search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2008-09-17 2008-09-12 2008-09-17 VU#538011 LANDesk QIP service buffer overflow vulnerability
2001-07-17 2001-07-16 2003-04-17 VU#583184 Lotus Domino R5 Server Family contains multiple vulnerabilities in LDAP handling code
2002-01-14 2002-01-09 2002-01-14 VU#855195 Cisco SN 5420 Storage Router vulnerable to DoS via fragmented packet sent over Gigabit interface
2008-02-29 2008-02-29 2008-02-29 VU#524857 Learn2 STRunner ActiveX control stack buffer overflows
2002-09-24 2001-03-02 2003-11-05 VU#739211 PHP-Nuke does not adequately authenticate users thereby allowing attackers to change user information
2003-05-05 2003-04-24 2004-02-23 VU#443257 Cisco Catalyst switches allow access to "enable mode" without password
2007-04-10 2007-04-10 2007-04-11 VU#728057 Microsoft Windows Agent fails to properly process crafted URLs
2001-12-10 2001-05-29 2003-11-05 VU#403051 GnuPG format string vulnerability in do_get() in ttyio.c while prompting for a new filename
2000-12-19 2000-12-09 2001-01-11 VU#602625 KTH Kerberos environment variables krb4proxy and KRBCONFDIR may be used insecurely
2004-03-24 2004-03-22 2004-03-25 VU#864884 Ethereal contains multiple vulnerabilities in the IGAP protocol dissector
2002-02-27 2002-01-10 2002-02-27 VU#712723 Oracle 9iAS default configuration uses well-known default passwords
2003-01-15 2003-01-15 2003-03-26 VU#284857 ISC DHCPD minires library contains multiple buffer overflows
2007-11-15 2007-11-05 2007-11-15 VU#445083 Apple QuickTime heap buffer overflow vulnerability
2004-03-24 2004-03-19 2004-08-25 VU#132110 Apache HTTP Server vulnerable to DoS race condition in the handling of short-lived connections
2008-07-02 2008-07-02 2008-07-03 VU#607267 Mozilla Firefox code execution vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis