search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-07-23 2002-05-27 2003-04-11 VU#612843 Sun iPlanet and ONE Web Servers contain a buffer overflow in the search engine
2002-09-09 2002-05-22 2002-09-09 VU#115731 HP Tru64 UNIX "quot" contains buffer overflow (SSRT2191)
2002-05-21 2002-05-21 2002-10-30 VU#341187 SSHD allows users to override "AllowedAuthentications" configuration thereby permitting users to provide any type of authentication
2002-05-30 2002-05-18 2002-06-04 VU#251339 Verisign transmits sensitive customer information in plain text when applying for a "Code Signing Digital ID"
2002-09-24 2002-05-15 2003-09-18 VU#916795 Microsoft Internet Explorer (MSIE) Content-Disposition vulnerabilities
2002-05-22 2002-05-15 2002-05-30 VU#686939 Cisco Content Service Switch performs soft reset when XML data is sent to web management interface
2002-05-22 2002-05-15 2002-05-30 VU#330275 Cisco Content Service Switch reboots when HTTPS POST request is sent to web management interface
2002-05-30 2002-05-15 2002-08-26 VU#242891 Microsoft Internet Explorer may handle certain web pages in an incorrect, less restrictive security zone (MS02-023)
2002-05-24 2002-05-09 2002-12-12 VU#314963 OpenBSD kernel fails to properly check closed file descriptors "0-2" when running setuid program
2002-05-10 2002-05-09 2002-08-28 VU#713779 0 Microsoft MSN Messenger Chat Control contains a buffer overflow in "ResDLL" parameter
2002-09-12 2002-05-09 2002-09-12 VU#416427 HP Tru64 UNIX "deliver" contains buffer overflow (SSRT2275)
2002-05-08 2002-05-08 2003-01-13 VU#854315 ISC DHCPD contains format string vulnerability when logging DNS-update requests
2002-07-11 2002-05-06 2002-07-11 VU#165803 Apache Web Server ap_log_rerror() function discloses full path to CGI script
2002-05-06 2002-05-05 2002-05-14 VU#635811 Sun Solaris cachefsd vulnerable to heap overflow in cfsd_calloc() function via long string of characters
2003-08-19 2002-05-01 2003-08-19 VU#551683 Hewlett-Packard Company MPE/iX FTPSRVR does not properly validate certain commands

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis