search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-12-20 2001-12-20 2001-12-21 VU#411059 Microsoft Windows Universal Plug and Play service (UPNP) fails to limit the data returned in response to a NOTIFY message
2002-07-22 2000-04-14 2002-08-30 VU#458659 Microsoft Windows domain name resolver service accepts responses from non-queried DNS servers by default
2005-08-24 2005-08-24 2005-11-02 VU#778916 pam_ldap authentication bypass vulnerability
2006-06-05 2006-06-05 2006-06-05 VU#620516 TIBCO Hawk Monitoring Agent vulnerable to buffer overflow via the configuration interface
2003-08-20 2002-04-30 2003-08-20 VU#888459 SGI IRIX contains buffer overflow vulnerability in "cpr" program
2002-03-01 2002-02-27 2002-04-22 VU#234971 mod_ssl and Apache_SSL modules contain a buffer overflow in the implementation of the OpenSSL "i2d_SSL_SESSION" routine
2001-10-16 2001-09-11 2002-01-03 VU#466239 IBM AIX line printer daemon contains a buffer overflow in chk_fhost()
2001-08-20 2001-01-30 2003-05-29 VU#417216 sort creates temporary files insecurely
2002-06-04 2002-05-27 2003-06-02 VU#301059 Oracle TNS Listener Control Utility (LSNRCTL) contains format string vulnerability
2001-09-26 2001-05-24 2001-09-26 VU#426459 Beck GmbH IPC@Chip FtpD allows an attacker to gain access to the device
2009-07-28 2009-07-28 2009-08-27 VU#725188 ISC BIND 9 vulnerable to denial of service via dynamic update request
2001-06-01 2001-04-25 2001-08-30 VU#310816 RIT Research Labs The Bat! does not properly parse <CR> characters not followed by a <LF> character
2004-04-14 2004-04-13 2004-04-14 VU#260588 Microsoft Windows Help and Support Center (HCP) fails to validate HCP URLs
2006-06-22 2006-06-11 2006-07-07 VU#912588 WinSCP URI handlers fails to properly parse command line switches
2003-02-18 2003-02-11 2003-02-19 VU#953746 Oracle9i Database contains remotely exploitable buffer overflow in "ORACLE.EXE"

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis