search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-05-17 2001-01-05 2001-06-20 VU#451096 Oliver Debon Flash plug-in vulnerable to buffer overflow processing incorrectly formatted sound file
2002-09-13 2002-08-30 2002-09-13 VU#693803 HP Tru64 UNIX "dxpause" contains buffer overflow (SSRT2275)
2001-12-20 2001-05-23 2001-12-20 VU#110803 CrushFTP Server does not adequately filter user input thereby permitting directory traversal
2005-06-08 2005-02-24 2005-06-08 VU#360296 Cisco ACNS may be vulnerable to DoS via malformed IP packets
2011-11-08 2011-11-08 2011-11-09 VU#998403 Aviosoft DTV Player buffer overflow vulnerability
2002-07-11 2002-05-06 2002-07-11 VU#165803 Apache Web Server ap_log_rerror() function discloses full path to CGI script
2001-07-24 2001-07-24 2001-09-04 VU#581603 Microsoft Services for UNIX Network File System (NFS) server is vulnerable to denial of service via memory leak
2002-09-26 2001-08-20 2002-09-26 VU#471075 4D WebServer does not adequately validate user input thereby allowing directory traversal
2007-01-16 2007-01-10 2007-03-13 VU#552136 Apple Mac OS X UFS filesystem integer overflow vulnerability
2002-09-26 2002-07-22 2002-09-26 VU#940203 DansGuardian content filtering proxy fails to adequately validate user input thereby allowing user to access restricted site via hex encoded URLs
2002-06-04 2002-05-27 2002-11-15 VU#997403 Oracle Reports Server Reports Web Cartridge (RWCGI60) vulnerable to buffer overflow via database name parameter
2005-02-10 2005-01-18 2005-02-21 VU#272296 AWStats fails to properly filter user-supplied input
2002-09-16 2002-07-27 2004-02-23 VU#377003 Hewlett Packard JetDirect-enabled printers disclose Telnet/HTTP passwords in hex format via "SNMP READ" request
2007-08-15 2007-07-03 2007-08-15 VU#399896 GIMP integer overflow vulnerability
2002-04-11 2002-03-21 2002-05-28 VU#124003 Apache HTTP Server on Win32 systems does not securely handle input passed to CGI programs

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis