search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-07-31 2002-04-01 2002-07-31 VU#158323 Oracle Configurator discloses version and host information via "test" argument passed to servlet
2002-08-09 2002-04-03 2002-12-10 VU#128491 Macromedia Flash Player continues to download flash files until browser is closed
2002-07-11 2002-04-04 2002-07-11 VU#613899 Buffer overflow in Windows Multiple UNC Provider (MUP) service
2002-05-16 2002-04-05 2002-05-16 VU#772915 Computer Associates MLink "mllock" command vulnerable to buffer overflow via long string of characters
2002-05-16 2002-04-05 2002-05-16 VU#544995 Computer Associates MLink "mclear" command vulnerable to buffer overflow via long string of characters
2002-09-24 2002-04-08 2002-09-24 VU#156123 Microsoft Office Web Components allows arbitary user to determine whether local file exists via Chart component "Load" method
2002-05-08 2002-04-08 2002-05-08 VU#744139 AOL Instant Messenger installer adds "http://free.aol.com" to Trusted Sites Zone in Microsoft Internet Explorer
2002-04-10 2002-04-10 2002-04-10 VU#520707 0 Microsoft Internet Information Server (IIS) contains cross-site scripting vulnerability in redirect response messages
2002-04-10 2002-04-10 2002-04-10 VU#412203 Microsoft Internet Information Server (IIS) vulnerable to DoS via malformed FTP connection status request
2002-04-10 2002-04-10 2002-06-13 VU#610291 Microsoft Internet Information Server (IIS) 4.0 and 5.0 buffer overflow in chunked encoding transfer mechanism for ASP
2002-04-10 2002-04-10 2002-04-10 VU#883091 Microsoft Internet Information Server (IIS) contains cross-site scripting vulnerability in IIS Help Files search facility
2002-04-10 2002-04-10 2004-02-23 VU#363715 Microsoft Internet Information Server (IIS) vulnerable to heap overflow during processing of crafted ".htr" request by "ISM.DLL" ISAPI filter
2002-04-10 2002-04-10 2004-02-23 VU#886699 Microsoft Internet Information Server (IIS) contains cross-site scripting vulnerability in HTTP error page results
2002-04-10 2002-04-10 2002-04-10 VU#521059 Microsoft Internet Information Server (IIS) vulnerable to DoS when URL request exceeds maximum allowed length
2002-04-10 2002-04-10 2002-04-10 VU#454091 Microsoft Internet Information Server (IIS) vulnerable to buffer overflow via inaccurate checking of delimiters in HTTP header fields

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis