search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-10-24 2001-04-20 2002-11-07 VU#887393 Microsoft Windows 2000 SNMP service leaks memory when querying printer objects if spooler service is stopped
2002-05-21 2002-05-21 2002-10-30 VU#341187 SSHD allows users to override "AllowedAuthentications" configuration thereby permitting users to provide any type of authentication
2002-10-29 2001-08-24 2002-10-29 VU#837419 Netegrity SiteMinder does not adequately validate user input thereby allowing user to bypass filters via crafted URL
2002-10-28 2002-04-15 2002-10-28 VU#582923 webalizer vulnerable to buffer overflow when performing reverse DNS lookups
2002-10-17 2002-08-27 2002-10-28 VU#899713 Microsoft Word and Excel documents allow local file reading by via embedded fields
2002-06-05 2002-02-21 2002-10-24 VU#887319 Yahoo! Messenger contains buffer overflow in "IMvironment" field
2002-10-18 2002-10-11 2002-10-18 VU#482241 Avaya switches contains multiple undocumented accounts allowing full administrative access to the device
2002-10-17 2002-09-26 2002-10-17 VU#600777 gv contains buffer overflow in sscanf() function
2002-10-01 1999-04-21 2002-10-16 VU#39965 DHTML Edit Control for IE5 allows local files to be uploaded to web server
2002-10-15 2002-02-22 2002-10-16 VU#868219 Multiple vendors' HTTP content/virus scanners do not check data tunneled via HTTP CONNECT method
2002-10-01 1999-09-10 2002-10-11 VU#40813 SetupCtl 1.0 Type Library contains a buffer overflow
2002-10-02 2002-09-25 2002-10-04 VU#723537 Microsoft SmartHTML interpreter (shtml.dll) contains vulnerability
2002-10-04 2002-10-02 2002-10-04 VU#840137 Microsoft Services for Unix 3.0 Interix SDK vulnerable to buffer overrun via RPC request containing improper parameter size check
2002-10-03 2002-10-02 2002-10-03 VU#240329 Apache HTTPD server vulnerable to cross site scripting on error page when using wildcard DNS
2002-08-05 2002-07-16 2002-10-02 VU#212707 Multiple vendor implementations of file scanning utilities vulnerable to DoS via compressed file archive

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis