search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-08-19 2001-07-05 2002-08-19 VU#188507 Low BandWidth X proxy vulnerable to buffer overflow via crafted display command line option
2002-08-16 2002-08-16 2002-08-16 VU#939675 Microsoft Windows SQL Server allows arbitrary queries to be executed via "xp_printstatements" extended procedure
2002-08-16 2002-08-16 2002-08-16 VU#818939 Microsoft Windows SQL Server allows arbitrary queries to be executed via "xp_displayparamstmt" extended procedure
2002-08-16 2002-08-16 2002-08-16 VU#399531 Microsoft Windows SQL Server allows arbitrary queries to be executed via "xp_execresultset" extended procedure
2002-07-09 2002-06-06 2002-08-16 VU#375859 Microsoft ASP.NET contains buffer overflow
2002-07-11 2002-07-10 2002-08-15 VU#299816 Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) does not adequately validate file operations
2002-08-01 2001-11-20 2002-08-10 VU#176363 ncompress vulnerable to buffer overflow via long filename
2001-10-26 2000-07-10 2002-08-10 VU#131923 OpenSSL PRNG contains design flaw that allows a user to determine internal state and predict future output
2002-08-10 2002-03-27 2002-08-10 VU#495275 Cisco CallManager contains memory leak
2002-08-09 2001-06-21 2002-08-09 VU#139315 SurfControl SuperScout does not filter web requests fragmented in multiple packets
2002-08-08 2002-06-20 2002-08-08 VU#521147 SGI IRIX rpc.xfsmd uses weak authentication mechanism for RPC authentication
2002-06-25 2002-06-12 2002-08-08 VU#139931 Microsoft SQLXML HTTP components vulnerable to cross-site scripting via root parameter
2002-06-25 2002-06-12 2002-08-08 VU#811371 Microsoft SQLXML ISAPI filter vulnerable to buffer overflow via contenttype parameter
2002-08-07 2002-01-10 2002-08-07 VU#245707 Nevrona Designs MiraMail stores all configuration and user account information in unencrypted text file
2001-08-09 2001-06-22 2002-08-06 VU#109475 Microsoft Windows NT and 2000 Domain Name Servers allow non-authoritative RRs to be cached by default

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis