search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-07-22 2000-04-14 2002-08-30 VU#458659 Microsoft Windows domain name resolver service accepts responses from non-queried DNS servers by default
2002-05-10 2002-05-09 2002-08-28 VU#713779 0 Microsoft MSN Messenger Chat Control contains a buffer overflow in "ResDLL" parameter
2002-08-28 2001-06-21 2002-08-28 VU#351219 Sun Solaris ptexec does not adequately validate argument passed via -o option
2002-08-01 2002-06-26 2002-08-28 VU#542971 Multiple vendors' Domain Name System (DNS) stub resolvers vulnerable to buffer overflow via network name and address lookups
2002-08-27 2002-08-22 2002-08-27 VU#276321 Microsoft Windows Terminal Services Advanced Client (TSAC) contains buffer overflow in process that handles input parameters
2002-08-23 2002-08-22 2002-08-26 VU#311619 Microsoft Windows Server Message Block (SMB) fails to properly handle SMB_COM_TRANSACTION packets requesting NetServerEnum3 transaction
2002-05-30 2002-05-15 2002-08-26 VU#242891 Microsoft Internet Explorer may handle certain web pages in an incorrect, less restrictive security zone (MS02-023)
2002-08-26 2002-08-21 2002-08-26 VU#355707 Microsoft Office Web Components allows reading of local files via "LoadText" method by using URL redirection
2002-08-16 2002-08-14 2002-08-22 VU#721611 Microsoft Windows Network Connection Manager (NCM) handler routine may execute code with LocalSystem privileges
2002-08-22 2002-08-21 2002-08-22 VU#746251 Novell Netware RCONAG6 fails to validate user password when "Secure IP" is used to establish connection
2002-08-20 2002-04-22 2002-08-20 VU#809347 FreeBSD privilege elevation vulnerability
2002-08-19 2001-07-05 2002-08-19 VU#188507 Low BandWidth X proxy vulnerable to buffer overflow via crafted display command line option
2002-08-16 2002-08-16 2002-08-16 VU#939675 Microsoft Windows SQL Server allows arbitrary queries to be executed via "xp_printstatements" extended procedure
2002-08-16 2002-08-16 2002-08-16 VU#818939 Microsoft Windows SQL Server allows arbitrary queries to be executed via "xp_displayparamstmt" extended procedure
2002-08-16 2002-08-16 2002-08-16 VU#399531 Microsoft Windows SQL Server allows arbitrary queries to be executed via "xp_execresultset" extended procedure

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis