search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-10-15 2002-10-15 2003-01-06 VU#539363 State-based firewalls fail to effectively manage session table resource exhaustion
2002-10-16 2002-10-15 2002-12-12 VU#169841 dvips uses system() function insecurely thereby allowing arbitrary command execution
2002-10-17 2002-10-17 2003-01-06 VU#459371 Multiple IPsec implementations do not adequately validate authentication data
2003-03-26 2002-10-18 2003-06-04 VU#261537 Microsoft Windows RPC service vulnerable to DoS via NULL pointer dereference
2003-03-20 2002-10-18 2012-02-03 VU#464113 TCP/IP implementations handle unusual flag combinations inconsistently
2002-12-12 2002-10-22 2004-05-26 VU#162097 Microsoft Internet Explorer does not adequately validate references to cached objects and methods
2002-11-19 2002-10-30 2002-11-19 VU#361065 The default NTFS permissions are not applied to a converted boot partition on Microsoft Windows 2000 and Windows XP systems when CONVERT.EXE is used
2002-11-19 2002-11-01 2002-12-10 VU#930161 NetScreen Secure Command Shell (SCS) denial-of-service vulnerability
2002-11-04 2002-11-04 2003-04-09 VU#266817 Multiple Sun RPC-based libc implementations fails to provide time-out mechanism when reading data from TCP connections
2002-12-09 2002-11-07 2003-01-09 VU#780737 Pine MUA contains buffer overflow in addr_list_string()
2002-11-13 2002-11-11 2004-10-18 VU#852283 Cached malformed SIG record buffer overflow
2002-11-13 2002-11-12 2003-05-30 VU#229595 Overly large OPT record assertion
2002-11-13 2002-11-12 2003-04-24 VU#844360 Domain Name System (DNS) stub resolver libraries vulnerable to buffer overflows via network name or address lookups
2002-11-13 2002-11-12 2003-02-25 VU#581682 ISC BIND 8 fails to properly dereference cache SIG RR elements with invalid expiry times from the internal database
2003-01-21 2002-11-12 2003-01-21 VU#897529 Microsoft Virtual Machine allows untrusted applets to access the user.dir system property

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis