search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-02-01 2004-09-05 2005-02-03 VU#961686 QNX PPPoEd vulnerable to buffer overflow
2005-02-01 2004-09-05 2005-02-03 VU#577566 QNX PPPoEd daemon vulnerable to command spoofing
2004-09-17 2004-09-04 2004-09-17 VU#327560 Mozilla "send page" feature contains a buffer overflow vulnerability
2004-09-17 2004-08-31 2004-09-17 VU#460528 Mozilla fails to properly handle script-generated events
2004-09-02 2004-08-31 2004-09-03 VU#866472 MIT Kerberos 5 ASN.1 decoding function krb5_rd_cred() insecurely deallocates memory (double-free)
2004-09-01 2004-08-31 2004-09-01 VU#435974 Oracle Application Server contains several vulnerabilities
2004-10-19 2004-08-31 2004-10-19 VU#925166 PhpWebSite calendar module contains a SQL injection vulnerability
2004-09-01 2004-08-31 2004-09-01 VU#170830 Oracle Enterprise Manager contains several vulnerabilities
2004-10-19 2004-08-31 2004-10-19 VU#664422 PhpWebSite contains multiple cross-site scripting vulnerabilities
2004-09-02 2004-08-31 2004-09-03 VU#350792 MIT Kerberos krb524d insecurely deallocates memory (double-free)
2004-09-02 2004-08-31 2004-09-03 VU#550464 MIT Kerberos 5 ASN.1 decoding function asn1buf_skiptail() does not properly terminate loop
2004-09-02 2004-08-31 2005-05-10 VU#795632 MIT Kerberos 5 ASN.1 decoding functions insecurely deallocate memory (double-free)
2007-06-15 2004-08-30 2007-06-21 VU#793433 Novell exteNd Director 4.1 LocalExec ActiveX control fails to restrict access to dangerous methods
2004-09-16 2004-08-30 2004-09-17 VU#700326 cdrecord fails to set proper permissions on programs specified in RSH environment variable
2004-08-27 2004-08-27 2004-09-03 VU#384230 Cisco IOS fails to properly handle telnet connections

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis