search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-04-10 2001-04-10 2001-04-11 VU#490344 Alcatel ADSL modems provide unauthenticated TFTP access via physical WAN interface
2002-09-20 2002-08-01 2002-09-20 VU#137555 HP Tru64 UNIX "chfn" contains buffer overflow (SSRT2259)
2000-11-20 2000-10-10 2001-09-18 VU#111677 Microsoft IIS 4.0 / 5.0 vulnerable to directory traversal via extended unicode in url
2007-01-24 2007-01-24 2007-02-02 VU#217912 Cisco IOS fails to properly process TCP packets
2002-07-30 2002-07-30 2002-09-30 VU#748355 ASN.1 parsing errors exist in implementations of SSL, TLS, S/MIME, PKCS#7 routines
2002-12-13 2002-11-20 2003-05-16 VU#958321 Samba contains a remotely exploitable stack buffer overflow
2006-05-30 2006-05-30 2006-06-07 VU#921017 Secure Elements Class 5 AVR client sends messages in cleartext
2001-09-20 2000-06-14 2002-01-10 VU#984555 Default installations of the Lotus Domino web server disclose system information via HTTP headers
2008-08-19 2008-08-11 2008-08-19 VU#343355 Apache Tomcat UTF8 Directory Traversal Vulnerability
2001-09-18 2001-06-07 2001-09-18 VU#573155 Microsoft Windows 2000 Telnet Service searches all trusted domains for user accounts
2001-03-02 2001-03-01 2001-03-11 VU#176972 Lotus Domino SMTP Server Allows Anonymous Relay of Quoted Addresses
2005-11-02 2005-11-01 2005-11-02 VU#154883 Cisco IPS MC Malformed Configuration Download Vulnerability
2001-10-16 2001-09-11 2002-01-03 VU#388183 IBM AIX line printer daemon contains a buffer overflow in kill_print()
2006-04-17 2006-04-13 2007-02-02 VU#932734 Mozilla crypto.generateCRMFRequest() vulnerability
2002-09-27 2001-10-15 2002-09-27 VU#341539 Novell GroupWise Server web-based front-end does not adequately validate user input thereby allowing directory traversal

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis