search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2003-02-17 2003-02-17 2003-02-21 VU#354387 Yahoo! Mobile service discloses random sensitive information to unauthorized users
2003-02-19 2003-02-17 2003-03-26 VU#571297 Lotus Notes and Domino COM Object Control Handler contains buffer overflow
2003-02-18 2003-02-11 2003-02-19 VU#511194 Oracle9i Application Server MOD_ORADAV Module vulnerable to DoS
2003-02-18 2003-02-11 2003-02-19 VU#953746 Oracle9i Database contains remotely exploitable buffer overflow in "ORACLE.EXE"
2003-02-18 2003-02-11 2003-02-19 VU#663786 Oracle9i Database contains remotely exploitable buffer overflow in "BFILENAME" function
2003-02-14 2003-02-11 2003-07-24 VU#849993 Some implementations of mod_dav contain a format string vulnerability in "ap_log_rerror()" function
2003-02-18 2003-02-11 2003-02-19 VU#840666 Oracle9i Database contains remotely exploitable buffer overflow in "TO_TIMESTAMP_TZ" function
2003-02-18 2003-02-11 2003-02-19 VU#743954 Oracle9i Database contains remotely exploitable buffer overflow in "TZ_OFFSET" function
2003-02-11 2003-02-07 2003-02-11 VU#134025 kernel-utils sets insecure permissions on "uml_net" utility
2003-02-07 2003-02-06 2003-02-07 VU#666073 AbsoluteTelnet vulnerable to buffer overflow via overly long window title
2003-02-06 2003-02-05 2003-02-13 VU#400577 Microsoft Internet Explorer allows arbitrary local file reading via "showHelp()" function
2003-05-04 2003-02-03 2003-06-17 VU#911505 pam_xauth may insecurely forward "X MIT-Magic-Cookies" to new sessions
2003-01-31 2003-01-28 2003-02-01 VU#787523 MIT Kerberos V5 KDC logging routines use unsafe format strings
2003-01-31 2003-01-28 2003-04-04 VU#587579 MIT Kerberos V5 ASN.1 decoder fails to perform bounds checking on data element length fields
2003-01-31 2003-01-28 2003-04-04 VU#684563 MIT Kerberos V5 allows inter-realm user impersonation by malicious realm controllers with shared keys

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis