search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2003-05-13 2003-04-30 2003-07-10 VU#184820 Adobe Acrobat does not adequately validate Acrobat JavaScript
2002-02-26 2002-02-06 2003-07-03 VU#180147 Oracle 9i Database Server PL/SQL module allows remote command execution without authentication
2002-03-13 2002-01-10 2003-07-02 VU#611776 Oracle9i Application Server PL/SQL Gateway web administration interface uses null authentication by default
2002-08-23 2002-08-22 2003-07-02 VU#342243 Microsoft Windows Server Message Block (SMB) fails to properly handle SMB_COM_TRANSACTION packets requesting NetShareEnum transaction
2003-04-04 2003-04-04 2003-06-27 VU#720017 Entrust Authority Security Manager (EASM) does not enforce multiple authorization requirement for master user password change
2003-06-04 2003-05-27 2003-06-23 VU#467828 Mac OS X LDAP plugins transmit user credentials in clear text
2003-06-23 2003-06-16 2003-06-23 VU#758932 Sun Management Center (SunMC) allows user to create or overwrite arbitrary files
2003-06-23 2003-05-07 2003-06-23 VU#727780 Cisco VPN 3000 Concentrator may allow access to internal hosts when IPsec over TCP is enabled
2003-06-23 2003-05-07 2003-06-23 VU#317348 Cisco VPN 3000 Concentrator forces device to reload when processing malformed SSH initialization packet
2003-06-23 2003-05-07 2003-06-23 VU#221164 Cisco VPN 3000 Concentrator vulnerable to DoS via large number of malformed ICMP packets
2002-12-16 2002-12-16 2003-06-18 VU#389665 Multiple vendors' SSH transport layer protocol implementations contain vulnerabilities in key exchange and initialization
2003-06-17 2003-05-13 2003-06-17 VU#814617 IBM AIX sendmail configured as open mail relay by default
2001-08-02 2001-07-12 2003-06-17 VU#131569 Microsoft Outlook View Control allows execution of arbitrary code and manipulation of user data
2003-05-04 2003-02-03 2003-06-17 VU#911505 pam_xauth may insecurely forward "X MIT-Magic-Cookies" to new sessions
2003-04-17 2002-06-24 2003-06-17 VU#104555 Buffer Overflow in mod_ssl

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis