search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-12-15 1999-12-07 2001-12-15 VU#13217 Problem with HP r-cmnds
2001-12-07 2001-09-27 2001-12-10 VU#905795 OpenSSH fails to properly apply source IP based access control restrictions
2002-09-24 2001-12-01 2002-09-24 VU#597795 Easynews does not adequately validate user input thereby disclosing server installation path via crafted URL request
2001-02-18 2001-02-09 2001-02-18 VU#123384 MySQL client contains buffer overflow
2003-10-16 2003-10-15 2003-10-16 VU#435444 Microsoft Outlook Web Access (OWA) contains cross-site scripting vulnerability in the "Compose New Message" form
2002-07-27 2002-07-10 2002-07-31 VU#338195 Microsoft SQL Server installation process leaves sensitive information on system
2000-10-31 1999-09-10 2000-11-01 VU#29795 HHOpen ActiveX Control buffer overflow in OpenHelp method
2002-06-05 2002-02-21 2002-06-10 VU#393195 Yahoo! Messenger allows arbitrary users to be added to buddy list without proper authorization
2001-07-17 2001-07-16 2002-12-12 VU#869184 Oracle Internet Directory contains multiple vulnerabilities in LDAP handling code
2003-09-22 2003-09-04 2003-09-22 VU#792284 WS_FTP Server vulnerable to buffer overflow when supplied overly long "APPE" command
2006-05-16 2006-05-11 2006-05-16 VU#186944 EMC Retrospect Client buffer overflow vulnerability
2002-02-28 2002-02-06 2002-03-15 VU#923395 Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via cache directory name
2006-12-04 2006-11-28 2006-12-04 VU#811384 Apple Mac OS X Security Framework Online Certificate Status Protocol (OCSP) service fails to properly retrieve certificate revocation lists
2002-09-05 2002-08-30 2002-09-05 VU#629289 HP Tru64 UNIX "traceroute" contains buffer overflow (SSRT2261)
2006-05-15 2006-05-11 2006-05-17 VU#570689 Apple QuickTime FlashPix integer overflow

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis