search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-08-08 2002-06-20 2002-08-08 VU#521147 SGI IRIX rpc.xfsmd uses weak authentication mechanism for RPC authentication
2003-02-19 2003-02-17 2003-03-26 VU#542873 Lotus iNotes vulnerable to buffer overflow via PresetFields s_ViewName field
2002-01-31 2000-05-08 2002-01-31 VU#24447 AOL Instant Messenger exposes local file path during file transfers
2002-04-05 2001-10-06 2002-04-05 VU#710347 AOL Instant Messenger vulnerable to DoS via crafted GIF file
2011-03-07 2011-03-07 2011-09-08 VU#555316 STARTTLS plaintext command injection vulnerability
2001-10-24 2001-02-08 2003-05-20 VU#945216 SSH CRC32 attack detection code contains remote integer overflow
2006-10-12 2006-10-10 2006-10-12 VU#921300 Microsoft Word vulnerable to remote code execution
2003-06-06 2003-06-04 2007-01-16 VU#978316 Vulnerability in OpenSSH daemon (sshd)
2003-07-30 2003-07-29 2003-07-30 VU#682900 SGI IRIX name services daemon (nsd) and modules mishandle AUTH_UNIX gid list
2005-08-17 2005-08-15 2005-08-17 VU#420316 Apple Mac OS X Safari vulnerable to arbitrary command execution via URLs in PDF files
2005-09-29 2005-09-29 2005-09-29 VU#602300 AIX "getconf" contains buffer overflow vulnerability
2007-08-23 2007-08-21 2007-08-23 VU#959400 Trend Micro ServerProtect Integer Overflow Vulnerability
2005-05-10 2005-04-19 2005-05-13 VU#668916 Microsoft Windows Explorer vulnerable to script injection via the Web View DLL
2004-08-23 2004-08-09 2004-08-23 VU#770816 CVSTrac fails to properly sanitize input passed to "filediff"
2005-10-21 2005-10-18 2005-10-21 VU#512716 Oracle Application Server Web Cache vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis