search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-02-06 2004-02-05 2004-02-06 VU#473814 Multiple Real media players vulnerable to buffer overflow when parsing crafted media files
2004-02-05 2004-02-04 2004-02-05 VU#277396 GNU Radius accounting service fails to properly handle exceptional Acct-Status-Type and Acct-Session-Id attributes
2004-01-27 2004-01-14 2004-01-27 VU#820798 KDE Personal Information Management suite "kdepim" contains a buffer overflow vulnerability in VCF information reader
2004-01-26 2004-01-23 2004-01-26 VU#702526 Sun Solaris allows unprivileged local user to load arbitrary kernel modules
2004-01-19 2004-01-18 2004-01-23 VU#487102 Multiple tools within the Netpbm package create temporary files in an insecure manner
2004-01-22 2004-01-21 2004-01-23 VU#721092 Cisco IBM Director agent does not properly handle arbitrary TCP packets to port 14247/tcp
2004-01-22 2004-01-21 2004-01-23 VU#602734 Cisco default install of IBM Director agent fails to authenticate users for remote administration
2004-01-22 2004-01-19 2004-01-23 VU#927630 NetScreen-Security Manager fails to encrypt communications with managed devices
2004-01-23 2003-12-02 2004-01-23 VU#509454 HP-UX shar utility creates files with predictable names in "/tmp" directory
2002-05-16 2002-04-13 2004-01-22 VU#403315 Nortel Networks CVX 1800 discloses privileged information
2004-01-19 2004-01-16 2004-01-22 VU#336446 OpenCA libCheckSignature function fails to properly verify the signature of certificates
2004-01-16 2004-01-14 2004-01-22 VU#738518 tcpdump contains vulnerability in ISAKMP decoding routine
2004-01-16 2004-01-14 2004-01-22 VU#174086 tcpdump contains vulnerability in ISAKMP decoding function rawprint() in print-isakmp.c
2004-01-21 2003-11-14 2004-01-21 VU#530660 Microsoft Exchange Server 2003 fails to assign user credentials to proper mailbox
2004-01-14 2003-12-22 2004-01-21 VU#371470 Whale Communications e-Gap security appliance discloses source code via HTTP TRACE Method

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis