search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-03-29 2001-05-07 2002-03-29 VU#132099 Jana Server does not adequately validate user input thereby allowing directory traversal
2002-03-29 1999-08-21 2002-03-29 VU#12746 Microsoft scriptlet.typlib ActiveX object unsafe for scripting from Internet Explorer
2002-03-29 2002-03-29 2002-03-29 VU#585123 Microsoft Internet Explorer does not adequately evaluate malformed URLs
2002-03-28 2002-02-19 2002-07-29 VU#619707 Microsoft SQL Server contains buffer overflows in openrowset and opendatasource macros
2002-03-28 2002-02-12 2003-12-09 VU#726187 HP-UX kernel specifies incorrect arguments for setrlimit()
2002-03-15 1999-08-23 2002-05-03 VU#634847 XDMCP leaks sensitive information by default configuration
2002-03-13 2002-01-10 2003-07-02 VU#611776 Oracle9i Application Server PL/SQL Gateway web administration interface uses null authentication by default
2002-03-12 2002-01-10 2002-03-15 VU#313280 Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via HTTP Location header
2002-03-12 2002-01-10 2003-04-09 VU#168795 Oracle 9iAS allows anonymous remote users to view sensitive Apache services by default
2002-03-12 2002-01-10 2002-03-12 VU#736923 Oracle 9iAS SOAP components allow anonymous users to deploy applications by default
2002-03-11 2002-01-10 2002-11-15 VU#307835 Oracle9i Application Server OWA_UTIL procedures expose sensitive information
2002-03-11 2002-03-11 2005-07-08 VU#368819 Double Free Bug in zlib Compression Library Corrupts malloc's Internal Data Structures
2002-03-07 2002-03-07 2002-04-02 VU#408419 OpenSSH contains a one-off overflow of an array in the channel handling code
2002-03-06 2002-02-06 2002-03-06 VU#798611 Oracle 9iAS contains cross-site scripting vulnerability in "htp.print"
2002-03-06 2002-02-06 2002-03-06 VU#476619 Oracle 9iAS default configuration allows arbitrary users to view sensitive configuration files

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis