search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-07-11 2002-07-10 2002-07-11 VU#821139 Network Associates PGP Outlook Plug-in contains buffer overflow in decoding mechanism
2002-03-13 2002-01-10 2003-07-02 VU#611776 Oracle9i Application Server PL/SQL Gateway web administration interface uses null authentication by default
2002-07-30 2002-07-30 2002-09-30 VU#308891 OpenSSL contains multiple buffer overflows in buffers that are used to hold ASCII representations of integers
2002-03-01 2002-02-27 2002-04-22 VU#234971 mod_ssl and Apache_SSL modules contain a buffer overflow in the implementation of the OpenSSL "i2d_SSL_SESSION" routine
2001-11-15 2001-08-24 2001-11-15 VU#465971 BSCW vulnerable to arbitrary file overwriting via symlink redirection of temporary file
2001-08-15 2001-04-24 2001-08-17 VU#314776 Hewlett Packard HP-UX pcltotiff is installed with insecure permissions
2011-08-29 2011-08-29 2011-10-19 VU#213486 LifeSize Room appliance authentication bypass and arbitrary code injection vulnerability
2005-02-08 2005-02-08 2005-08-22 VU#843771 Microsoft Internet Explorer contains a DHTML method heap memory corruption vulnerability
2007-11-08 2007-11-05 2007-11-08 VU#319771 Apple QuickTime for Java may allow Java applets to gain elevated privileges
2001-07-27 2001-06-27 2001-07-27 VU#593571 SCO UnixWare uux contains buffer overflow via long string of characters sent as command line argument
2006-05-30 2006-05-30 2006-06-07 VU#397417 Secure Elements Class 5 AVR server fails to properly enforce access controls on console operations
2003-08-19 2003-08-13 2003-08-19 VU#636964 Sun ONE/iPlanet Web Server vulnerable to DoS
2002-09-13 2002-08-30 2002-09-13 VU#408771 HP Tru64 UNIX "mailcv" contains buffer overflow (SSRT2193)
2008-09-25 2008-09-25 2009-03-03 VU#343971 ABB PCU400 vulnerable to buffer overflow
2002-07-25 2002-06-14 2003-02-05 VU#225555 Microsoft SQL Server contains buffer overflow in pwdencrypt() function

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis