search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2007-01-31 2007-01-23 2007-02-02 VU#611276 Computer Associates BrightStor ARCserve Backup LGSERVER.EXE stack buffer overflow
2002-08-08 2002-06-18 2008-07-21 VU#195371 SGI IRIX rpc.xfsmd does not filter shell metacharacters from user input before invoking popen() function
2002-10-17 2002-10-17 2003-01-06 VU#459371 Multiple IPsec implementations do not adequately validate authentication data
2008-12-11 2008-12-09 2008-12-11 VU#926676 Microsoft WordPad Text Converter vulnerable to remote code execution
2002-03-13 2002-01-10 2003-07-02 VU#611776 Oracle9i Application Server PL/SQL Gateway web administration interface uses null authentication by default
2002-03-01 2002-02-27 2002-04-22 VU#234971 mod_ssl and Apache_SSL modules contain a buffer overflow in the implementation of the OpenSSL "i2d_SSL_SESSION" routine
2001-11-15 2001-08-24 2001-11-15 VU#465971 BSCW vulnerable to arbitrary file overwriting via symlink redirection of temporary file
2001-08-15 2001-04-24 2001-08-17 VU#314776 Hewlett Packard HP-UX pcltotiff is installed with insecure permissions
2005-02-08 2005-02-08 2005-08-22 VU#843771 Microsoft Internet Explorer contains a DHTML method heap memory corruption vulnerability
2007-11-08 2007-11-05 2007-11-08 VU#319771 Apple QuickTime for Java may allow Java applets to gain elevated privileges
2001-07-27 2001-06-27 2001-07-27 VU#593571 SCO UnixWare uux contains buffer overflow via long string of characters sent as command line argument
2003-08-19 2003-08-13 2003-08-19 VU#636964 Sun ONE/iPlanet Web Server vulnerable to DoS
2002-09-13 2002-08-30 2002-09-13 VU#408771 HP Tru64 UNIX "mailcv" contains buffer overflow (SSRT2193)
2008-09-25 2008-09-25 2009-03-03 VU#343971 ABB PCU400 vulnerable to buffer overflow
2011-09-20 2011-09-20 2011-09-20 VU#440219 AmmSoft ScriptFTP 3.3 client remote buffer overflow vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis