search
menu
icon-carat-right
cmu-wordmark
×
Home
Notes
Search
Report a Vulnerability
Disclosure Guidance
VINCE
Carnegie Mellon University
Software Engineering Institute
CERT Coordination Center
Home
Notes
Search
Report a Vulnerability
Disclosure Guidance
VINCE
Home
Current:
Notes
CERT/CC Vulnerability Notes Database
Published
Public
Updated
ID
CVSS
Title
2002-03-06
2002-02-06
2002-03-06
VU#798611
Oracle 9iAS contains cross-site scripting vulnerability in "htp.print"
2002-03-06
2002-02-06
2002-03-06
VU#977251
Oracle 9iAS XSQL Servlet ignores file permissions allowing arbitrary users to view sensitive configuration files
2002-02-25
2002-02-06
2002-03-15
VU#805915
Oracle9i Application Server Apache PL/SQL module does not properly handle HTTP Authorization header
2002-02-28
2002-02-06
2002-03-15
VU#750299
Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via HTTP request
2002-02-28
2002-02-06
2002-03-15
VU#659043
Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via Database Access Descriptor password
2002-02-26
2002-02-06
2003-07-03
VU#180147
Oracle 9i Database Server PL/SQL module allows remote command execution without authentication
2002-02-28
2002-02-06
2002-03-15
VU#923395
Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via cache directory name
2002-02-27
2002-02-06
2002-02-27
VU#698467
Oracle 9iAS default configuration allows access to "globals.jsa" file
2002-03-06
2002-02-06
2002-03-06
VU#476619
Oracle 9iAS default configuration allows arbitrary users to view sensitive configuration files
2002-02-28
2002-02-06
2002-03-15
VU#878603
Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via HTTP Authorization header
2002-02-27
2002-02-06
2002-03-12
VU#547459
Oracle 9iAS creates temporary files when processing JSP requests that are world-readable
2005-03-22
2002-02-02
2005-08-01
VU#273262
Multiple web browsers vulnerable to spoofing via Internationalized Domain Name support
2002-09-16
2002-01-25
2002-09-16
VU#800635
rsync fails to properly handle negative values specified for signed integers thereby allowing remote command execution
2002-05-30
2002-01-24
2007-05-10
VU#153043
SquirrelMail compose.php script does not adequately validate input thereby allowing arbitrary user to send messages
2001-09-26
2002-01-17
2002-07-31
VU#361600
Web-based email services filtering systems vulnerable to malicous script execution
Previous
1
204
205
206
You're on page
207
208
209
210
241
Next
Sponsored by
CISA.
Download PGP Key
Read CERT/CC Blog
Learn about Vulnerability Analysis