search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-11-07 1998-06-11 2003-05-20 VU#13877 Weak CRC allows packet injection into SSH sessions encrypted with block ciphers
2001-10-24 2001-02-08 2003-05-20 VU#945216 SSH CRC32 attack detection code contains remote integer overflow
2002-07-29 2002-04-17 2003-05-19 VU#117139 Sambar Web Server vulnerable to sourcecode disclosure due to improper parsing of scripts
2003-05-19 2003-05-02 2003-05-19 VU#971364 HP-UX "kermit" vulnerable to buffer overflow
2003-05-19 2003-05-19 2003-05-19 VU#869548 Apple Mac OS X IPSec mechanism fails to handle certain incoming security policies that match by port
2002-12-13 2002-11-20 2003-05-16 VU#958321 Samba contains a remotely exploitable stack buffer overflow
2003-03-17 2003-03-16 2003-05-15 VU#298233 Samba contains buffer overflow in SMB/CIFS packet fragment reassembly code
2003-05-07 2003-05-07 2003-05-15 VU#384932 Microsoft Windows Media Player fails to properly evaluate URLs when downloading skin files
2003-05-14 2003-05-07 2003-05-15 VU#583020 XMMS Remote input validation error
2001-12-21 2001-12-19 2003-05-14 VU#598147 Microsoft Internet Explorer does not properly handle document.open()
2003-05-13 2003-04-28 2003-05-13 VU#641012 Kerio Personal Firewall vulnerable to replay attack
2003-05-12 2003-04-28 2003-05-13 VU#454716 Kerio Personal Firewall vulnerable to buffer overflow
2003-05-12 2003-05-01 2003-05-12 VU#361700 Ethereal contains integer overflow in PPP dissector
2003-05-12 2003-05-01 2003-05-12 VU#232164 Ethereal contains integer overflow in Mount dissector
2003-03-20 2003-03-15 2003-05-09 VU#623217 Cryptographic weakness in Kerberos Version 4 protocol

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis