search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-10-02 2002-10-02 2003-01-06 VU#383779 ZIP archives containing files with large filenames can cause buffer overflows
2002-10-04 2002-10-02 2002-10-04 VU#840137 Microsoft Services for Unix 3.0 Interix SDK vulnerable to buffer overrun via RPC request containing improper parameter size check
2002-10-03 2002-10-02 2002-10-03 VU#240329 Apache HTTPD server vulnerable to cross site scripting on error page when using wildcard DNS
2004-01-15 2002-10-01 2004-01-15 VU#891177 PostgreSQL VACUUM command allows unprivileged user to remove database transaction log data
2002-10-01 2002-10-01 2003-04-15 VU#738331 Domain Name System (DNS) resolver libraries vulnerable to read buffer overflow
2002-10-23 2002-09-30 2003-02-26 VU#875073 Kerberos administration daemon vulnerable to buffer overflow
2002-10-29 2002-09-26 2002-11-19 VU#910713 Apache discloses source code via POST requests to a location with WebDAV and CGI enabled
2002-10-17 2002-09-26 2002-10-17 VU#600777 gv contains buffer overflow in sscanf() function
2002-09-26 2002-09-25 2003-05-30 VU#406121 Apache mod_dav module vulnerable to DoS
2002-10-02 2002-09-25 2002-10-04 VU#723537 Microsoft SmartHTML interpreter (shtml.dll) contains vulnerability
2002-12-06 2002-09-18 2002-12-06 VU#865833 Microsoft Windows Remote Desktop Protocol (RDP) uses weak algorithm for encrypting packets
2002-09-16 2002-09-16 2003-04-04 VU#661243 MIT Kerberos V5 KDC vulnerable to denial-of-service via null pointer dereference
2002-09-13 2002-09-12 2002-09-18 VU#836088 Multiple vendors' email content/virus scanners do not adequately check "message/partial" MIME entities
2002-09-20 2002-09-11 2003-02-06 VU#603945 Slash-based bulletin boards contain a "quick login" feature that may disclose username and password
2002-10-11 2002-09-09 2003-08-13 VU#140898 Microsoft Java implementation allows execution of malicious code

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis