search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-08-16 2002-08-14 2002-08-22 VU#721611 Microsoft Windows Network Connection Manager (NCM) handler routine may execute code with LocalSystem privileges
2002-08-22 2002-08-21 2002-08-22 VU#746251 Novell Netware RCONAG6 fails to validate user password when "Secure IP" is used to establish connection
2002-08-20 2002-04-22 2002-08-20 VU#809347 FreeBSD privilege elevation vulnerability
2002-08-19 2001-07-05 2002-08-19 VU#188507 Low BandWidth X proxy vulnerable to buffer overflow via crafted display command line option
2002-08-16 2002-08-16 2002-08-16 VU#939675 Microsoft Windows SQL Server allows arbitrary queries to be executed via "xp_printstatements" extended procedure
2002-08-16 2002-08-16 2002-08-16 VU#818939 Microsoft Windows SQL Server allows arbitrary queries to be executed via "xp_displayparamstmt" extended procedure
2002-08-16 2002-08-16 2002-08-16 VU#399531 Microsoft Windows SQL Server allows arbitrary queries to be executed via "xp_execresultset" extended procedure
2002-07-09 2002-06-06 2002-08-16 VU#375859 Microsoft ASP.NET contains buffer overflow
2002-07-11 2002-07-10 2002-08-15 VU#299816 Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) does not adequately validate file operations
2002-08-01 2001-11-20 2002-08-10 VU#176363 ncompress vulnerable to buffer overflow via long filename
2001-10-26 2000-07-10 2002-08-10 VU#131923 OpenSSL PRNG contains design flaw that allows a user to determine internal state and predict future output
2002-08-10 2002-03-27 2002-08-10 VU#495275 Cisco CallManager contains memory leak
2002-08-09 2001-06-21 2002-08-09 VU#139315 SurfControl SuperScout does not filter web requests fragmented in multiple packets
2002-08-08 2002-06-20 2002-08-08 VU#521147 SGI IRIX rpc.xfsmd uses weak authentication mechanism for RPC authentication
2002-06-25 2002-06-12 2002-08-08 VU#139931 Microsoft SQLXML HTTP components vulnerable to cross-site scripting via root parameter

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis