search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-12-09 2002-12-04 2003-03-27 VU#630355 Netscape and iPlanet Enterprise Servers fail to sanitize log files before they are displayed using the administration client
2003-03-26 2003-03-18 2003-03-26 VU#691153 BEA WebLogic Server fails to discard cached authentication information when web applications are updated
2002-04-29 1999-02-01 2003-03-26 VU#2558 File Transfer Protocol allows data connection hijacking via PASV mode race condition
2002-09-27 2002-02-07 2003-03-26 VU#978131 Microsoft Exchange 2000 system attendant sets incorrect remote registry permissions
2002-09-27 2001-01-01 2003-03-26 VU#879920 Microsoft Windows Media Player ActiveX control allows execution of javascript in "already open" frames
2003-01-15 2003-01-15 2003-03-26 VU#284857 ISC DHCPD minires library contains multiple buffer overflows
2003-02-19 2003-02-17 2003-03-26 VU#542873 Lotus iNotes vulnerable to buffer overflow via PresetFields s_ViewName field
2003-02-19 2003-02-17 2003-03-26 VU#571297 Lotus Notes and Domino COM Object Control Handler contains buffer overflow
2003-02-19 2003-02-17 2003-03-26 VU#772817 Lotus Domino Web Server vulnerable to buffer overflow via non-existent "h_SetReturnURL" parameter with an overly long "Host Header" field
2003-02-19 2003-02-17 2003-03-26 VU#206361 Lotus iNotes vulnerable to buffer overflow via PresetFields FolderName field
2003-02-21 2003-02-17 2003-03-26 VU#355169 Lotus Domino Web Server vulnerable to denial of service via incomplete POST request
2002-09-16 1997-05-28 2003-03-24 VU#169059 X11 vulnerable to buffer overflow in handling of -xrm option
2003-03-21 2002-04-26 2003-03-21 VU#596387 Icecast vulnerable to buffer overflow via long GET request
2003-03-21 2002-04-29 2003-03-21 VU#186131 Blahz-DNS does not properly authenticate users before granting access to various configuration pages
2003-03-18 2003-03-08 2003-03-20 VU#203897 MySQL allows default user to be changed to root via custom "my.cnf" file

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis