SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information


 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips

Search Results

IDDate
Public		Name
VU#79720107/09/2001tcpdump vulnerable to buffer overflow via improper decoding of AFS RPC (Rx) packets
VU#41222801/17/2008Citrix Presentation Server heap based buffer overflow
VU#85354011/22/2005Cisco PIX fails to verify TCP checksum
VU#63793405/18/2005TCP does not adequately validate segments before updating timestamp value
VU#27739602/04/2004GNU Radius accounting service fails to properly handle exceptional Acct-Status-Type and Acct-Session-Id attributes
VU#36337403/04/2004Cisco CSS 11000 Series Content Services Switch vulnerable to DoS via malformed UDP packets
VU#72109201/21/2004Cisco IBM Director agent does not properly handle arbitrary TCP packets to port 14247/tcp
VU#92725611/20/2001MandrakeSoft Mandrake Linux Apache default configuration enables Perl ProxyPass server on 8200/tcp
VU#24519006/09/2004Cisco CatOS TCP ACK handling vulnerability
VU#41529412/22/2003The Border Gateway Protocol relies on persistent TCP sessions without specifying authentication requirements
VU#98184909/20/2007Automated Solutions Modbus TCP Slave ActiveX Control Vulnerability
VU#21791201/24/2007Cisco IOS fails to properly process TCP packets
VU#83928402/14/2006Microsoft Windows TCP/IP fails to properly validate IGMP packets
VU#10201411/10/2005Optimistic TCP acknowledgements can cause denial of service
VU#98263003/09/2004Microsoft Windows Media Services fails to properly validate TCP requests
VU#39567002/18/2004FreeBSD fails to limit number of TCP segments held in reassembly queue
VU#15022702/19/2002HTTP proxy default configurations allow arbitrary TCP connections
VU#64488603/22/2004Ethereal fails to properly parse NetFlow UDP packets with an overly large template_entry count
VU#72778005/07/2003Cisco VPN 3000 Concentrator may allow access to internal hosts when IPsec over TCP is enabled
VU#59626805/05/2008Wonderware SuiteLink null pointer dereference
VU#22275004/12/2005TCP/IP implementations do not adequately validate ICMP error messages
VU#49844003/12/2001Multiple TCP/IP implementations may use statistically predictable initial sequence numbers
VU#98191508/07/2001Avaya Argent Office vulnerable to denial of service via malformed DNS packets
VU#38423008/27/2004Cisco IOS fails to properly handle telnet connections
VU#32923009/22/2004Multiple Symantec security appliances fail to properly filter port 53/udp traffic
VU#46411310/18/2002TCP/IP implementations handle unusual flag combinations inconsistently
VU#32886710/07/2002Multiple vendors' firewalls do not adequately keep state of FTP traffic
VU#10525906/19/2001Oracle Database Server vulnerable to DoS via repeated requests to Oracle listener without connecting to redirected port
VU#2682507/11/2000Cisco Secure PIX Firewall TCP Reset Vulnerability
VU#64997910/18/2001Oracle9iAS Web Cache vulnerable to buffer overflow
VU#2414003/27/2000Linux kernel IP Masquerading "destination loose" (DLOOSE) configuration passes arbitrary UDP traffic
VU#55592004/13/2007Microsoft Windows DNS RPC buffer overflow
VU#17980403/23/2004Common Desktop Environment (CDE) dtlogin XDMCP parser improperly deallocates memory
VU#48622407/21/2004Multiple Cisco ONS control cards fail to properly handle malformed UDP packets
VU#26681711/04/2002Multiple Sun RPC-based libc implementations fails to provide time-out mechanism when reading data from TCP connections
VU#39926007/24/2002Microsoft SQL Server 2000 contains heap buffer overflow in SQL Server Resolution Service
VU#80038407/21/2004Multiple Cisco ONS control cards fail to properly handle malformed TCP packets
VU#3265007/27/2000Denial of Service Attack in NetBIOS Services
VU#17802405/24/2001Cisco IOS vulnerable to deferred DoS via SYN scan to certain TCP port ranges
VU#18172111/20/2002Alcatel Operating System (AOS) does not require a password for accessing the telnet server
VU#27704807/21/2004Multiple Cisco ONS control cards fail to properly handle invalid TCP responses
VU#69309904/17/2002Microsoft Windows 2000 vulnerable to DoS via malformed packets sent to port 445/tcp
VU#19026707/11/2001McAfee ASaP VirusScan service does not adequately validate input
VU#44107809/22/2004Symantec Firewall/VPN appliance vulnerable to DoS via UDP port scan
VU#48489107/24/2002Microsoft SQL Server 2000 contains stack buffer overflow in SQL Server Resolution Service
VU#55546404/11/2001Lotus Domino vulnerable to DoS via many large connects sent to 63148/TCP
VU#63009105/27/2002Oracle9i Database TNS Listener vulnerable to buffer overflow via SERVICE_NAME parameter
VU#39292012/30/2005Research in Motion (RIM) BlackBerry Router vulnerable to denial of service via Server Routing Protocol (SRP)
VU#48761705/30/2006Secure Elements Class 5 AVR server fails to properly authenticate session start messages
VU#97268604/24/2005HP-UX ICMP vulnerable to DoS via ICMP Path Maximum Transmission Unit (PMTU) Discovery
VU#84920910/05/2005Symantec AntiVirus Scan Engine administrative interface contains a buffer overflow vulnerability
VU#13942108/26/2005simpleproxy format string vulnerability
VU#86480102/09/2005Computer Associates BrightStor ARCserve Backup Discovery Service vulnerable to buffer overflow
VU#10879003/07/2005SafeNet Sentinel License Manager vulnerable to buffer overflow
VU#673307/15/1998PIX 'established' and 'conduit' command may have unexpected interactions
VU#25423609/10/2003Microsoft Windows RPCSS Service contains heap overflow in DCOM request filename handling
VU#31276107/09/2001Cayman gateways are vulnerable to a denial of service via a portscan
VU#76165109/03/2002Cisco VPN 3000 series concentrator does not properly handle malformed ISAKMP packets
VU#37030807/24/2002Microsoft SQL Server 2000 contains denial-of-service vulnerability in SQL Server Resolution Service
VU#77678101/11/2001tcpdump vulnerable to buffer overflow via parsing of AFS ACL packets
VU#93617703/26/2008Cisco IOS denial of service vulnerability
VU#19624002/19/2007Sourcefire Snort DCE/RPC preprocessor does not properly reassemble fragmented packets
VU#23050510/10/2007Cisco IOS LPD buffer overflow vulnerability
VU#59550710/02/2001Common Desktop Environment (CDE) ToolTalk RPC Server rpc.ttdbserverd contains format string vulnerability
VU#96688002/11/2005Computer Associates BrightStor ARCserve Backup Discovery Service SERVICEPC vulnerable to buffer overflow
VU#49062807/14/2005Microsoft Windows Remote Desktop Protocol service input validation vulnerability
VU#53936310/15/2002State-based firewalls fail to effectively manage session table resource exhaustion
VU#17258311/07/2001Common Desktop Environment (CDE) Subprocess Control Service dtspcd contains buffer overflow
VU#78454006/16/2004BGP implementations do not adequately handle malformed BGP OPEN and UPDATE messages
VU#63441405/12/2004Multiple Symantec firewall products fail to properly process NBNS response packets
VU#21173604/10/2001Alcatel ADSL modems grant unauthenticated TFTP access via Bounce Attacks
VU#87333402/04/2004Check Point ISAKMP vulnerable to buffer overflow via Certificate Request
VU#97813102/07/2002Microsoft Exchange 2000 system attendant sets incorrect remote registry permissions
VU#48349209/10/2003Microsoft Windows RPCSS Service contains heap overflow in DCOM activation routines
VU#30105905/27/2002Oracle TNS Listener Control Utility (LSNRCTL) contains format string vulnerability
VU#33229911/30/2001Lotus Domino R5 Server vulnerable to DoS via nmap RPC scan on port 443/tcp
VU#54782010/10/2003Microsoft Windows DCOM/RPC vulnerability
VU#82726710/23/2008Microsoft Server service RPC stack buffer overflow vulnerability
VU#94725403/08/2004Internet Security Systems Protocol Analysis Module (PAM) does not properly handle ICQ server response messages
VU#37287807/27/2006Tamarack MMSd components fail to properly handle malformed packets
VU#46879802/25/2005SISCO OSI stack fails to properly validate packets
VU#30565707/05/2007SAP Message Server heap buffer overflow
VU#35730801/23/2007Computer Associates BrightStor ARCserve Backup LGSERVER.EXE heap buffer overflow
VU#61127601/23/2007Computer Associates BrightStor ARCserve Backup LGSERVER.EXE stack buffer overflow
VU#18033601/11/2007CA BrightStor ARCserve Backup Message Engine RPC buffer overflow
VU#37895708/12/2005VERITAS Backup Exec uses hard-coded authentication credentials
VU#39664503/05/2005Microsoft Windows vulnerable to DoS via LAND attack
VU#86821902/22/2002Multiple vendors' HTTP content/virus scanners do not check data tunneled via HTTP CONNECT method
VU#99124003/22/2001Compaq web-enabled management software acts as generic proxy
VU#65631507/12/2001Cisco IOS vulnerable to DoS via crafted PPTP packet sent to port 1723/tcp
VU#38738708/12/2002Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) vulnerable to buffer overflow via _TT_CREATE_FILE()
VU#63809904/29/2002rpc.rwalld contains remotely exploitable format string vulnerability
VU#13950408/09/2004Sun Solaris X Display Manager does not properly handle invalid XDMCP requests
VU#29981607/10/2002Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) does not adequately validate file operations
VU#17391009/22/2004Multiple Symantec security appliances do not allow the SNMP read-write community string to be changed
VU#52899301/03/2008Linksys WVC54GC wireless video camera vulnerable to information disclosure
VU#13863311/19/2007Invensys Wonderware InTouch creates insecure NetDDE share
VU#34895307/10/2007Microsoft Windows Active Directory fails to properly validate client sent LDAP requests
VU#91250512/23/2006Novell NetMail NMAP vulnerable to buffer overflow when processing "STOR" commands
VU#19934808/01/2006Barracuda Spam Firewall contains hardcoded default login credentials
VU#63151606/13/2006Microsoft Routing and Remote Access does not properly handle RPC requests
VU#25979807/12/2005MIT Kerberos 5 allows unauthenticated attacker to cause MIT krb5 Key Distribution Center to free unallocated memory
VU#44838411/08/2004ISC DHCP contains a format string vulnerabilty in errwarn.c
VU#25890501/11/2005Multiple implementations of LDAP Directory Server vulnerable to buffer overflow
VU#255802/01/1999File Transfer Protocol allows data connection hijacking via PASV mode race condition
VU#68211005/12/2004Multiple Symantec firewall products fail to properly process DNS response packets
VU#29823303/16/2003Samba contains buffer overflow in SMB/CIFS packet fragment reassembly code
VU#43348903/06/2003Lotus Domino Server susceptible to a pre-authentication buffer overflow during Notes authentication
VU#93493208/15/2003RealNetworks media server RTSP protocol parser buffer overflow
VU#29499805/12/2004Multiple Symantec firewall products contain a heap corruption vulnerability in the handling of NBNS response packets
VU#50002709/26/20013Com HomeConnect Cable Modem vulnerable to DoS via long string of characters
VU#29155505/27/2002Oracle Web Cache contains buffer overflow vulnerabilities
VU#48401106/19/2001Solaris Line Printer Daemon (in.lpd) vulnerable to buffer overflow via transfer job routine
VU#2893412/14/1999Sun Solaris sadmind buffer overflow in amsl_verify when requesting NETMGT_PROC_SERVICE
VU#57033011/08/2000MS Windows NT Terminal Server 4.0 buffer overflow in regapi.dll allows remote code execution or DoS
VU#44668912/19/2000Check Point FireWall-1 allows fragmented packets through firewall if Fast Mode is enabled
VU#33776407/09/2003Microsoft Windows fails to properly validate buffer size of incoming SMB packets
VU#56814807/16/2003Microsoft Windows RPC vulnerable to buffer overflow
VU#95940008/21/2007Trend Micro ServerProtect Integer Overflow Vulnerability
VU#68061605/11/2007Computer Associates eTrust AntiVirus Server buffer overflow
VU#91461712/04/2006Microsoft Windows Print Spooler service fails to properly handle RPC requests
VU#28485701/15/2003ISC DHCPD minires library contains multiple buffer overflows
VU#18694405/11/2006EMC Retrospect Client buffer overflow vulnerability
VU#11838804/21/2006Symantec Scan Engine fails to properly perform authentication
VU#18086810/11/2005Microsoft Distributed Transaction Coordinator vulnerable to buffer overflow via specially crafted network message
VU#17090508/31/2005DameWare Mini Remote Control vulnerable to buffer overflow via specially crafted authentication requests
VU#90967812/14/2003DameWare Mini Remote Control vulnerable to buffer overflow via specially crafted packets
VU#71738007/16/2001Potential vulnerabilities in Qualcomm Eudora WorldMail Server LDAP handling code
VU#65754708/02/2001Critical Path directory products contain multiple vulnerabilities in LDAP handling code
VU#13915001/13/2004Microsoft Data Access Components (MDAC) contains buffer overflow
VU#93580007/16/2001Multiple versions of OpenLDAP are vulnerable to denial-of-service attacks
VU#50556407/16/2001IBM SecureWay Directory is vulnerable to denial-of-service attacks via LDAP handling code
VU#97540307/10/2002Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) does not adequately validate file descriptor arguement to _TT_ISCLOSE()
VU#64276004/11/2001Lotus Domino vulnerable to DoS via large crafted URL request
VU#56807302/28/2008Canon digital multifunction copiers FTP bounce vulnerability
VU#20444808/21/2007Trend Micro ServerProtect Agent service RPC stack-buffer overflow
VU#51596808/15/2007Yahoo! Messenger webcam stream heap overflow
VU#22187605/24/2007Apple Mac OS X mDNSResponder buffer overflow vulnerability
VU#20471003/14/2005Apache Tomcat fails to properly handle certain requests
VU#91936903/07/2007Novell Netmail WebAdmin buffer overflow vulnerability
VU#51306807/26/2006eIQnetworks Enterprise Security Analyzer Syslog server buffer overflow
VU#27977408/02/2005Computer Associates BrightStor ARCserve Backup Agents vulnerable to buffer overflow
VU#49555610/11/2005VERITAS NetBackup Java Administration Console contains a format string vulnerability in "bpjava-msvc"
VU#80108908/16/2005EMC Legato NetWorker portmapper allows remote calls to "pmap_set" and "pmap_unset"
VU#34490004/06/2005Cisco IOS Easy VPN Server may allow unauthorized users to complete XAUTH authentication
VU#49210506/22/2005VERITAS Backup Exec Remote Agent fails to properly validate authentication requests
VU#65711801/11/2005Microsoft Windows Indexing Service fails to properly handle query validation
VU#27694407/16/2001iPlanet Directory Server contains multiple vulnerabilities in LDAP handling code
VU#13913906/18/2001Air Messenger LAN Server (AMLServer) stores usernames and passwords in plaintext
VU#63546308/10/2000Microsoft SQL Server and Microsoft Data Engine (MSDE) ship with a null default password
VU#58302005/07/2003XMMS Remote input validation error
VU#34224308/22/2002Microsoft Windows Server Message Block (SMB) fails to properly handle SMB_COM_TRANSACTION packets requesting NetShareEnum transaction
VU#58318407/16/2001Lotus Domino R5 Server Family contains multiple vulnerabilities in LDAP handling code
VU#63976001/23/2001WU-FTPD configured to use RFC 931 authentication running in debug mode contains format string vulnerability
VU#75029902/06/2002Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via HTTP request
VU#31029507/09/2001Check Point RDP Bypass Vulnerability
VU#31231311/25/2002Solaris X Window Font Service (XFS) daemon contains buffer overflow in Dispatch() function
VU#26787304/07/2003Samba contains multiple buffer overflows
VU#76340007/16/2001Microsoft Exchange LDAP Service is vulnerable to denial-of-service attacks
VU#25063508/22/2002Microsoft Windows Server Message Block (SMB) fails to properly handle SMB_COM_TRANSACTION packets requesting NetServerEnum2 transaction
VU#86918407/16/2001Oracle Internet Directory contains multiple vulnerabilities in LDAP handling code
VU#68896007/16/2001Teamware Office contains multiple vulnerabilities in LDAP handling code
VU#76525607/16/2001Network Associates PGP Keyserver contains multiple vulnerabilities in LDAP handling code
VU#22959511/12/2002Overly large OPT record assertion
VU#64830403/15/2001Sun Solaris DMI to SNMP mapper daemon snmpXdmid contains buffer overflow
VU#85078501/22/2003Sun KCMS library service daemon does not adequately validate location of KCMS profiles
VU#57016701/07/2002ICQ contains a buffer overflow while processing Voice Video & Games feature requests
VU#43505202/23/2009Intercepting proxy servers may incorrectly rely on HTTP headers to make connections
VU#19061705/16/2006LiveData ICCP Server heap buffer overflow vulnerability
VU#72146002/01/2008UltraVNC buffer overflow vulnerability
VU#10905608/21/2007Trend Micro ServerProtect RPC buffer overflows
VU#43730011/21/2006Computer Associates BrightStor ARCserve Backup Tape Engine fails to properly handle RPC requests
VU#86004810/05/2006Computer Associates BrightStor ARCserv and Protection Suite products RPC buffer overflow vulnerabilities
VU#73403211/28/2006Apple Mac OS X Security Framework Secure Transport may not negotiate the best cipher available
VU#79695610/03/2006Novell GroupWise Messenger fails to properly handle HTTP POST requests.
VU#35262506/22/2005VERITAS Backup Exec Server Service contains a buffer overflow vulnerability
VU#22618412/16/2004Samba vulnerable to integer overflow processing file security descriptors
VU#32956112/20/2002RealNetworks Helix Universal Server vulnerable to buffer overflow when supplied an overly long string within the "Transport" field of a SETUP RTSP request
VU#89012804/11/2001Lotus Domino vulnerable to a denial of service via DOS device request
VU#52114706/20/2002SGI IRIX rpc.xfsmd uses weak authentication mechanism for RPC authentication
VU#80591502/06/2002Oracle9i Application Server Apache PL/SQL module does not properly handle HTTP Authorization header
VU#68290007/29/2003SGI IRIX name services daemon (nsd) and modules mishandle AUTH_UNIX gid list
VU#63010411/10/2004Cisco IOS fails to properly handle malformed DHCP packets
VU#26153710/18/2002Microsoft Windows RPC service vulnerable to DoS via NULL pointer dereference
VU#74537107/18/2001Multiple vendor telnet daemons vulnerable to buffer overflow via crafted protocol options
VU#10234510/09/2002IBM AIX vulnerable to DoS
VU#92965612/12/2007BGP implementations do not properly handle UPDATE messages
VU#53801109/12/2008LANDesk QIP service buffer overflow vulnerability
VU#97831606/04/2003Vulnerability in OpenSSH daemon (sshd)
VU#88080103/27/2006Symantec VERITAS NetBackup Volume Manager daemon buffer overflow
VU#74492908/31/2005mod_ssl fails to properly enforce client certificates authentication
VU#33363607/11/2006Microsoft Server Service may disclose information used to store SMB traffic
VU#18914007/11/2006Microsoft Server Service Mailslot vulnerable to heap overflow
VU#68156905/23/2006Linux Kernel may fail to properly handle SNMP packets
VU#54157409/20/2004freeRADIUS Server vulnerable to a denial-of-service attack
VU#34637705/30/2006Secure Elements Class 5 AVR uses the same encryption key and initialization vector for every message session
VU#72275306/13/2006Microsoft IP Source Route Vulnerability
VU#69704904/23/2003Cisco Secure ACS for Windows CSAdmin vulnerable to buffer overflow via login requests
VU#59858101/29/2001AT&T WinVNC server contains buffer overflow in Log.cpp
VU#65904302/06/2002Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via Database Access Descriptor password
VU#87507309/30/2002Kerberos administration daemon vulnerable to buffer overflow
VU#87860302/06/2002Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via HTTP Authorization header
VU#92339502/06/2002Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via cache directory name
VU#4187004/03/1999Sun Solstice AdminSuite ships with insecure default configuration
VU#54254006/11/2003Ethereal DCE RPC dissector vulnerable to DoS
VU#13912904/15/2003Heap overflow in Snort "stream4" preprocessor
VU#11889201/18/2001Older SSH clients do not allow users to disable X11 forwarding
VU#13949110/09/2001Cisco IOS vulnerable to denial of service via Cisco Discovery Protocol
VU#14513411/26/2004Microsoft Windows Internet Naming Service (WINS) replication protocol contains a heap-based buffer overflow
VU#13594009/07/2009Windows SMB version 2 vulnerability
VU#41067607/14/2009ISC DHCP dhclient stack buffer overflow
VU#34397109/25/2008ABB PCU400 vulnerable to buffer overflow
VU#15860901/24/2008IBM Tivoli Provisioning Manager for OS Deployment (TPMfOSD) allows buffer overflow via HTTP request
VU#30855601/24/2008GE Fanuc CIMPLICITY HMI heap buffer overflow
VU#92798803/28/2007IBM Lotus Domino LDAP server DN message heap buffer overflow
VU#15103201/11/2007CA BrightStor ARCserve Backup Tape Engine RPC buffer overflow
VU#43817601/31/2007Cisco IOS fails to properly handle Session Initiated Protocol packets
VU#65043212/14/2006Symantec Veritas NetBackup bpcd.exe CONNECT_OPTIONS buffer overflow
VU#66240001/11/2007CA BrightStor ARCserve Backup Tape Engine directly calls user supplied data in RPC requests
VU#60731212/14/2006Symantec Veritas NetBackup bpcd daemon buffer overflow
VU#25293612/14/2006Symantec Veritas NetBackup bpcd daemon fails to properly validate commands
VU#91258806/11/2006WinSCP URI handlers fails to properly parse command line switches
VU#17550010/18/2005Snort Back Orifice preprocessor buffer overflow
VU#88583007/12/2005MIT Kerberos 5 allows unauthenticated attacker to cause MIT krb5 Key Distribution Center to overflow a heap buffer by one byte
VU#13061406/14/2005Microsoft Outlook Express vulnerable to remote code execution
VU#13642412/06/2004Remote Execute vulnerable to denial-of-service
VU#88608304/30/2001WU-FTPD does not properly handle file name globbing
VU#31522708/29/2001KaZaA Media Desktop discloses username to remote users
VU#97628002/27/2001Multiple networking devices allow SNMP objects to be viewed/modified via ILMI community string
VU#18014702/06/2002Oracle 9i Database Server PL/SQL module allows remote command execution without authentication
VU#92481206/09/2003Nokia Gateway GPRS support node vulnerable to DoS
VU#12515603/22/2004Ethereal contains multiple vulnerabilities in the UCP protocol dissector
VU#19694501/29/2001ISC BIND 8 contains buffer overflow in transaction signature (TSIG) handling code
VU#25863205/09/2001SGI IRIX Embedded Support Partner (ESP) service rpc.espd contains buffer overflow
VU#60131204/11/2001Lotus Domino vulnerable to DoS via crafted HTTP header requests
VU#24737101/09/2001Borland/Inprise Interbase SQL database server contains backdoor superuser account with known password
VU#24614709/01/2001Morpheus discloses username to remote users
VU#25943503/01/2002AOL Instant Messenger vulnerable to buffer overflow via crafted "addbuddy" URI sent in message
VU#82062810/10/2006Microsoft Server Service fails to properly handle network messages
VU#58954009/21/2006Apple AirPort wireless drivers fails to properly handle scan cache updates
VU#64779608/12/2006Symantec Veritas Backup Exec for Windows Server vulnerable to heap-based buffer overflow
VU#31383607/10/2006Samba fails to properly handle multiple share connection requests
VU#95920312/27/2002Cisco IOS OSPF neighbor IO buffer overflow
VU#91265903/01/2002AOL Instant Messenger vulnerable to denial-of-service attack via buddy list transfers
VU#36248311/28/2001Cisco IOS Firewall Feature Set fails to check IP protocol type thereby allowing packets to bypass dynamic access control lists
VU#29014006/27/2002Multiple Cisco products consume excessive CPU resources in response to large SSH packets
VU#16887304/10/2003Oracle E-Business Suite Report Review Agent (RRA) allows arbitrary files to be retrieved with no authentication
VU#14590405/09/2001Microsoft Windows 2000 Kerberos service vulnerable to DoS via repeated invalid requests
VU#63484708/23/1999XDMCP leaks sensitive information by default configuration
VU#44521402/10/2004Microsoft Windows Internet Naming Service (WINS) fails to properly validate the length of specially crafted packets

If this page is empty, your search did not match any documents.

Produced 2009 by US-CERT, a government organization
Disclaimers and copyright information