search menu icon-carat-right cmu-wordmark

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2003-05-20 2003-05-03 2003-07-14 VU#397604 GnuPG contains flaw in key validation code
2003-05-30 2002-04-23 2003-07-14 VU#524227 GNU screen contains buffer overflow
2003-04-10 2003-04-07 2003-07-10 VU#267873 Samba contains multiple buffer overflows
2003-07-01 2003-06-25 2003-07-10 VU#320516 Windows Media Player 9 ActiveX control does not adequately validate access to Windows Media Library
2003-05-13 2003-04-30 2003-07-10 VU#184820 Adobe Acrobat does not adequately validate Acrobat JavaScript
2002-02-26 2002-02-06 2003-07-03 VU#180147 Oracle 9i Database Server PL/SQL module allows remote command execution without authentication
2002-03-13 2002-01-10 2003-07-02 VU#611776 Oracle9i Application Server PL/SQL Gateway web administration interface uses null authentication by default
2002-08-23 2002-08-22 2003-07-02 VU#342243 Microsoft Windows Server Message Block (SMB) fails to properly handle SMB_COM_TRANSACTION packets requesting NetShareEnum transaction
2003-04-04 2003-04-04 2003-06-27 VU#720017 Entrust Authority Security Manager (EASM) does not enforce multiple authorization requirement for master user password change
2003-06-04 2003-05-27 2003-06-23 VU#467828 Mac OS X LDAP plugins transmit user credentials in clear text
2003-06-23 2003-06-16 2003-06-23 VU#758932 Sun Management Center (SunMC) allows user to create or overwrite arbitrary files
2003-06-23 2003-05-07 2003-06-23 VU#727780 Cisco VPN 3000 Concentrator may allow access to internal hosts when IPsec over TCP is enabled
2003-06-23 2003-05-07 2003-06-23 VU#317348 Cisco VPN 3000 Concentrator forces device to reload when processing malformed SSH initialization packet
2003-06-23 2003-05-07 2003-06-23 VU#221164 Cisco VPN 3000 Concentrator vulnerable to DoS via large number of malformed ICMP packets
2002-12-16 2002-12-16 2003-06-18 VU#389665 Multiple vendors' SSH transport layer protocol implementations contain vulnerabilities in key exchange and initialization

Sponsored by CISA.