search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-03-13 2002-01-10 2003-07-02 VU#611776 Oracle9i Application Server PL/SQL Gateway web administration interface uses null authentication by default
2001-10-16 2001-09-11 2002-01-03 VU#466239 IBM AIX line printer daemon contains a buffer overflow in chk_fhost()
2002-03-01 2002-02-27 2002-04-22 VU#234971 mod_ssl and Apache_SSL modules contain a buffer overflow in the implementation of the OpenSSL "i2d_SSL_SESSION" routine
2001-11-15 2001-08-24 2001-11-15 VU#465971 BSCW vulnerable to arbitrary file overwriting via symlink redirection of temporary file
2001-08-15 2001-04-24 2001-08-17 VU#314776 Hewlett Packard HP-UX pcltotiff is installed with insecure permissions
2006-11-29 2006-11-28 2006-11-30 VU#258744 Apple Mac OS X Finder fails to properly handle malformed .DS_Store files
2005-02-08 2005-02-08 2005-08-22 VU#843771 Microsoft Internet Explorer contains a DHTML method heap memory corruption vulnerability
2007-11-08 2007-11-05 2007-11-08 VU#319771 Apple QuickTime for Java may allow Java applets to gain elevated privileges
2001-07-27 2001-06-27 2001-07-27 VU#593571 SCO UnixWare uux contains buffer overflow via long string of characters sent as command line argument
2002-04-10 2002-04-10 2002-06-13 VU#610291 Microsoft Internet Information Server (IIS) 4.0 and 5.0 buffer overflow in chunked encoding transfer mechanism for ASP
2003-08-19 2003-08-13 2003-08-19 VU#636964 Sun ONE/iPlanet Web Server vulnerable to DoS
2002-09-13 2002-08-30 2002-09-13 VU#408771 HP Tru64 UNIX "mailcv" contains buffer overflow (SSRT2193)
2008-09-25 2008-09-25 2009-03-03 VU#343971 ABB PCU400 vulnerable to buffer overflow
2011-09-20 2011-09-20 2011-09-20 VU#440219 AmmSoft ScriptFTP 3.3 client remote buffer overflow vulnerability
2002-07-25 2002-06-14 2003-02-05 VU#225555 Microsoft SQL Server contains buffer overflow in pwdencrypt() function

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis