search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-04-30 2002-04-29 2002-05-02 VU#638099 rpc.rwalld contains remotely exploitable format string vulnerability
2001-01-29 2001-01-29 2002-05-01 VU#196945 ISC BIND 8 contains buffer overflow in transaction signature (TSIG) handling code
2001-01-29 2001-01-29 2002-05-01 VU#325431 Queries to ISC BIND servers may disclose environment variables
2001-01-29 2001-01-29 2002-05-01 VU#572183 ISC BIND 4 contains buffer overflow in nslookupComplain()
2001-12-20 2001-08-17 2002-04-30 VU#860296 CDE dtprintinfo contains local buffer overflow in Help window via clipboard copy
2002-04-26 2002-04-25 2002-04-26 VU#820083 sudo vulnerable to heap corruption via -p parameter
2002-03-01 2002-02-27 2002-04-22 VU#234971 mod_ssl and Apache_SSL modules contain a buffer overflow in the implementation of the OpenSSL "i2d_SSL_SESSION" routine
2001-07-24 2001-07-18 2002-04-16 VU#745371 Multiple vendor telnet daemons vulnerable to buffer overflow via crafted protocol options
2002-03-04 2001-11-29 2002-04-16 VU#936683 Multiple implementations of the RADIUS protocol do not adequately validate the vendor-length of the vendor-specific attributes
2002-03-04 2001-11-12 2002-04-16 VU#589523 Multiple implementations of the RADIUS protocol contain a digest calculation buffer overflow
2002-02-11 2001-09-12 2002-04-15 VU#390280 KTH Kerberos Telnet implementations do not strictly enforce client encryption request
2001-12-12 2001-12-12 2002-04-11 VU#569272 System V derived login contains a remotely exploitable buffer overflow
2002-04-10 2002-04-10 2002-04-10 VU#883091 Microsoft Internet Information Server (IIS) contains cross-site scripting vulnerability in IIS Help Files search facility
2002-04-10 2002-04-10 2002-04-10 VU#520707 0 Microsoft Internet Information Server (IIS) contains cross-site scripting vulnerability in redirect response messages
2002-04-10 2002-04-10 2002-04-10 VU#412203 Microsoft Internet Information Server (IIS) vulnerable to DoS via malformed FTP connection status request

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis