search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-09-05 2002-08-01 2002-09-05 VU#177067 HP Tru64 UNIX "passwd" contains buffer overflow (SSRT2192)
2002-09-16 2001-03-31 2004-02-23 VU#229955 Nobreak CrazyWWWBoard contains buffer overflow via User-Agent field
2004-08-16 2004-08-10 2004-08-16 VU#128414 Apple Safari fails to properly handle form data in HTTP redirects
2011-01-21 2011-01-21 2011-01-21 VU#547167 CollabNet ScrumWorks Basic Server transmits credential information in plaintext
2002-07-16 2002-07-10 2002-07-22 VU#843667 Real Networks RealJukebox2 vulnerable to arbitrary code execution via crafted skin file
2004-05-13 2004-05-12 2004-06-02 VU#634414 Multiple Symantec firewall products fail to properly process NBNS response packets
2002-09-27 2001-06-21 2002-09-27 VU#295867 Microsoft Word does not adequately validate macros embedded within malformed Word documents
2001-08-16 2001-08-15 2008-02-05 VU#476267 Standard HTML form implementation allows access to IMAP, SMTP, NNTP, POP3, and other services via crafted HTML page
2003-03-21 2002-07-19 2003-04-15 VU#229867 HP Tru64 UNIX "su" command vulnerable to buffer overflow
2006-04-17 2006-04-13 2006-05-17 VU#179014 Mozilla CSS integer overflow vulnerability
2004-05-10 2004-01-26 2004-05-10 VU#779614 Gaim contains an integer overflow vulnerability when parsing DirectIM packets
2002-02-27 2002-02-06 2002-02-27 VU#698467 Oracle 9iAS default configuration allows access to "globals.jsa" file
2001-08-27 2001-07-11 2001-08-27 VU#557136 Cayman gateways ship with null administrative and user level passwords
2004-06-09 2004-05-05 2004-07-16 VU#722414 Perl vulnerable to buffer overflow in win32_stat()
2011-07-13 2011-07-13 2012-02-03 VU#853246 Brocade BigIron RX switch ACL bypass vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis