search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-07-09 2002-06-06 2002-08-16 VU#375859 Microsoft ASP.NET contains buffer overflow
2002-06-12 2002-06-04 2002-06-12 VU#440275 Microsoft Internet Explorer contains buffer overflow in handling of gopher replies
2002-07-11 2002-06-04 2002-07-11 VU#430419 SGI IRIX contains vulnerability in rpc.passwd allowing for root compromise
2002-06-11 2002-05-29 2003-04-03 VU#159203 Novell NetWare default installation contains sample files that disclose sensitive server information
2002-06-05 2002-05-29 2002-12-06 VU#779163 Microsoft Exchange 2000 exhausts server resources while attempting to process malformed mail attributes
2002-06-11 2002-05-29 2002-06-11 VU#116963 Apache Tomcat default installation contains sample applications that disclose webroot path
2002-05-29 2002-05-29 2003-04-09 VU#703835 Macromedia JRun ISAPI DLL filter vulnerable to buffer overflow via request for long Host header field
2002-06-05 2002-05-27 2002-06-06 VU#137115 Yahoo! Messenger contains a buffer overflow in the URI handler
2002-06-05 2002-05-27 2002-06-05 VU#172315 Yahoo! Messenger "addview" function allows for the automatic execution of malicious script contained in web pages
2002-06-04 2002-05-27 2002-06-13 VU#630091 Oracle9i Database TNS Listener vulnerable to buffer overflow via SERVICE_NAME parameter
2002-06-04 2002-05-27 2002-11-15 VU#291555 Oracle Web Cache contains buffer overflow vulnerabilities
2002-06-04 2002-05-27 2003-06-02 VU#301059 Oracle TNS Listener Control Utility (LSNRCTL) contains format string vulnerability
2002-06-04 2002-05-27 2003-06-02 VU#467555 Oracle Application Server contains format string vulnerability
2002-06-04 2002-05-27 2002-11-15 VU#997403 Oracle Reports Server Reports Web Cartridge (RWCGI60) vulnerable to buffer overflow via database name parameter
2002-06-13 2002-05-27 2002-06-25 VU#855811 Microsoft Remote Access Service API contains additional buffer overflow vulnerability via phonebook entries

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis