search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-09-17 2001-08-03 2001-09-17 VU#314347 phpBB does not adequately validate user input thereby allowing user to gain escalated privileges via manipulated SQL query
2003-10-30 2001-08-07 2003-10-30 VU#981915 Avaya Argent Office vulnerable to denial of service via malformed DNS packets
2003-10-30 2001-08-07 2003-10-30 VU#293051 Avaya Argent Office uses weak SNMP authentication mechanism
2003-10-30 2001-08-07 2003-10-30 VU#742115 Avaya Argent Office uses weak authentication for TFTP-based administrative control
2003-10-30 2001-08-07 2003-10-30 VU#822019 Avaya Argent Office requests 'HoldMusic' file from broadcast address via TFTP
2001-08-14 2001-08-13 2001-08-14 VU#544555 Microsoft Internet Information Server 4.0 (IIS) vulnerable to DoS when URL redirecting is enabled
2002-09-27 2001-08-13 2002-09-27 VU#494307 SIX-webboard does not adequately validate user input thereby permitting directory traversal
2002-01-31 2001-08-14 2002-01-31 VU#726891 Novell Groupwise contains protocol implementation vulnerability allowing email to be viewed by unauthorized user
2001-08-16 2001-08-15 2008-02-05 VU#476267 Standard HTML form implementation allows access to IMAP, SMTP, NNTP, POP3, and other services via crafted HTML page
2002-07-13 2001-08-15 2002-07-13 VU#630531 Microsoft Internet Information Server (IIS) vulnerable to buffer overflow via malformed server-side include directive
2001-09-18 2001-08-15 2001-09-18 VU#959211 Microsoft IIS vulnerable to DoS via invalid request for very long WebDAV requests
2001-12-20 2001-08-17 2002-04-30 VU#860296 CDE dtprintinfo contains local buffer overflow in Help window via clipboard copy
2002-09-26 2001-08-20 2002-09-26 VU#471075 4D WebServer does not adequately validate user input thereby allowing directory traversal
2002-09-26 2001-08-21 2002-09-26 VU#782243 TDForum does not adequately validate user input thereby allowing users to embed malicious script code in messages
2001-11-15 2001-08-23 2001-11-15 VU#105347 XMCD vulnerable to arbitrary file overwriting via symlink redirection of temporary file

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis