search
menu
icon-carat-right
cmu-wordmark
×
Home
Notes
Search
Report a Vulnerability
Disclosure Guidance
VINCE
Carnegie Mellon University
Software Engineering Institute
CERT Coordination Center
Home
Notes
Search
Report a Vulnerability
Disclosure Guidance
VINCE
Home
Current:
Notes
CERT/CC Vulnerability Notes Database
Published
Public
Updated
ID
CVSS
Title
2002-06-11
2002-05-29
2003-04-03
VU#159203
Novell NetWare default installation contains sample files that disclose sensitive server information
2002-06-11
2002-05-29
2002-06-11
VU#116963
Apache Tomcat default installation contains sample applications that disclose webroot path
2002-06-07
2001-07-09
2002-06-12
VU#797201
tcpdump vulnerable to buffer overflow via improper decoding of AFS RPC (Rx) packets
2002-06-05
2002-05-29
2002-12-06
VU#779163
Microsoft Exchange 2000 exhausts server resources while attempting to process malformed mail attributes
2002-06-05
2002-05-27
2002-06-06
VU#137115
Yahoo! Messenger contains a buffer overflow in the URI handler
2002-06-05
2002-02-21
2002-06-10
VU#393195
Yahoo! Messenger allows arbitrary users to be added to buddy list without proper authorization
2002-06-05
2002-02-26
2002-06-05
VU#755755
Yahoo! Messenger contains a buffer overflow in "set_buddygrp" when adding users to a buddy list via the web
2002-06-05
2002-02-21
2002-06-05
VU#952875
Yahoo! Messenger is vulnerable to DoS via multiple messages from spoofed names
2002-06-05
2002-05-27
2002-06-05
VU#172315
Yahoo! Messenger "addview" function allows for the automatic execution of malicious script contained in web pages
2002-06-05
2002-02-21
2002-10-24
VU#887319
Yahoo! Messenger contains buffer overflow in "IMvironment" field
2002-06-05
2002-02-21
2002-06-05
VU#419419
Yahoo! Messenger contains buffer overflow in "message" field
2002-06-04
2001-05-04
2002-09-18
VU#739123
ISC BIND 9 fails to process additional data chains in responses correctly thereby causing the server to fail an internal consistency check
2002-06-04
2002-05-27
2003-06-02
VU#467555
Oracle Application Server contains format string vulnerability
2002-06-04
2002-05-27
2002-06-13
VU#630091
Oracle9i Database TNS Listener vulnerable to buffer overflow via SERVICE_NAME parameter
2002-06-04
2002-05-27
2003-06-02
VU#301059
Oracle TNS Listener Control Utility (LSNRCTL) contains format string vulnerability
Previous
1
208
209
210
You're on page
211
212
213
214
242
Next
Sponsored by
CISA.
Download PGP Key
Read CERT/CC Blog
Learn about Vulnerability Analysis