search menu icon-carat-right cmu-wordmark

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-09-16 2002-07-27 2004-02-23 VU#377003 Hewlett Packard JetDirect-enabled printers disclose Telnet/HTTP passwords in hex format via "SNMP READ" request
2003-05-05 2003-04-24 2004-02-23 VU#443257 Cisco Catalyst switches allow access to "enable mode" without password
2002-04-02 2002-04-01 2004-02-23 VU#640827 IBM AIX Parallel Systems Support Program (PSSP) contains vulnerability in File Collections subsystem allowing arbitrary access to sensitive configuration files
2001-07-29 2001-07-12 2004-02-23 VU#656315 Cisco IOS vulnerable to DoS via crafted PPTP packet sent to port 1723/tcp
2003-07-18 2003-07-18 2004-02-23 VU#704969 X servers may have insecure default configuration of xhosts
2002-04-10 2002-04-10 2004-02-23 VU#886699 Microsoft Internet Information Server (IIS) contains cross-site scripting vulnerability in HTTP error page results
2004-02-24 2004-02-13 2004-02-24 VU#619982 Zone Labs desktop security products fail to properly validate RCPT TO command argument
2004-02-25 2004-02-24 2004-02-25 VU#194238 Apple Mac OS X Safari fails to properly display URLs in the status bar
2004-02-26 2004-02-24 2004-02-26 VU#841742 Apple Mac OS X Point-to-Point Protocol daemon (pppd) contains format string vulnerability
2004-02-27 2004-02-06 2004-02-27 VU#399806 Oracle9i Database contains buffer overflow in FROM_TZ() function
2004-02-27 2004-02-06 2004-02-27 VU#240174 Oracle9i Database contains buffer overflow in TIME_ZONE session parameter
2004-02-27 2004-02-06 2004-02-27 VU#846582 Oracle9i Database contains buffer overflow in NUMTODSINTERVAL() function
2004-02-27 2004-02-06 2004-02-27 VU#819126 Oracle9i Database contains buffer overflow in NUMTOYMINTERVAL() function
2004-02-27 2004-02-13 2004-02-27 VU#150326 Internet Security Systems' BlackICE and RealSecure contain a heap overflow in the processing of SMB packets
2004-03-01 2004-02-27 2004-03-01 VU#116182 WinZip vulnerable to buffer overflow in handling of MIME archive parameters

Sponsored by CISA.