search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-10-29 2002-09-26 2002-11-19 VU#910713 Apache discloses source code via POST requests to a location with WebDAV and CGI enabled
2002-10-17 2002-09-26 2002-10-17 VU#600777 gv contains buffer overflow in sscanf() function
2002-09-26 2002-09-25 2003-05-30 VU#406121 Apache mod_dav module vulnerable to DoS
2002-10-02 2002-09-25 2002-10-04 VU#723537 Microsoft SmartHTML interpreter (shtml.dll) contains vulnerability
2002-12-06 2002-09-18 2002-12-06 VU#865833 Microsoft Windows Remote Desktop Protocol (RDP) uses weak algorithm for encrypting packets
2002-09-16 2002-09-16 2003-04-04 VU#661243 MIT Kerberos V5 KDC vulnerable to denial-of-service via null pointer dereference
2002-09-13 2002-09-12 2002-09-18 VU#836088 Multiple vendors' email content/virus scanners do not adequately check "message/partial" MIME entities
2002-09-20 2002-09-11 2003-02-06 VU#603945 Slash-based bulletin boards contain a "quick login" feature that may disclose username and password
2002-09-27 2002-09-09 2003-04-15 VU#464817 Sun Solaris asppls(1M) vulnerable to arbitrary file overwriting via symlink redirection of temporary file
2002-10-11 2002-09-09 2003-08-13 VU#140898 Microsoft Java implementation allows execution of malicious code
2002-10-11 2002-09-09 2003-11-07 VU#307306 Microsoft Java implementation JDBC classes do not properly validate DLL requests
2002-10-11 2002-09-09 2004-08-26 VU#792881 Microsoft Java implementation JDBC functions do not properly validate parameters
2002-09-12 2002-09-04 2002-09-17 VU#539001 Microsoft Visual FoxPro fails to properly evaluate filenames before launching application
2002-09-12 2002-09-03 2003-04-04 VU#886601 Internet Key Exchange (IKE) protocol discloses identity when Aggressive Mode shared secret authentication is used
2002-09-03 2002-09-03 2002-11-14 VU#761651 Cisco VPN 3000 series concentrator does not properly handle malformed ISAKMP packets

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis