search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-09-02 2005-08-26 2005-10-10 VU#139421 simpleproxy format string vulnerability
2005-08-03 2005-08-02 2007-01-12 VU#279774 Computer Associates BrightStor ARCserve Backup Agents vulnerable to buffer overflow
2006-11-08 2006-11-08 2006-12-21 VU#714496 Mozilla products allow execution of arbitrary JavaScript
2001-05-01 2000-11-21 2001-06-26 VU#818496 Microsoft Windows 2000 Workstation in mixed-mode domain may ignore domain account lockout restriction due to flaw in NTLM authentication
2004-10-01 2004-09-15 2004-11-02 VU#825374 GdkPixbuf BMP parser may enter an infinite loop
2004-03-05 2004-03-04 2004-07-29 VU#363374 Cisco CSS 11000 Series Content Services Switch vulnerable to DoS via malformed UDP packets
2005-11-23 2005-11-22 2005-12-01 VU#853540 Cisco PIX fails to verify TCP checksum
2005-05-12 2005-05-08 2005-05-12 VU#113196 phpBB contains an input validation vulnerability in "includes/bbcode.php"
2001-05-11 2000-11-07 2002-01-25 VU#198355 ISC BIND 8.2.2-P6 vulnerable to DoS when processing SRV records, aka the "srv bug"
2006-10-19 2006-10-17 2007-01-17 VU#717140 Oracle ENABLE_HIERARCHY_INTERNAL procedure vulnerable to PL/SQL injection
2001-03-02 2001-03-01 2001-03-11 VU#176972 Lotus Domino SMTP Server Allows Anonymous Relay of Quoted Addresses
2004-10-12 2004-10-12 2004-10-12 VU#274496 Microsoft Excel parameter validation error
2006-08-21 2006-08-12 2006-08-21 VU#647796 Symantec Veritas Backup Exec for Windows Server vulnerable to heap-based buffer overflow
2008-08-19 2008-08-11 2008-08-19 VU#343355 Apache Tomcat UTF8 Directory Traversal Vulnerability
2007-08-13 2007-07-16 2007-08-13 VU#916897 InterActual Player IAMCE ActiveX control stack buffer overflow

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis