search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-08-09 2005-08-09 2005-08-11 VU#220821 Microsoft Print Spooler service contains a buffer overflow
2001-10-26 2001-06-18 2001-10-26 VU#139139 Air Messenger LAN Server (AMLServer) stores usernames and passwords in plaintext
2002-07-11 2002-07-10 2002-07-11 VU#821139 Network Associates PGP Outlook Plug-in contains buffer overflow in decoding mechanism
2002-09-27 2001-10-15 2002-09-27 VU#341539 Novell GroupWise Server web-based front-end does not adequately validate user input thereby allowing directory traversal
2002-12-13 2002-11-20 2003-05-16 VU#958321 Samba contains a remotely exploitable stack buffer overflow
2001-10-16 2000-01-08 2001-11-09 VU#30308 lpd hostname authentication bypassed with spoofed DNS
2006-04-19 2006-04-19 2006-05-05 VU#621566 Linksys RT31P2 VoIP router denial of service vulnerabilities
2004-02-03 2003-10-30 2004-03-19 VU#434566 Apache mod_rewrite vulnerable to buffer overflow via crafted regular expression
2006-07-11 2006-07-11 2006-07-13 VU#257164 Microsoft DHCP Client service contains a buffer overflow
2006-09-28 2006-09-28 2007-02-09 VU#247744 OpenSSL may fail to properly parse invalid ASN.1 structures
2006-06-21 2006-06-18 2006-08-22 VU#394444 Microsoft Hyperlink Object Library stack buffer overflow
2002-09-27 2001-05-21 2002-09-27 VU#345576 Microsoft Word does not check for macros contained in linked template file when opening RTF document
2005-01-20 2004-12-21 2005-08-23 VU#539110 LibTIFF vulnerable to integer overflow in the TIFFFetchStrip() routine
2005-10-21 2005-10-18 2005-10-24 VU#171364 Oracle Application Server SQL*ReportWriter vulnerability
2001-03-04 2001-03-03 2001-03-27 VU#320944 RhinoSoft FTP Voyager FtpTree incorrectly marked "safe for scripting"

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis