search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-03-01 2002-01-10 2002-03-15 VU#193523 Oracle9i Application Server allows unauthenticated access to PL/SQL applications via alternate Database Access Descriptor
2002-02-28 2002-02-06 2002-03-15 VU#750299 Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via HTTP request
2002-02-28 2002-02-06 2002-03-15 VU#659043 Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via Database Access Descriptor password
2002-02-28 2002-02-06 2002-03-15 VU#878603 Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via HTTP Authorization header
2002-02-28 2002-02-06 2002-03-15 VU#923395 Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via cache directory name
2002-02-27 2002-02-27 2002-02-27 VU#297363 PHP contains vulnerability in "php_mime_split" function allowing arbitrary code execution
2002-02-27 2002-01-10 2002-03-05 VU#936507 Oracle 9iAS allows access to CGI script source code within CGI-BIN directory
2002-02-27 2002-02-06 2002-03-12 VU#547459 Oracle 9iAS creates temporary files when processing JSP requests that are world-readable
2002-02-27 2002-01-10 2002-03-12 VU#717827 Multiple Oracle 9iAS sample pages contain vulnerabilities
2002-02-27 2002-02-06 2002-02-27 VU#698467 Oracle 9iAS default configuration allows access to "globals.jsa" file
2002-02-27 2002-01-10 2002-02-27 VU#712723 Oracle 9iAS default configuration uses well-known default passwords
2002-02-26 2002-02-06 2003-07-03 VU#180147 Oracle 9i Database Server PL/SQL module allows remote command execution without authentication
2002-02-25 2002-02-06 2002-03-15 VU#805915 Oracle9i Application Server Apache PL/SQL module does not properly handle HTTP Authorization header
2002-02-14 2002-02-11 2002-03-29 VU#932283 Microsoft Internet Explorer HTML rendering engine contains buffer overflow processing SRC attribute of HTML <EMBED> directive
2002-02-12 2002-02-12 2007-11-07 VU#854306 Multiple vulnerabilities in SNMPv1 request handling

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis