search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-03-24 2004-03-22 2004-04-05 VU#124454 Ethereal crashes when processing malformed RADIUS packets
2003-11-18 2003-09-10 2004-04-02 VU#771604 Microsoft Internet Explorer does not properly validate URL sources
2004-03-23 2004-02-16 2004-04-01 VU#779438 ModSecurity for Apache vulnerable to off-by-one overflow when directive "SecFilterScanPost" is enabled
2004-03-29 2000-12-20 2004-03-31 VU#463944 Cisco Catalyst reboots in response to an SSH "protocol mismatch" error
2001-11-28 2001-11-28 2004-03-30 VU#362483 Cisco IOS Firewall Feature Set fails to check IP protocol type thereby allowing packets to bypass dynamic access control lists
2000-11-08 2000-10-25 2004-03-30 VU#683677 Cisco IOS software vulnerable to DoS via HTTP request containing "?/"
2000-11-09 2000-04-26 2004-03-30 VU#24346 Cisco IOS software vulnerable to DoS via HTTP request containing "%%"
2001-06-27 2001-06-27 2004-03-30 VU#812515 Cisco IOS HTTP server authentication vulnerability allows remote attackers to execute arbitrary commands
2004-03-17 2004-03-17 2004-03-26 VU#484726 OpenSSL does not adequately validate length of Kerberos ticket during SSL/TLS handshake
2004-03-17 2004-03-17 2004-03-26 VU#288574 OpenSSL contains null-pointer assignment in do_change_cipher_spec() function
2004-03-25 2004-03-22 2004-03-25 VU#125156 Ethereal contains multiple vulnerabilities in the UCP protocol dissector
2004-03-25 2004-03-22 2004-03-25 VU#591820 Ethereal fails to properly decode Transaction IDs within TCAP packets
2004-03-25 2004-03-19 2004-03-25 VU#549054 Norton "WrapNISUM Class" (WrapUM.dll) ActiveX control allows remote arbitrary command execution
2004-03-25 2004-03-19 2004-03-25 VU#344718 Norton AntiSpam contains boundary error within the "SymSpamHelper Class" (symspam.dll) ActiveX component.
2004-03-10 2004-02-18 2004-03-25 VU#981222 Linux kernel mremap(2) system call does not properly check return value from do_munmap() function

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis