search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-04-10 2002-04-10 2002-04-10 VU#520707 0 Microsoft Internet Information Server (IIS) contains cross-site scripting vulnerability in redirect response messages
2002-04-10 2002-04-10 2002-04-10 VU#412203 Microsoft Internet Information Server (IIS) vulnerable to DoS via malformed FTP connection status request
2002-04-10 2002-04-10 2002-04-10 VU#454091 Microsoft Internet Information Server (IIS) vulnerable to buffer overflow via inaccurate checking of delimiters in HTTP header fields
2002-04-10 2002-04-10 2002-04-10 VU#721963 Microsoft Internet Information Server (IIS) buffer overflow in server-side includes (SSI) containing long invalid file name
2002-04-10 2002-04-10 2002-04-10 VU#521059 Microsoft Internet Information Server (IIS) vulnerable to DoS when URL request exceeds maximum allowed length
2002-04-10 2002-04-10 2002-06-13 VU#610291 Microsoft Internet Information Server (IIS) 4.0 and 5.0 buffer overflow in chunked encoding transfer mechanism for ASP
2002-04-10 2002-04-10 2002-06-13 VU#669779 Microsoft Internet Information Server (IIS) 4.0, 5.0, and 5.1 buffer overflow in chunked encoding transfer mechanism for ASP
2002-04-08 2002-03-07 2002-04-08 VU#152867 Buffer overflow in Microsoft Windows Shell
2002-04-05 2001-10-06 2002-04-05 VU#710347 AOL Instant Messenger vulnerable to DoS via crafted GIF file
2002-04-05 2000-10-03 2002-04-05 VU#683765 AOL Instant Messenger vulnerable to denial of service via crafted file name
2002-04-05 2000-12-12 2002-04-05 VU#474592 AOL Instant Messenger contains buffer overflows in parsing of AIM URI handler requests
2002-04-05 2001-01-24 2002-04-05 VU#541384 AOL Instant Messenger saves code embedded in image tag to conversation log which could be viewed/executed by a browser
2002-04-02 2000-03-27 2008-05-06 VU#24140 Linux kernel IP Masquerading "destination loose" (DLOOSE) configuration passes arbitrary UDP traffic
2002-04-02 2001-01-04 2002-04-08 VU#496064 ibrow NewsDesk does not securely handle input passed to open()
2002-04-02 2002-04-01 2004-02-23 VU#640827 IBM AIX Parallel Systems Support Program (PSSP) contains vulnerability in File Collections subsystem allowing arbitrary access to sensitive configuration files

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis