search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-05-06 2004-01-26 2004-05-06 VU#527142 Gaim contains a buffer overflow vulnerability in the yahoo_packet_read() function
2004-07-26 2004-07-16 2004-07-26 VU#390742 Sun Solaris Volume Manager (SVM) fails to properly handle malformed probe requests
2002-08-22 2002-08-21 2002-08-22 VU#746251 Novell Netware RCONAG6 fails to validate user password when "Secure IP" is used to establish connection
2006-06-14 2006-06-14 2011-07-22 VU#146718 Sendmail fails to handle malformed multipart MIME messages
2005-05-19 2005-05-19 2005-05-19 VU#372618 Groove Mobile Workspace vulnerable to script injection via SharePoint lists containing picture columns
2001-07-17 2001-07-16 2002-12-12 VU#276944 iPlanet Directory Server contains multiple vulnerabilities in LDAP handling code
2004-12-13 2004-11-29 2005-03-17 VU#305294 Shortcuts may insecurely store SMB authentication information
2004-12-10 2004-10-18 2005-01-14 VU#968818 Anti-virus software may not properly scan malformed zip archives
2010-06-10 2010-06-09 2010-07-13 VU#578319 Microsoft Windows Help and Support Center URI processing vulnerability
2010-01-12 2010-01-12 2010-01-15 VU#204889 Windows XP Macromedia Flash 6 ActiveX control use-after-free vulnerability
2006-11-21 2006-09-28 2007-03-28 VU#693992 NaviCOPA Web Server fails to properly handle certain HTTP requests
2006-11-01 2006-10-05 2007-01-12 VU#361792 Computer Associates Discovery Service buffer overflow
2002-01-03 2002-01-02 2002-01-16 VU#907819 AOL Instant Messenger client for Windows contains a buffer overflow while parsing TLV 0x2711 packets
2002-06-13 2002-06-12 2004-02-23 VU#313819 Microsoft Internet Information Server (IIS) contains remote buffer overflow in chunked encoding data transfer mechanism for HTR
2001-07-27 2001-06-27 2001-07-27 VU#593571 SCO UnixWare uux contains buffer overflow via long string of characters sent as command line argument

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis