search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-09-07 2004-07-06 2004-09-07 VU#829422 Ethereal fails to properly handle malformed iSNS packets
2005-01-05 2004-12-20 2005-01-14 VU#420222 Konqueror fails to restrict access to Java classes
2002-09-13 2002-08-30 2002-09-13 VU#584243 HP Tru64 UNIX "dtsession" contains buffer overflow (SSRT2282)
2008-12-05 2008-01-03 2008-12-05 VU#528993 Linksys WVC54GC wireless video camera vulnerable to information disclosure
2004-08-20 2004-05-29 2004-08-20 VU#561022 Mozilla contains a buffer overflow in the SendUidl() function
2005-04-12 2005-04-12 2005-04-13 VU#756122 Microsoft Internet Explorer URL validation routine contains a buffer overflow
2005-10-26 2005-10-25 2005-12-19 VU#668193 Skype VCARD handling routine contains a buffer overflow
2002-08-23 2002-08-22 2002-08-26 VU#311619 Microsoft Windows Server Message Block (SMB) fails to properly handle SMB_COM_TRANSACTION packets requesting NetServerEnum3 transaction
2002-01-14 2002-01-09 2002-01-14 VU#833459 Cisco SN 5420 Storage Router fails to properly authenticate user before granting read access to configuration file
2002-02-27 2002-02-06 2002-03-12 VU#547459 Oracle 9iAS creates temporary files when processing JSP requests that are world-readable
2002-03-04 2002-02-21 2002-03-06 VU#613459 Squid Proxy Server contains buffer overflow in parsing of the authentication portion of FTP URLs
2002-09-27 2000-04-03 2002-09-27 VU#26493 MS Excel XLM Text Macro execution fails to trigger warning when default medium security set
2003-02-14 2003-02-11 2003-07-24 VU#849993 Some implementations of mod_dav contain a format string vulnerability in "ap_log_rerror()" function
2001-08-21 2001-06-12 2001-11-15 VU#655259 OpenSSH allows arbitrary file deletion via symlink redirection of temporary file
2007-01-24 2007-01-24 2007-01-31 VU#341288 Cisco IOS fails to properly process certain packets containing a crafted IP option

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis