search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2011-12-19 2011-12-19 2011-12-19 VU#209659 Unbound multiple denial-of-service vulnerabilities
2001-09-20 2001-06-14 2003-04-09 VU#516659 Cisco 6400 Access Concentrator Node Route Processor 2 (NRP2) module permits telnet access when no password has been set
2009-07-14 2009-07-14 2009-07-29 VU#410676 ISC DHCP dhclient stack buffer overflow
2006-02-14 2006-02-14 2006-02-19 VU#839284 Microsoft Windows TCP/IP fails to properly validate IGMP packets
2002-07-30 2002-07-30 2002-09-30 VU#308891 OpenSSL contains multiple buffer overflows in buffers that are used to hold ASCII representations of integers
2002-07-09 2002-06-06 2002-08-16 VU#375859 Microsoft ASP.NET contains buffer overflow
2002-03-13 2002-01-10 2003-07-02 VU#611776 Oracle9i Application Server PL/SQL Gateway web administration interface uses null authentication by default
2006-08-08 2006-08-08 2006-09-18 VU#411516 Microsoft Windows kernel fails to properly manage exception handling
2002-09-16 1997-05-28 2003-03-24 VU#169059 X11 vulnerable to buffer overflow in handling of -xrm option
2009-02-05 2002-12-17 2010-06-22 VU#124059 GoAhead WebServer information disclosure and authentication bypass vulnerabilities
2004-06-30 2004-06-29 2004-06-30 VU#658859 Juniper JUNOS Packet Forwarding Engine (PFE) IPv6 memory leak
2007-05-08 2007-05-07 2007-05-08 VU#515616 Trend Micro ServerProtect EarthAgent buffer overflow vulnerability
2002-04-10 2002-04-10 2002-04-10 VU#521059 Microsoft Internet Information Server (IIS) vulnerable to DoS when URL request exceeds maximum allowed length
2001-12-20 2001-12-20 2001-12-21 VU#411059 Microsoft Windows Universal Plug and Play service (UPNP) fails to limit the data returned in response to a NOTIFY message
2004-11-03 2004-11-03 2004-11-03 VU#596046 MailPost vulnerable to cross-site scripting via an executable requested with a trailing slash appended to the filename

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis