search menu icon-carat-right cmu-wordmark

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-05-22 2002-05-15 2002-05-30 VU#686939 Cisco Content Service Switch performs soft reset when XML data is sent to web management interface
2005-04-01 2005-03-28 2005-07-28 VU#341908 Multiple Telnet Clients vulnerable to buffer overflow via the env_opt_add() function in telnet.c
2004-07-27 2004-07-21 2004-08-05 VU#548968 Multiple Cisco ONS control cards fail to properly handle malformed SNMP packets
2003-10-16 2003-10-15 2003-10-22 VU#967668 Microsoft Windows ListBox and ComboBox controls vulnerable to buffer overflow when supplied crafted Windows message
2008-06-26 2008-06-18 2008-06-27 VU#923508 Microsoft Internet Explorer 6 contains a cross-domain vulnerability
2006-06-14 2006-06-11 2006-08-24 VU#817108 Yahoo! Mail script injection vulnerability
2003-10-30 2003-10-03 2004-05-20 VU#473108 Cisco Lightweight Extensible Authentication Protocol (LEAP) uses passwords that are vulnerable to dictionary attacks
2001-09-17 2001-04-23 2001-09-17 VU#670568 Samba creates temporary files insecurely
2001-04-10 2001-04-10 2001-04-11 VU#490344 Alcatel ADSL modems provide unauthenticated TFTP access via physical WAN interface
2005-05-16 2005-05-03 2005-05-25 VU#331694 Apple Mac OS X chpass/chfn/chsh utilities do not properly validate external programs
2007-06-22 2007-06-22 2008-06-04 VU#389868 Apple WebKit frame rendering memory corruption vulnerability
2004-04-20 2003-12-22 2006-05-01 VU#415294 The Border Gateway Protocol relies on persistent TCP sessions without specifying authentication requirements
2006-10-10 2006-10-10 2007-02-27 VU#706668 Microsoft Excel fails to properly process malformed DATETIME records
2011-05-27 2011-05-26 2011-06-01 VU#795694 ISC BIND named negative caching vulnerability
2002-02-27 2002-01-10 2002-02-27 VU#712723 Oracle 9iAS default configuration uses well-known default passwords

Sponsored by CISA.