search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-06-13 2001-09-20 2002-06-13 VU#133771 Lotus Domino Web Server discloses IP address
2002-06-13 2002-02-28 2002-06-13 VU#132011 Snitz Forums 2000 vulnerable to cross-site scripting via crafted IMG tag
2002-06-07 2001-07-09 2002-06-12 VU#797201 tcpdump vulnerable to buffer overflow via improper decoding of AFS RPC (Rx) packets
2002-06-12 2002-06-04 2002-06-12 VU#440275 Microsoft Internet Explorer contains buffer overflow in handling of gopher replies
2002-06-11 2002-05-29 2002-06-11 VU#116963 Apache Tomcat default installation contains sample applications that disclose webroot path
2002-06-05 2002-02-21 2002-06-10 VU#393195 Yahoo! Messenger allows arbitrary users to be added to buddy list without proper authorization
2001-12-14 2001-12-13 2002-06-07 VU#443699 Microsoft Internet Explorer Does Not Respect Content-Disposition and Content-Type MIME Headers
2002-06-05 2002-05-27 2002-06-06 VU#137115 Yahoo! Messenger contains a buffer overflow in the URI handler
2002-06-05 2002-02-26 2002-06-05 VU#755755 Yahoo! Messenger contains a buffer overflow in "set_buddygrp" when adding users to a buddy list via the web
2002-06-05 2002-02-21 2002-06-05 VU#952875 Yahoo! Messenger is vulnerable to DoS via multiple messages from spoofed names
2002-06-05 2002-05-27 2002-06-05 VU#172315 Yahoo! Messenger "addview" function allows for the automatic execution of malicious script contained in web pages
2002-06-05 2002-02-21 2002-06-05 VU#419419 Yahoo! Messenger contains buffer overflow in "message" field
2002-05-30 2002-05-18 2002-06-04 VU#251339 Verisign transmits sensitive customer information in plain text when applying for a "Code Signing Digital ID"
2001-08-13 2000-12-07 2002-05-30 VU#363181 OpenSSH disregards client configuration and allows server access to ssh-agent and/or X11 after session negotiation
2002-05-22 2002-05-15 2002-05-30 VU#330275 Cisco Content Service Switch reboots when HTTPS POST request is sent to web management interface

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis