search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-11-20 2002-11-20 2002-12-13 VU#542081 Microsoft Windows Data Access Components contains heap overflow in Data Stubs when parsing a malformed HTTP request
2002-11-19 2002-11-19 2004-10-18 VU#457875 Various DNS service implementations generate multiple simultaneous queries for the same resource record
2003-01-21 2002-11-12 2003-01-21 VU#237777 Microsoft Virtual Machine allows applets write access to the Standard Security Manager
2003-01-21 2002-11-12 2003-01-21 VU#657625 Microsoft Virtual Machine incorrectly parses the domain portion of URLs containing a colon
2003-01-21 2002-11-12 2003-01-21 VU#897529 Microsoft Virtual Machine allows untrusted applets to access the user.dir system property
2002-11-13 2002-11-12 2003-05-30 VU#229595 Overly large OPT record assertion
2002-11-13 2002-11-12 2003-04-24 VU#844360 Domain Name System (DNS) stub resolver libraries vulnerable to buffer overflows via network name or address lookups
2002-11-13 2002-11-12 2003-02-25 VU#581682 ISC BIND 8 fails to properly dereference cache SIG RR elements with invalid expiry times from the internal database
2002-11-13 2002-11-11 2004-10-18 VU#852283 Cached malformed SIG record buffer overflow
2002-12-09 2002-11-07 2003-01-09 VU#780737 Pine MUA contains buffer overflow in addr_list_string()
2002-11-04 2002-11-04 2003-04-09 VU#266817 Multiple Sun RPC-based libc implementations fails to provide time-out mechanism when reading data from TCP connections
2002-11-19 2002-11-01 2002-12-10 VU#930161 NetScreen Secure Command Shell (SCS) denial-of-service vulnerability
2002-11-19 2002-10-30 2002-11-19 VU#361065 The default NTFS permissions are not applied to a converted boot partition on Microsoft Windows 2000 and Windows XP systems when CONVERT.EXE is used
2002-12-12 2002-10-22 2004-05-26 VU#162097 Microsoft Internet Explorer does not adequately validate references to cached objects and methods
2003-03-26 2002-10-18 2003-06-04 VU#261537 Microsoft Windows RPC service vulnerable to DoS via NULL pointer dereference

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis