search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2003-02-19 2003-02-17 2003-03-26 VU#542873 Lotus iNotes vulnerable to buffer overflow via PresetFields s_ViewName field
2011-12-07 2011-12-07 2011-12-09 VU#713012 CA Siteminder login.fcc form xss vulnerability
2005-08-17 2005-08-15 2005-08-17 VU#461412 Apple Mac OS X Server servermgrd authentication vulnerable to buffer overflow
2007-03-13 2007-01-28 2007-03-13 VU#363112 Apple CrashDump privilege escalation
2001-04-10 2001-04-10 2001-04-11 VU#212088 Alcatel ADSL modems contain a null default password
2001-12-21 2001-12-19 2001-12-21 VU#249491 IBM AIX login fails to adequately authenticate user when configured to use loadable authentication modules
2003-07-18 1998-05-21 2004-02-23 VU#12212 Weaknesses in MIT magic cookie and XDM X Windows authorization
2008-01-15 2008-01-15 2008-07-22 VU#347812 UPnP enabled by default in multiple devices
2006-04-11 2006-04-11 2006-11-02 VU#234812 RDS.Dataspace ActiveX control bypasses ActiveX security model
2002-06-04 2002-05-27 2002-06-13 VU#630091 Oracle9i Database TNS Listener vulnerable to buffer overflow via SERVICE_NAME parameter
2002-07-26 2002-07-24 2006-05-08 VU#484891 Microsoft SQL Server 2000 contains stack buffer overflow in SQL Server Resolution Service
2004-08-04 2004-08-04 2005-06-01 VU#477512 libpng png_handle_sPLT() integer overflow
2007-03-02 2007-02-28 2007-03-22 VU#472412 Cisco Catalyst Systems with a NAM may allow system access via spoofing the SNMP communication
2007-09-06 2007-09-06 2007-09-25 VU#589188 Earth Resource Mapping NCSView ActiveX control stack buffer overflows
2001-08-10 2000-05-30 2001-08-10 VU#26188 Keys generated with PGP5i batch mode do not contain sufficient randomness on systems that use /dev/random

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis