search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-01-21 2003-11-14 2004-01-21 VU#530660 Microsoft Exchange Server 2003 fails to assign user credentials to proper mailbox
2008-02-22 2008-02-13 2008-02-25 VU#264385 OpenCA allows Cross site request forgery (XSRF)
2000-10-02 2000-06-23 2001-02-19 VU#29823 Format string input validation error in wu-ftpd site_exec() function
2001-09-18 2001-06-07 2001-09-18 VU#855723 Microsoft Windows 2000 Telnet Service fails to enforce timeouts on idle telnet sessions
2002-03-12 2002-01-10 2002-03-12 VU#736923 Oracle 9iAS SOAP components allow anonymous users to deploy applications by default
2001-05-25 2000-05-11 2001-08-07 VU#35085 Microsoft Internet Information Server (IIS) discloses contents of files via crafted request for .htr file
2001-07-12 2001-04-11 2001-07-12 VU#890128 Lotus Domino vulnerable to a denial of service via DOS device request
2006-06-14 2006-06-11 2006-08-24 VU#817108 Yahoo! Mail script injection vulnerability
2001-10-26 2000-07-10 2002-08-10 VU#131923 OpenSSL PRNG contains design flaw that allows a user to determine internal state and predict future output
2003-01-22 2003-01-22 2003-04-14 VU#850785 Sun KCMS library service daemon does not adequately validate location of KCMS profiles
2005-10-13 2005-10-11 2005-10-14 VU#415828 Microsoft Windows FTP client does not properly validate received file names
2002-06-25 2002-06-17 2002-06-25 VU#455323 Mandrake Security may make unexpected system modifications
2008-07-16 2008-07-16 2008-07-16 VU#130923 Mozilla Firefox command line URI handling vulnerability
2003-04-07 2003-04-06 2003-04-09 VU#146785 SETI@home client vulnerable to buffer overflow
2002-06-04 2001-05-04 2002-09-18 VU#739123 ISC BIND 9 fails to process additional data chains in responses correctly thereby causing the server to fail an internal consistency check

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis