search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2003-03-21 2002-04-24 2003-04-01 VU#667667 Buffer Overflow in SGI IRIX syslogd
2003-05-30 2002-04-23 2003-07-14 VU#524227 GNU screen contains buffer overflow
2003-01-13 2002-04-23 2003-01-13 VU#772563 Lotus Domino web server vulnerable to buffer overflow via long HTTP authentication header containing non-ASCII characters
2002-08-20 2002-04-22 2002-08-20 VU#809347 FreeBSD privilege elevation vulnerability
2002-07-25 2002-04-18 2003-02-05 VU#796313 Microsoft SQL Server service account registry key has weak permissions that permit privilege escalation
2002-09-16 2002-04-17 2007-06-05 VU#711843 Microsoft Internet Explorer contains cross-site scripting vulnerabilities in local HTML resources
2002-07-29 2002-04-17 2003-05-19 VU#117139 Sambar Web Server vulnerable to sourcecode disclosure due to improper parsing of scripts
2002-08-30 2002-04-17 2002-09-03 VU#193347 HP Tru64 UNIX contains buffer overflow in libc libraries (SSRT2257)
2003-04-25 2002-04-17 2007-06-05 VU#728563 Microsoft Internet Explorer does not adequately validate source of dialog frame
2002-09-16 2002-04-17 2003-04-15 VU#693099 Microsoft Windows 2000 vulnerable to DoS via malformed packets sent to port 445/tcp
2002-07-15 2002-04-16 2002-12-13 VU#336083 Uudecode performs inadequate checks on user-specified output files
2002-10-28 2002-04-15 2002-10-28 VU#582923 webalizer vulnerable to buffer overflow when performing reverse DNS lookups
2002-05-16 2002-04-13 2004-01-22 VU#403315 Nortel Networks CVX 1800 discloses privileged information
2002-04-10 2002-04-10 2002-04-10 VU#454091 Microsoft Internet Information Server (IIS) vulnerable to buffer overflow via inaccurate checking of delimiters in HTTP header fields
2002-04-10 2002-04-10 2002-04-10 VU#721963 Microsoft Internet Information Server (IIS) buffer overflow in server-side includes (SSI) containing long invalid file name

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis