Internet Explorer 5.5 and 6… | Oct 28, 2002 | Apr 16, 2026 |
| | CVE-2002-1179 | Microsoft | high | 7.5 | 49.5%
| | Buffer overflow in the S/MIME Parsing capability in Microsoft Outlook Express 5.5 and 6.0 allows rem… | Oct 28, 2002 | Apr 16, 2026 |
| | CVE-2002-1145 | Microsoft | critical | 10.0 | 2.9%
| | The xp_runwebtask stored procedure in the Web Tasks component of Microsoft SQL Server 7.0 and 2000, … | Oct 28, 2002 | Apr 16, 2026 |
| | CVE-2002-1233 |  Apache | low | 2.6 | 0.1%
| | A regression error in the Debian distributions of the apache-ssl package (before 1.3.9 on Debian 2.2… | Nov 4, 2002 | Apr 16, 2026 |
| | CVE-2002-1182 | Microsoft | medium | 5.0 | 43.8%
| | IIS 5.0 and 5.1 allows remote attackers to cause a denial of service (crash) via malformed WebDAV re… | Nov 12, 2002 | Apr 16, 2026 |
| | CVE-2002-1181 | Microsoft | medium | 6.8 | 12.1%
| | Multiple cross-site scripting (XSS) vulnerabilities in the administrative web pages for Microsoft In… | Nov 12, 2002 | Apr 16, 2026 |
| | CVE-2002-1180 | Microsoft | high | 7.5 | 2.1%
| | A typographical error in the script source access permissions for Internet Information Server (IIS) … | Nov 12, 2002 | Apr 16, 2026 |
| | CVE-2002-0869 | Microsoft | high | 7.5 | 29.6%
| | Unknown vulnerability in the hosting process (dllhost.exe) for Microsoft Internet Information Server… | Nov 12, 2002 | Apr 16, 2026 |
| | CVE-2002-1295 | Microsoft | high | 7.5 | 3.1%
| | The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to cause a … | Nov 29, 2002 | Apr 16, 2026 |
| | CVE-2002-1294 | Microsoft | high | 7.5 | 5.6%
| | The Microsoft Java implementation, as used in Internet Explorer, can provide HTML object references … | Nov 29, 2002 | Apr 16, 2026 |
| | CVE-2002-1293 | Microsoft | high | 7.5 | 2.5%
| | The Microsoft Java implementation, as used in Internet Explorer, provides a public load0() method fo… | Nov 29, 2002 | Apr 16, 2026 |
| | CVE-2002-1292 | Microsoft | high | 7.5 | 7.7%
| | The Microsoft Java virtual machine (VM) build 5.0.3805 and earlier, as used in Internet Explorer, al… | Nov 29, 2002 | Apr 16, 2026 |
| | CVE-2002-1291 | Microsoft | medium | 5.0 | 10.3%
| | The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to read arb… | Nov 29, 2002 | Apr 16, 2026 |
| | CVE-2002-1290 | Microsoft | medium | 6.4 | 4.8%
| | The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to read and… | Nov 29, 2002 | Apr 16, 2026 |
| | CVE-2002-1289 | Microsoft | high | 7.5 | 6.5%
| | The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to read res… | Nov 29, 2002 | Apr 16, 2026 |
| | CVE-2002-1288 | Microsoft | medium | 5.0 | 8.8%
| | The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to determin… | Nov 29, 2002 | Apr 16, 2026 |
| | CVE-2002-1287 | Microsoft | medium | 5.0 | 6.1%
| | Stack-based buffer overflow in the Microsoft Java implementation, as used in Internet Explorer, allo… | Nov 29, 2002 | Apr 16, 2026 |
| | CVE-2002-1286 | Microsoft | high | 7.5 | 7.0%
| | The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to steal co… | Nov 29, 2002 | Apr 16, 2026 |
| | CVE-2002-1142 | Microsoft | high | 7.5 | 83.0%
| | Heap-based buffer overflow in the Remote Data Services (RDS) component of Microsoft Data Access Comp… | Nov 29, 2002 | Apr 16, 2026 |
| | CVE-2002-1318 | HPE | critical | 10.0 | 75.0%
| | Buffer overflow in samba 2.2.2 through 2.2.6 allows remote attackers to cause a denial of service an… | Dec 11, 2002 | Apr 16, 2026 |
| | CVE-2002-1254 | Microsoft | high | 7.5 | 66.2%
| | Internet Explorer 5.5 and 6.0 allows remote attackers to bypass the cross-domain security model and … | Dec 11, 2002 | Apr 16, 2026 |
| | CVE-2002-1188 | Microsoft | medium | 6.4 | 16.2%
| | Internet Explorer 5.01 through 6.0 allows remote attackers to identify the path to the Temporary Int… | Dec 11, 2002 | Apr 16, 2026 |
| | CVE-2002-1187 | Microsoft | medium | 6.8 | 26.6%
| | Cross-site scripting vulnerability (XSS) in Internet Explorer 5.01 through 6.0 allows remote attacke… | Dec 11, 2002 | Apr 16, 2026 |
| | CVE-2002-1186 | Microsoft | medium | 5.0 | 33.4%
| | Internet Explorer 5.01 through 6.0 does not properly perform security checks on certain encoded char… | Dec 11, 2002 | Apr 16, 2026 |
| | CVE-2002-1185 | Microsoft | medium | 5.0 | 29.2%
| | Internet Explorer 5.01 through 6.0 does not properly check certain parameters of a PNG file when ope… | Dec 11, 2002 | Apr 16, 2026 |
| | CVE-2002-1340 | Microsoft | medium | 5.0 | 29.0%
| | The "ConnectionFile" property in the DataSourceControl component in Office Web Components (OWC) 10 a… | Dec 18, 2002 | Apr 16, 2026 |
| | CVE-2002-1339 | Microsoft | medium | 5.0 | 29.0%
| | The "XMLURL" property in the Spreadsheet component of Office Web Components (OWC) 10 follows redirec… | Dec 18, 2002 | Apr 16, 2026 |
| | CVE-2002-1338 | Microsoft | medium | 5.0 | 18.4%
| | The Load method in the Chart component of Office Web Components (OWC) 9 and 10 generates an exceptio… | Dec 18, 2002 | Apr 16, 2026 |
| | CVE-2002-1262 | Microsoft | high | 7.5 | 11.5%
| | Internet Explorer 5.5 and 6.0 does not perform complete security checks on external caching, which a… | Dec 18, 2002 | Apr 16, 2026 |
| | CVE-2002-1255 | Microsoft | medium | 5.0 | 14.0%
| | Microsoft Outlook 2002 allows remote attackers to cause a denial of service (repeated failure) via a… | Dec 18, 2002 | Apr 16, 2026 |
| | CVE-2002-2272 | Apache | high | 7.8 | 31.4%
| | Tomcat 4.0 through 4.1.12, using mod_jk 1.2.1 module on Apache 1.3 through 1.3.27, allows remote att… | Dec 31, 2002 | Apr 16, 2026 |
| | CVE-2002-2103 | Apache | medium | 5.0 | 1.7%
| | Apache before 1.3.24, when writing to the log file, records a spoofed hostname from the reverse look… | Dec 31, 2002 | Apr 16, 2026 |
| | CVE-2002-2029 | Apache | high | 7.5 | 48.1%
| | PHP, when installed on Windows with Apache and ScriptAlias for /php/ set to c:/php/, allows remote a… | Dec 31, 2002 | Apr 16, 2026 |
| | CVE-2002-2012 | Apache | medium | 5.0 | 8.0%
| | Unknown vulnerability in Apache 1.3.19 running on HP Secure OS for Linux 1.0 allows remote attackers… | Dec 31, 2002 | Apr 16, 2026 |
| | CVE-2002-2009 | Apache | medium | 5.0 | 3.2%
| | Apache Tomcat 4.0.1 allows remote attackers to obtain the web root path via HTTP requests for JSP fi… | Dec 31, 2002 | Apr 16, 2026 |
| | CVE-2002-2008 | Apache | medium | 5.0 | 7.1%
| | Apache Tomcat 4.0.3 for Windows allows remote attackers to obtain the web root path via an HTTP requ… | Dec 31, 2002 | Apr 16, 2026 |
| | CVE-2002-2007 | Apache | medium | 5.0 | 22.6%
| | The default installations of Apache Tomcat 3.2.3 and 3.2.4 allows remote attackers to obtain sensiti… | Dec 31, 2002 | Apr 16, 2026 |
| | CVE-2002-2006 | Apache | medium | 5.0 | 32.4%
| | The default installation of Apache Tomcat 4.0 through 4.1 and 3.0 through 3.3.1 allows remote attack… | Dec 31, 2002 | Apr 16, 2026 |
| | CVE-2002-1895 | Apache | medium | 5.0 | 2.8%
| | The servlet engine in Jakarta Apache Tomcat 3.3 and 4.0.4, when using IIS and the ajp1.3 connector, … | Dec 31, 2002 | Apr 16, 2026 |
| | CVE-2002-1850 | Apache | high | 7.5 | 2.9%
| | mod_cgi in Apache 2.0.39 and 2.0.40 allows local users and possibly remote attackers to cause a deni… | Dec 31, 2002 | Apr 16, 2026 |
| | CVE-2002-1658 | Apache | medium | 4.6 | 0.2%
| | Buffer overflow in htdigest in Apache 1.3.26 and 1.3.27 may allow attackers to execute arbitrary cod… | Dec 31, 2002 | Apr 16, 2026 |
| | CVE-2002-2405 |  Check Point | medium | 4.9 | 0.3%
| | Check Point FireWall-1 4.1 and Next Generation (NG), with UserAuth configured to proxy HTTP traffic … | Dec 31, 2002 | Apr 16, 2026 |