search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-04-02 2002-04-01 2004-02-23 VU#640827 IBM AIX Parallel Systems Support Program (PSSP) contains vulnerability in File Collections subsystem allowing arbitrary access to sensitive configuration files
2001-05-07 1999-12-14 2001-05-16 VU#28934 Sun Solaris sadmind buffer overflow in amsl_verify when requesting NETMGT_PROC_SERVICE
2007-05-08 2007-05-08 2007-05-08 VU#260777 Microsoft Word fails to properly process crafted array data
2006-06-14 2006-06-14 2011-07-22 VU#146718 Sendmail fails to handle malformed multipart MIME messages
2002-08-22 2002-08-21 2002-08-22 VU#746251 Novell Netware RCONAG6 fails to validate user password when "Secure IP" is used to establish connection
2004-03-25 2004-03-19 2004-03-25 VU#344718 Norton AntiSpam contains boundary error within the "SymSpamHelper Class" (symspam.dll) ActiveX component.
2004-03-16 2004-03-11 2004-03-17 VU#831534 cPanel fails to verify input passed to the "user" parameter
2000-11-20 2000-10-10 2001-09-18 VU#111677 Microsoft IIS 4.0 / 5.0 vulnerable to directory traversal via extended unicode in url
2001-07-02 1991-07-17 2007-04-24 VU#10277 Various shells create temporary files insecurely when using << operator
2007-12-18 2007-12-18 2008-01-07 VU#905292 Apple Safari code execution vulnerability
2008-05-29 2008-05-19 2008-05-29 VU#111034 GnuTLS Server Name extension Denial of Service
2004-01-22 2004-01-21 2004-01-23 VU#721092 Cisco IBM Director agent does not properly handle arbitrary TCP packets to port 14247/tcp
2004-01-15 2002-10-01 2004-01-15 VU#891177 PostgreSQL VACUUM command allows unprivileged user to remove database transaction log data
2004-05-13 2004-05-12 2004-05-13 VU#637318 Multiple Symantec firewall products contain a buffer overflow in the processing of DNS resource records
2004-01-22 2004-01-21 2004-01-23 VU#602734 Cisco default install of IBM Director agent fails to authenticate users for remote administration

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis