Microsoft : Security Vulnerabilities, CVEs, Published In April 2002 (Overflow)
Buffer overflow in various Microsoft applications for Macintosh allows remote attackers to cause a denial of service (crash) or execute arbitrary code by invoking the file:// directive with a large number of / characters, which affects Internet Explorer 5.1, Outlook Express 5.0 through 5.0.2, Entourage v. X and 2001, PowerPoint v. X, 2001, and 98, and Excel v. X and 2001 for Macintosh.
Max CVSS
7.5
EPSS Score
4.72%
Published
2002-04-22
Updated
2018-10-12
Buffer overflow in Multiple UNC Provider (MUP) in Microsoft Windows operating systems allows local users to cause a denial of service or possibly gain SYSTEM privileges via a long UNC request.
Max CVSS
7.2
EPSS Score
0.10%
Published
2002-04-04
Updated
2019-04-30
Buffer overflow in Internet Information Server (IIS) 4.0, 5.0, and 5.1 allows remote attackers to spoof the safety check for HTTP headers and cause a denial of service or execute arbitrary code via HTTP header field values.
Max CVSS
7.5
EPSS Score
94.33%
Published
2002-04-22
Updated
2020-11-23
Buffer overflow in ASP Server-Side Include Function in IIS 4.0, 5.0 and 5.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via long file names.
Max CVSS
7.5
EPSS Score
21.50%
Published
2002-04-22
Updated
2020-11-23
Buffer overflow in the ASP data transfer mechanism in Internet Information Server (IIS) 4.0, 5.0, and 5.1 allows remote attackers to cause a denial of service or execute code, aka "Microsoft-discovered variant of Chunked Encoding buffer overrun."
Max CVSS
7.5
EPSS Score
21.50%
Published
2002-04-22
Updated
2020-11-23
Buffer overflow in the chunked encoding transfer mechanism in Internet Information Server (IIS) 4.0 and 5.0 Active Server Pages allows attackers to cause a denial of service or execute arbitrary code.
Max CVSS
7.5
EPSS Score
96.48%
Published
2002-04-22
Updated
2018-10-30
Buffer overflow in the ism.dll ISAPI extension that implements HTR scripting in Internet Information Server (IIS) 4.0 and 5.0 allows attackers to cause a denial of service or execute arbitrary code via HTR requests with long variable names.
Max CVSS
7.5
EPSS Score
34.45%
Published
2002-04-22
Updated
2018-10-30
7 vulnerabilities found