search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2003-01-17 2002-12-23 2003-01-17 VU#518057 Sun Solaris AUTH_DES authentication contains vulnerability allowing user to gain escalated privileges
2002-05-08 2002-05-08 2003-01-13 VU#854315 ISC DHCPD contains format string vulnerability when logging DNS-update requests
2003-01-13 2002-04-23 2003-01-13 VU#772563 Lotus Domino web server vulnerable to buffer overflow via long HTTP authentication header containing non-ASCII characters
2002-12-09 2002-11-07 2003-01-09 VU#780737 Pine MUA contains buffer overflow in addr_list_string()
2002-10-17 2002-10-17 2003-01-06 VU#459371 Multiple IPsec implementations do not adequately validate authentication data
2002-10-02 2002-10-02 2003-01-06 VU#383779 ZIP archives containing files with large filenames can cause buffer overflows
2002-10-15 2002-10-15 2003-01-06 VU#539363 State-based firewalls fail to effectively manage session table resource exhaustion
2002-12-19 2002-12-18 2002-12-19 VU#591890 Buffer overflow in Microsoft Windows Shell
2002-12-18 2002-12-10 2002-12-18 VU#157961 PC-cillin "pop3trap.exe" vulnerable to buffer overflow via long string of characters
2001-09-26 2001-05-24 2002-12-18 VU#198979 Beck GmbH IPC@Chip TelnetD vulnerable to brute-force password attack
2001-10-04 2001-07-05 2002-12-18 VU#327281 Solaris rpc.yppasswdd does not adequately check input allowing users to execute arbitrary code
2002-12-11 2002-12-05 2002-12-16 VU#810921 Cobalt RaQ Server Appliances contains vulnerability allowing remote root compromise
2001-06-22 2001-05-08 2002-12-16 VU#795707 ScreamingMedia SITEware does not adequately validate user input thereby allowing arbitrary file disclosure via directory traversal
2002-12-04 2002-11-25 2002-12-13 VU#140977 SSH Secure Shell for Workstations contains buffer overflow in URL-handling feature
2002-11-20 2002-11-20 2002-12-13 VU#542081 Microsoft Windows Data Access Components contains heap overflow in Data Stubs when parsing a malformed HTTP request

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis