search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-06-13 2001-04-23 2001-06-13 VU#167464 Robtex Viking Web Server permits traversal out of HTTP docs root directory
2007-01-09 2007-01-09 2007-05-10 VU#481564 Kerberos administration daemon fails to properly initialize function pointers
2003-04-17 2002-12-20 2003-04-17 VU#485057 RealNetworks Helix Universal Server vulnerable to buffer overflow when supplied an overly long string for the "Describe" field
2003-01-17 2002-12-23 2003-01-17 VU#518057 Sun Solaris AUTH_DES authentication contains vulnerability allowing user to gain escalated privileges
2003-12-23 2003-05-22 2003-12-23 VU#148564 Apple QuickTime/Darwin Streaming Server integer overflow in MP3Broadcaster utility
2001-05-04 2001-04-11 2001-05-04 VU#446864 Sun Solaris mailx contains buffer overflow via -F option
2008-01-10 2008-01-10 2008-02-07 VU#112179 Apple QuickTime RTSP Response message Reason-Phrase buffer overflow vulnerability
2007-08-14 2007-08-14 2009-04-13 VU#599657 IBM and Lenovo Access Support acpRunner ActiveX control format string vulnerability
2002-09-27 2000-12-01 2002-09-27 VU#820957 Microsoft Internet Explorer 5.5 print template ActiveX control allows arbitrary command execution
2011-01-12 2011-01-04 2011-01-12 VU#506864 InduSoft NTWebServer web service stack-based buffer overflow
2003-05-19 2003-05-02 2003-05-19 VU#971364 HP-UX "kermit" vulnerable to buffer overflow
2001-09-26 2001-02-12 2001-09-26 VU#500379 AOLServer contains buffer overflow in ParseAuth()
2007-01-09 2006-12-20 2007-05-16 VU#149457 Sun Java JRE vulnerable to arbitrary code execution via an undetermined error
2002-09-16 2002-03-28 2002-09-16 VU#273779 IBM AIX vulnerable to buffer overflow in RPC routines
2001-07-27 2001-07-05 2001-08-07 VU#898931 Multiple vendors' RADIUS implementations do not adequately validate user input thereby permitting DoS and arbitrary command execution via 'radiusd' daemon

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis