search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2003-02-07 2003-02-06 2003-02-07 VU#666073 AbsoluteTelnet vulnerable to buffer overflow via overly long window title
2003-02-06 2003-02-05 2003-02-13 VU#400577 Microsoft Internet Explorer allows arbitrary local file reading via "showHelp()" function
2003-05-04 2003-02-03 2003-06-17 VU#911505 pam_xauth may insecurely forward "X MIT-Magic-Cookies" to new sessions
2003-01-31 2003-01-28 2003-04-04 VU#587579 MIT Kerberos V5 ASN.1 decoder fails to perform bounds checking on data element length fields
2003-01-31 2003-01-28 2003-02-01 VU#787523 MIT Kerberos V5 KDC logging routines use unsafe format strings
2003-01-31 2003-01-28 2003-04-04 VU#684563 MIT Kerberos V5 allows inter-realm user impersonation by malicious realm controllers with shared keys
2003-01-23 2003-01-22 2003-01-23 VU#610986 Microsoft Locator service contains buffer overflow
2003-01-22 2003-01-22 2003-04-14 VU#850785 Sun KCMS library service daemon does not adequately validate location of KCMS profiles
2003-02-12 2003-01-21 2003-02-12 VU#825177 Apache allows arbitrary code execution via crafted POST request containing MS-DOS device name
2003-02-12 2003-01-21 2003-02-12 VU#979793 Apache vulnerable to DoS via request for MS-DOS device
2003-01-24 2003-01-20 2009-08-17 VU#867593 Web servers enable HTTP TRACE method by default
2003-01-21 2003-01-20 2003-08-20 VU#650937 Concurrent Versions System (CVS) server improperly deallocates memory
2003-01-17 2003-01-17 2003-01-17 VU#862401 HP-UX XServer contains privilege escalation vulnerability
2003-02-04 2003-01-15 2003-05-30 VU#149953 ISC "dhcrelay" fails to limit hop count when malicious bootp packet is received
2003-01-15 2003-01-15 2003-03-26 VU#284857 ISC DHCPD minires library contains multiple buffer overflows

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis