search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-05-24 2002-05-09 2002-12-12 VU#314963 OpenBSD kernel fails to properly check closed file descriptors "0-2" when running setuid program
2002-05-10 2002-05-09 2002-08-28 VU#713779 0 Microsoft MSN Messenger Chat Control contains a buffer overflow in "ResDLL" parameter
2002-05-22 2002-05-15 2002-05-30 VU#686939 Cisco Content Service Switch performs soft reset when XML data is sent to web management interface
2002-09-24 2002-05-15 2003-09-18 VU#916795 Microsoft Internet Explorer (MSIE) Content-Disposition vulnerabilities
2002-05-30 2002-05-15 2002-08-26 VU#242891 Microsoft Internet Explorer may handle certain web pages in an incorrect, less restrictive security zone (MS02-023)
2002-05-22 2002-05-15 2002-05-30 VU#330275 Cisco Content Service Switch reboots when HTTPS POST request is sent to web management interface
2002-05-30 2002-05-18 2002-06-04 VU#251339 Verisign transmits sensitive customer information in plain text when applying for a "Code Signing Digital ID"
2002-05-21 2002-05-21 2002-10-30 VU#341187 SSHD allows users to override "AllowedAuthentications" configuration thereby permitting users to provide any type of authentication
2002-09-09 2002-05-22 2002-09-09 VU#115731 HP Tru64 UNIX "quot" contains buffer overflow (SSRT2191)
2002-06-04 2002-05-27 2002-06-13 VU#630091 Oracle9i Database TNS Listener vulnerable to buffer overflow via SERVICE_NAME parameter
2002-06-04 2002-05-27 2002-11-15 VU#997403 Oracle Reports Server Reports Web Cartridge (RWCGI60) vulnerable to buffer overflow via database name parameter
2002-06-04 2002-05-27 2002-11-15 VU#291555 Oracle Web Cache contains buffer overflow vulnerabilities
2002-06-05 2002-05-27 2002-06-05 VU#172315 Yahoo! Messenger "addview" function allows for the automatic execution of malicious script contained in web pages
2002-06-13 2002-05-27 2002-06-25 VU#855811 Microsoft Remote Access Service API contains additional buffer overflow vulnerability via phonebook entries
2002-06-04 2002-05-27 2003-06-02 VU#301059 Oracle TNS Listener Control Utility (LSNRCTL) contains format string vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis