search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2003-01-24 1997-10-27 2003-02-05 VU#258721 Various FTP clients fail to account for pipe (|) characters in default file names
2003-01-31 2003-01-28 2003-02-01 VU#787523 MIT Kerberos V5 KDC logging routines use unsafe format strings
2000-12-04 2000-09-25 2003-01-27 VU#382365 LPRng can pass user-supplied input as a format string parameter to syslog() calls
2003-01-23 2003-01-22 2003-01-23 VU#610986 Microsoft Locator service contains buffer overflow
2003-01-21 2002-11-12 2003-01-21 VU#897529 Microsoft Virtual Machine allows untrusted applets to access the user.dir system property
2003-01-21 2002-11-12 2003-01-21 VU#657625 Microsoft Virtual Machine incorrectly parses the domain portion of URLs containing a colon
2003-01-21 2002-11-12 2003-01-21 VU#237777 Microsoft Virtual Machine allows applets write access to the Standard Security Manager
2003-01-15 2003-01-11 2003-01-20 VU#331937 BEA WebLogic Server "ResourceAllocationException" exception may disclose user password
2003-01-17 2003-01-17 2003-01-17 VU#862401 HP-UX XServer contains privilege escalation vulnerability
2003-01-17 2002-12-23 2003-01-17 VU#518057 Sun Solaris AUTH_DES authentication contains vulnerability allowing user to gain escalated privileges
2002-05-08 2002-05-08 2003-01-13 VU#854315 ISC DHCPD contains format string vulnerability when logging DNS-update requests
2003-01-13 2002-04-23 2003-01-13 VU#772563 Lotus Domino web server vulnerable to buffer overflow via long HTTP authentication header containing non-ASCII characters
2002-12-09 2002-11-07 2003-01-09 VU#780737 Pine MUA contains buffer overflow in addr_list_string()
2002-10-17 2002-10-17 2003-01-06 VU#459371 Multiple IPsec implementations do not adequately validate authentication data
2002-10-02 2002-10-02 2003-01-06 VU#383779 ZIP archives containing files with large filenames can cause buffer overflows

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis