search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-03-01 2002-02-27 2002-04-22 VU#234971 mod_ssl and Apache_SSL modules contain a buffer overflow in the implementation of the OpenSSL "i2d_SSL_SESSION" routine
2001-07-24 2001-07-18 2002-04-16 VU#745371 Multiple vendor telnet daemons vulnerable to buffer overflow via crafted protocol options
2002-03-04 2001-11-29 2002-04-16 VU#936683 Multiple implementations of the RADIUS protocol do not adequately validate the vendor-length of the vendor-specific attributes
2002-03-04 2001-11-12 2002-04-16 VU#589523 Multiple implementations of the RADIUS protocol contain a digest calculation buffer overflow
2002-02-11 2001-09-12 2002-04-15 VU#390280 KTH Kerberos Telnet implementations do not strictly enforce client encryption request
2001-12-12 2001-12-12 2002-04-11 VU#569272 System V derived login contains a remotely exploitable buffer overflow
2002-04-10 2002-04-10 2002-04-10 VU#883091 Microsoft Internet Information Server (IIS) contains cross-site scripting vulnerability in IIS Help Files search facility
2002-04-10 2002-04-10 2002-04-10 VU#520707 0 Microsoft Internet Information Server (IIS) contains cross-site scripting vulnerability in redirect response messages
2002-04-10 2002-04-10 2002-04-10 VU#412203 Microsoft Internet Information Server (IIS) vulnerable to DoS via malformed FTP connection status request
2002-04-10 2002-04-10 2002-04-10 VU#454091 Microsoft Internet Information Server (IIS) vulnerable to buffer overflow via inaccurate checking of delimiters in HTTP header fields
2002-04-10 2002-04-10 2002-04-10 VU#721963 Microsoft Internet Information Server (IIS) buffer overflow in server-side includes (SSI) containing long invalid file name
2002-04-10 2002-04-10 2002-04-10 VU#521059 Microsoft Internet Information Server (IIS) vulnerable to DoS when URL request exceeds maximum allowed length
2002-04-08 2002-03-07 2002-04-08 VU#152867 Buffer overflow in Microsoft Windows Shell
2002-04-02 2001-01-04 2002-04-08 VU#496064 ibrow NewsDesk does not securely handle input passed to open()
2002-04-05 2001-10-06 2002-04-05 VU#710347 AOL Instant Messenger vulnerable to DoS via crafted GIF file

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis