search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-03-02 2001-03-01 2001-03-11 VU#176972 Lotus Domino SMTP Server Allows Anonymous Relay of Quoted Addresses
2002-09-27 2001-10-15 2002-09-27 VU#341539 Novell GroupWise Server web-based front-end does not adequately validate user input thereby allowing directory traversal
2006-05-30 2006-05-30 2007-05-04 VU#487617 Secure Elements Class 5 AVR server fails to properly authenticate session start messages
2001-09-17 2001-04-23 2001-09-17 VU#670568 Samba creates temporary files insecurely
2001-05-11 2000-11-07 2002-01-25 VU#198355 ISC BIND 8.2.2-P6 vulnerable to DoS when processing SRV records, aka the "srv bug"
2004-03-05 2004-03-04 2004-07-29 VU#363374 Cisco CSS 11000 Series Content Services Switch vulnerable to DoS via malformed UDP packets
2001-10-26 2001-06-18 2001-10-26 VU#139139 Air Messenger LAN Server (AMLServer) stores usernames and passwords in plaintext
2004-10-01 2004-09-15 2004-11-02 VU#825374 GdkPixbuf BMP parser may enter an infinite loop
2005-08-03 2005-08-02 2007-01-12 VU#279774 Computer Associates BrightStor ARCserve Backup Agents vulnerable to buffer overflow
2005-08-09 2005-08-09 2005-08-11 VU#220821 Microsoft Print Spooler service contains a buffer overflow
2006-09-19 2006-09-18 2007-03-21 VU#416092 Microsoft Internet Explorer VML stack buffer overflow
2007-09-11 2007-09-11 2007-09-14 VU#716872 Microsoft Agent fails to properly handle specially crafted URLs
2004-03-17 2004-03-17 2004-03-26 VU#288574 OpenSSL contains null-pointer assignment in do_change_cipher_spec() function
2005-09-02 2005-08-26 2005-10-10 VU#139421 simpleproxy format string vulnerability
2004-04-30 2004-01-26 2004-05-06 VU#226974 Gaim contains an off-by-one buffer overflow vulnerability in the gaim_quotedp_decode() function

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis