search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2003-10-16 2003-10-15 2003-10-16 VU#435444 Microsoft Outlook Web Access (OWA) contains cross-site scripting vulnerability in the "Compose New Message" form
2001-05-25 2000-05-11 2001-08-07 VU#35085 Microsoft Internet Information Server (IIS) discloses contents of files via crafted request for .htr file
2002-03-12 2002-01-10 2002-03-12 VU#736923 Oracle 9iAS SOAP components allow anonymous users to deploy applications by default
2001-09-18 2001-06-07 2001-09-18 VU#855723 Microsoft Windows 2000 Telnet Service fails to enforce timeouts on idle telnet sessions
2006-05-16 2006-05-11 2006-05-16 VU#186944 EMC Retrospect Client buffer overflow vulnerability
2007-08-14 2007-08-14 2007-08-15 VU#361968 Microsoft XML Core Services XMLDOM substringData() buffer overflow
2003-02-18 2003-02-11 2003-02-19 VU#840666 Oracle9i Database contains remotely exploitable buffer overflow in "TO_TIMESTAMP_TZ" function
2000-10-02 2000-06-23 2001-02-19 VU#29823 Format string input validation error in wu-ftpd site_exec() function
2008-02-22 2008-02-13 2008-02-25 VU#264385 OpenCA allows Cross site request forgery (XSRF)
2001-12-20 2001-10-10 2001-12-21 VU#140723 Advanced Poll does not adequately authenticate users
2003-06-27 2003-06-22 2003-09-03 VU#823260 Microsoft Windows HTML conversion library vulnerable to buffer overflow
2002-09-05 2002-08-30 2002-09-05 VU#629289 HP Tru64 UNIX "traceroute" contains buffer overflow (SSRT2261)
2002-10-28 2002-04-15 2002-10-28 VU#582923 webalizer vulnerable to buffer overflow when performing reverse DNS lookups
2004-08-27 2004-03-19 2004-08-27 VU#785945 isakmpd crashes when handling ISAKMP packets with malformed "Security Association Payload"
2002-09-20 2002-09-11 2003-02-06 VU#603945 Slash-based bulletin boards contain a "quick login" feature that may disclose username and password

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis