LiveActive security incident?Get immediate response
CVE archive

September 2002

Browse CVE records published in September 2002, with severity, affected products, CWE, KEV, and source-backed vulnerability context.

Showing 50 of 294 matching CVEs · Page 3 of 6.

Unknown · CVSS Not scored

CVE-2002-1230: NetDDE Agent on Windows NT 4.0, 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows local user...

NetDDE Agent on Windows NT 4.0, 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows local users to execute arbitrary code as LocalSystem via "shatter" style attack by sending a WM_COPYDATA message followed by a WM_TIMER message, as demonstrated by GetAd, aka "Flaw in Windows WM_TIMER Message Handling Could Enable Privilege Elevation."

Published Sep 1, 2004 · Updated Aug 8, 2024

Unknown · CVSS Not scored

CVE-2002-1256: The SMB signing capability in the Server Message Block (SMB) protocol in Microsoft Windows 2000 and Windows...

The SMB signing capability in the Server Message Block (SMB) protocol in Microsoft Windows 2000 and Windows XP allows attackers to disable the digital signing settings in an SMB session to force the data to be sent unsigned, then inject data into the session without detection, e.g. by modifying group policy information sent from a domain controller.

Published Sep 1, 2004 · Updated Aug 8, 2024