search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2000-11-09 2000-04-26 2004-03-30 VU#24346 Cisco IOS software vulnerable to DoS via HTTP request containing "%%"
2001-06-27 2001-06-27 2004-03-30 VU#812515 Cisco IOS HTTP server authentication vulnerability allows remote attackers to execute arbitrary commands
2004-03-17 2004-03-17 2004-03-26 VU#484726 OpenSSL does not adequately validate length of Kerberos ticket during SSL/TLS handshake
2004-03-17 2004-03-17 2004-03-26 VU#288574 OpenSSL contains null-pointer assignment in do_change_cipher_spec() function
2004-03-25 2004-03-22 2004-03-25 VU#125156 Ethereal contains multiple vulnerabilities in the UCP protocol dissector
2004-03-25 2004-03-22 2004-03-25 VU#591820 Ethereal fails to properly decode Transaction IDs within TCAP packets
2004-03-25 2004-03-19 2004-03-25 VU#549054 Norton "WrapNISUM Class" (WrapUM.dll) ActiveX control allows remote arbitrary command execution
2004-03-25 2004-03-19 2004-03-25 VU#344718 Norton AntiSpam contains boundary error within the "SymSpamHelper Class" (symspam.dll) ActiveX component.
2004-03-10 2004-02-18 2004-03-25 VU#981222 Linux kernel mremap(2) system call does not properly check return value from do_munmap() function
2004-03-25 2004-03-22 2004-03-25 VU#659140 Ethereal ISUP protocol dissector fails to properly decode ISUP packets
2004-03-24 2004-03-22 2004-03-25 VU#644886 Ethereal fails to properly parse NetFlow UDP packets with an overly large template_entry count
2004-03-25 2004-03-22 2004-03-25 VU#931588 0 Ethereal fails to properly decode BGP packets containing MPLS IPv6 labels
2004-03-24 2004-03-22 2004-03-25 VU#864884 Ethereal contains multiple vulnerabilities in the IGAP protocol dissector
2004-03-24 2004-03-22 2004-03-25 VU#433596 Ethereal integer underflow when parsing malformed PGM packets with NAK lists
2004-03-24 2004-03-22 2004-03-25 VU#119876 Ethereal contains multiple vulnerabilities in the EIGRP protocol dissector

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis