search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-07-11 2002-05-06 2002-07-11 VU#165803 Apache Web Server ap_log_rerror() function discloses full path to CGI script
2001-07-24 2001-07-24 2001-09-04 VU#581603 Microsoft Services for UNIX Network File System (NFS) server is vulnerable to denial of service via memory leak
2002-09-26 2001-08-20 2002-09-26 VU#471075 4D WebServer does not adequately validate user input thereby allowing directory traversal
2007-01-16 2007-01-10 2007-03-13 VU#552136 Apple Mac OS X UFS filesystem integer overflow vulnerability
2005-07-13 2005-07-13 2005-07-20 VU#258834 WebEOC privileges are based on client-side authorization
2003-10-09 2003-10-06 2003-10-14 VU#488684 Hummingbird CyberDOCS contains multiple cross-site scripting vulnerabilities
2006-04-17 2006-04-13 2006-04-17 VU#736934 Mozilla products vulnerable to memory corruption via a particular sequence of HTML tags
2004-09-17 2004-08-31 2004-09-17 VU#460528 Mozilla fails to properly handle script-generated events
2002-09-16 2002-07-27 2004-02-23 VU#377003 Hewlett Packard JetDirect-enabled printers disclose Telnet/HTTP passwords in hex format via "SNMP READ" request
2011-09-26 2011-09-26 2011-10-06 VU#668534 Multiple Quagga remote component vulnerabilities
2007-08-15 2007-07-03 2007-08-15 VU#399896 GIMP integer overflow vulnerability
2002-04-11 2002-03-21 2002-05-28 VU#124003 Apache HTTP Server on Win32 systems does not securely handle input passed to CGI programs
2004-10-22 2004-08-25 2004-10-25 VU#981134 Linux kernel USB drivers do not initialize kernel memory properly
2001-09-26 1998-07-06 2001-09-26 VU#182777 IBM AIX nslookup buffer overflow in lex routines
2004-02-23 2004-02-17 2004-03-19 VU#972334 IMail Server LDAP daemon buffer overflow

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis