search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-07-30 2002-07-30 2002-09-30 VU#102795 OpenSSL servers contain a buffer overflow during the SSL2 handshake process
2002-07-30 2002-07-30 2002-09-30 VU#561275 OpenSSL servers contain a remotely exploitable buffer overflow vulnerability during the SSL3 handshake process
2002-07-30 2002-07-30 2002-09-30 VU#258555 OpenSSL clients contain a buffer overflow during the SSL3 handshake process
2002-09-27 2001-05-21 2002-09-27 VU#345576 Microsoft Word does not check for macros contained in linked template file when opening RTF document
2002-09-27 2001-06-21 2002-09-27 VU#295867 Microsoft Word does not adequately validate macros embedded within malformed Word documents
2002-09-27 2001-12-05 2002-09-27 VU#960267 Microsoft Windows 2000 fails to apply Group Policy to clients when policy file has been opened using exclusive read access (MS02-016)
2002-09-27 2002-02-21 2002-09-27 VU#462451 Microsoft Internet Explorer allows read access to local files via incorrect VBScript handling
2002-09-27 2001-05-23 2002-09-27 VU#187528 Microsoft Windows Media Player buffer overflow in Active Stream Redirector (.asx) file parser
2002-09-27 2000-11-22 2002-09-27 VU#675320 Microsoft Windows Media Player buffer overflow in Active Stream Redirector (.asx) file parser
2002-09-27 2000-11-10 2002-09-27 VU#829845 Microsoft Windows 2000 Indexing Services enumerates local file locations via ixsso.query ActiveX object
2002-09-27 2000-12-01 2002-09-27 VU#820957 Microsoft Internet Explorer 5.5 print template ActiveX control allows arbitrary command execution
2002-09-27 2001-05-23 2002-09-27 VU#739376 Microsoft Windows Media Player creates URL shortcut that may contain HTML code in known location in Local Computer Zone
2002-09-27 2001-05-10 2002-09-27 VU#910624 Microsoft Windows 2000 Indexing Service permits read access to files outside web root via crafted request
2002-09-27 2000-04-03 2002-09-27 VU#26493 MS Excel XLM Text Macro execution fails to trigger warning when default medium security set
2002-09-27 2001-10-13 2002-09-27 VU#921547 PostNuke does not adequately validate user input thereby allowing malicious user to bypass user authentication via SQL injection

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis