search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-02-10 2004-02-10 2004-02-11 VU#216324 Microsoft ASN.1 Library improperly decodes malformed ASN.1 length values
2003-03-19 2003-03-18 2004-02-11 VU#516825 Integer overflow in Sun RPC XDR library routines
2004-02-05 2004-02-04 2004-02-12 VU#873334 Check Point ISAKMP vulnerable to buffer overflow via Certificate Request
2004-02-02 2003-11-25 2004-02-17 VU#784102 Microsoft Internet Explorer does not properly validate source of URL stored in Travel Log
2003-12-20 2003-12-09 2004-02-17 VU#652278 Microsoft Internet Explorer does not properly display URLs
2004-02-23 2004-02-10 2004-02-23 VU#445214 Microsoft Windows Internet Naming Service (WINS) fails to properly validate the length of specially crafted packets
2003-07-18 1998-05-21 2004-02-23 VU#12212 Weaknesses in MIT magic cookie and XDM X Windows authorization
2002-03-03 2002-03-02 2004-02-23 VU#165099 cryptcat does not encrypt data communications when -e command argument is used
2002-03-29 2001-06-19 2004-02-23 VU#219043 Netwin Surge FTP Server does not adequately validate user input thereby allowing directory traversal
2002-09-16 2001-03-31 2004-02-23 VU#229955 Nobreak CrazyWWWBoard contains buffer overflow via User-Agent field
2003-10-07 2003-07-19 2004-02-23 VU#246409 CGI.pm vulnerable to Cross-site Scripting
2001-05-01 2001-03-26 2004-02-23 VU#249224 Hewlett-Packard HP-UX newgrp command does not function properly
2002-06-13 2002-06-12 2004-02-23 VU#313819 Microsoft Internet Information Server (IIS) contains remote buffer overflow in chunked encoding data transfer mechanism for HTR
2002-04-10 2002-04-10 2004-02-23 VU#363715 Microsoft Internet Information Server (IIS) vulnerable to heap overflow during processing of crafted ".htr" request by "ISM.DLL" ISAPI filter
2001-08-10 2000-05-25 2004-02-23 VU#37526 0 Netscape fails to revalidate certificates if a user has previously acknowledged a certificate to be non-matching

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis