search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-02-27 2002-01-10 2002-03-05 VU#936507 Oracle 9iAS allows access to CGI script source code within CGI-BIN directory
2002-08-07 2002-01-10 2002-08-07 VU#245707 Nevrona Designs MiraMail stores all configuration and user account information in unencrypted text file
2002-03-12 2002-01-10 2002-03-15 VU#313280 Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via HTTP Location header
2002-09-18 2002-01-10 2002-09-18 VU#318835 Mike Spice's Quiz Me! does not adequately validate user input
2002-03-01 2002-01-10 2002-03-15 VU#193523 Oracle9i Application Server allows unauthenticated access to PL/SQL applications via alternate Database Access Descriptor
2002-03-11 2002-01-10 2002-11-15 VU#307835 Oracle9i Application Server OWA_UTIL procedures expose sensitive information
2002-01-14 2002-01-09 2002-01-14 VU#968187 Cisco SN 5420 Storage Router vulnerable to DoS via HTTP request containing long headers
2002-08-01 2002-01-09 2002-08-01 VU#181907 Directory-traversal vulnerability in Mike Spice's My Classifieds CGI script
2002-01-14 2002-01-09 2002-01-14 VU#855195 Cisco SN 5420 Storage Router vulnerable to DoS via fragmented packet sent over Gigabit interface
2002-01-14 2002-01-09 2002-01-14 VU#833459 Cisco SN 5420 Storage Router fails to properly authenticate user before granting read access to configuration file
2002-09-18 2002-01-09 2002-09-18 VU#250107 Mike Spice's Vote does not adequately validate user input
2002-09-26 2002-01-08 2002-09-26 VU#575619 Allaire Forums does not verify user information stored in hidden form fields
2002-01-08 2002-01-08 2002-01-08 VU#985347 iPlanet Web Server Enterprise Edition and Netscape Enterprise Server Web Publisher command exposes server to brute force attack
2002-01-08 2002-01-08 2002-01-09 VU#191763 iPlanet Web Server Enterprise Edition and Netscape Enterprise Server malformed Web Publisher command causes denial-of-service
2002-01-15 2002-01-07 2002-01-24 VU#570167 ICQ contains a buffer overflow while processing Voice Video & Games feature requests

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis