search menu icon-carat-right cmu-wordmark
Carnegie Mellon University
Please be aware that VINCE will be down for maintenance from 12 noon EST until 4 PM EST on November 19, 2025.

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-01-15 2002-01-07 2002-01-24 VU#570167 ICQ contains a buffer overflow while processing Voice Video & Games feature requests
2002-01-16 2002-01-16 2002-01-16 VU#185251 cgiemail web-based email system does not adequately validate user input thereby causing buffer overflow in cgisco.c
2002-01-03 2002-01-02 2002-01-16 VU#907819 AOL Instant Messenger client for Windows contains a buffer overflow while parsing TLV 0x2711 packets
2001-07-12 2001-02-20 2002-01-15 VU#566640 pgp4pine fails to properly check for expired public keys
2002-01-14 2002-01-09 2002-01-14 VU#968187 Cisco SN 5420 Storage Router vulnerable to DoS via HTTP request containing long headers
2002-01-14 2002-01-09 2002-01-14 VU#855195 Cisco SN 5420 Storage Router vulnerable to DoS via fragmented packet sent over Gigabit interface
2002-01-14 2001-10-06 2002-01-14 VU#530299 AOL Instant Messenger vulnerable to buffer overflow via numerous fonts sent to client followed by &lt HR&gt
2002-01-14 2001-10-06 2002-01-14 VU#990451 AOL Instant Messenger vulnerable to DoS via crafted WAV file
2002-01-14 2001-10-06 2002-01-14 VU#972499 AOL Instant Messenger vulnerable to buffer overflow via long filename
2002-01-14 2002-01-09 2002-01-14 VU#833459 Cisco SN 5420 Storage Router fails to properly authenticate user before granting read access to configuration file
2002-01-11 2000-03-17 2002-01-11 VU#32794 iPlanet Web Server and Netscape Enterprise Server Web Publisher commands allow directory enumeration
2001-09-20 2000-06-14 2002-01-10 VU#984555 Default installations of the Lotus Domino web server disclose system information via HTTP headers
2002-01-08 2002-01-08 2002-01-09 VU#191763 iPlanet Web Server Enterprise Edition and Netscape Enterprise Server malformed Web Publisher command causes denial-of-service
2001-12-21 2001-12-20 2002-01-09 VU#700575 Buffer overflows in Microsoft SQL Server 7.0 and SQL Server 2000
2002-01-08 2002-01-08 2002-01-08 VU#985347 iPlanet Web Server Enterprise Edition and Netscape Enterprise Server Web Publisher command exposes server to brute force attack

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis