search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-01-16 2004-01-14 2004-01-22 VU#174086 tcpdump contains vulnerability in ISAKMP decoding function rawprint() in print-isakmp.c
2004-01-21 2003-11-14 2004-01-21 VU#530660 Microsoft Exchange Server 2003 fails to assign user credentials to proper mailbox
2004-01-14 2003-12-22 2004-01-21 VU#371470 Whale Communications e-Gap security appliance discloses source code via HTTP TRACE Method
2004-01-20 2004-01-16 2004-01-20 VU#337238 Red Hat Enterprise Linux kernel-2.4.21 does not perform adequate checking of eflags when in 32-bit ptrace emulation mode
2004-01-19 2004-01-13 2004-01-19 VU#139150 Microsoft Data Access Components (MDAC) contains buffer overflow
2004-01-15 2004-01-07 2004-01-16 VU#759020 ISC InterNetNews (INN) contains buffer overflow in ARTpost() function
2004-01-15 2003-12-22 2004-01-16 VU#281356 Sun Solaris tcsh(1) contains vulnerability in the built-in ls-F command
2004-01-15 2002-10-01 2004-01-15 VU#891177 PostgreSQL VACUUM command allows unprivileged user to remove database transaction log data
2001-12-08 2001-06-19 2004-01-14 VU#105259 Oracle Database Server vulnerable to DoS via repeated requests to Oracle listener without connecting to redirected port
2004-01-05 2003-12-28 2004-01-09 VU#288308 0 Microsoft Internet Information Server (IIS) vulnerable to cross-site scripting via HTTP TRACK method
2003-12-01 2003-11-26 2004-01-05 VU#734644 ISC BIND 8 vulnerable to cache poisoning via negative responses
2003-08-25 2003-07-11 2003-12-30 VU#993452 Sendmail fails to appropriately initialize data structures for DNS maps
2003-12-29 2003-11-27 2003-12-29 VU#940388 GnuPG creates ElGamal keys for signing using insufficient entropy
2003-12-23 2003-05-22 2003-12-23 VU#148564 Apple QuickTime/Darwin Streaming Server integer overflow in MP3Broadcaster utility
2003-12-18 2003-12-10 2003-12-23 VU#352462 Cisco ACNS contains buffer overflow vulnerability in the authentication module when supplied an overly long password

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis