search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-07-11 2002-05-06 2002-07-11 VU#165803 Apache Web Server ap_log_rerror() function discloses full path to CGI script
2001-07-24 2001-07-24 2001-09-04 VU#581603 Microsoft Services for UNIX Network File System (NFS) server is vulnerable to denial of service via memory leak
2002-09-26 2001-08-20 2002-09-26 VU#471075 4D WebServer does not adequately validate user input thereby allowing directory traversal
2007-01-16 2007-01-10 2007-03-13 VU#552136 Apple Mac OS X UFS filesystem integer overflow vulnerability
2002-09-26 2002-07-22 2002-09-26 VU#940203 DansGuardian content filtering proxy fails to adequately validate user input thereby allowing user to access restricted site via hex encoded URLs
2002-06-04 2002-05-27 2002-11-15 VU#997403 Oracle Reports Server Reports Web Cartridge (RWCGI60) vulnerable to buffer overflow via database name parameter
2005-02-21 2004-12-22 2005-02-21 VU#372968 WinAmp contains a flaw in metadata handling in .mpa and .mp4 files
2005-02-10 2005-01-18 2005-02-21 VU#272296 AWStats fails to properly filter user-supplied input
2002-09-16 2002-07-27 2004-02-23 VU#377003 Hewlett Packard JetDirect-enabled printers disclose Telnet/HTTP passwords in hex format via "SNMP READ" request
2003-05-05 2002-12-03 2003-05-06 VU#244729 Microsoft Internet Explorer does not adequately validate window ornament parameters in dialog frames
2007-08-15 2007-07-03 2007-08-15 VU#399896 GIMP integer overflow vulnerability
2002-04-11 2002-03-21 2002-05-28 VU#124003 Apache HTTP Server on Win32 systems does not securely handle input passed to CGI programs
2004-03-25 2004-03-19 2004-03-25 VU#549054 Norton "WrapNISUM Class" (WrapUM.dll) ActiveX control allows remote arbitrary command execution
2002-09-24 2001-12-25 2002-09-24 VU#282403 AdCycle does not adequately validate user input thereby allowing for SQL injection
2007-03-06 2007-03-06 2007-03-19 VU#880561 Apple QuickTime movie heap buffer overflow vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis