search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2006-01-25 2006-01-17 2006-04-19 VU#983340 Oracle Database Data Pump Metadata API SQL injection vulnerability
2002-06-05 2002-02-26 2002-06-05 VU#755755 Yahoo! Messenger contains a buffer overflow in "set_buddygrp" when adding users to a buddy list via the web
2010-12-22 2010-12-22 2010-12-22 VU#725596 Microsoft WMI Administrative Tools WBEMSingleView.ocx ActiveX control vulnerability
2001-05-01 2001-03-12 2001-06-26 VU#895496 Hewlett-Packard MPE/ix contains vulnerabitily via architected interface facility
2012-02-01 2012-02-01 2012-02-01 VU#763355 802.1X password exploit on many HTC Android devices
2006-11-30 2006-11-28 2006-12-20 VU#800296 Apple Mac OS X Apple Type Services server contains multiple buffer overflows
2008-10-07 2008-10-07 2008-10-07 VU#146896 Gear Software CD DVD Filter driver privilege escalation vulnerability
2002-06-27 2002-06-27 2002-12-12 VU#290140 Multiple Cisco products consume excessive CPU resources in response to large SSH packets
2002-04-02 2000-03-27 2008-05-06 VU#24140 Linux kernel IP Masquerading "destination loose" (DLOOSE) configuration passes arbitrary UDP traffic
2001-10-11 2001-10-01 2003-04-14 VU#782155 OpenView Network Node Manager contains vulnerability allowing for privilege escalation
2005-01-07 2004-12-23 2005-03-14 VU#697136 Microsoft Windows kernel vulnerable to denial-of-service condition via animated cursor (.ani) rate number
2006-08-11 2006-08-09 2006-09-08 VU#699540 Ruby on Rails fails to properly verify input passed via the URL
2004-07-14 2004-07-13 2004-07-23 VU#869640 Microsoft Outlook Express fails to properly validate malformed e-mail headers
2006-10-02 2006-09-29 2006-10-02 VU#346396 Apple QuickDraw Manager fails to properly handle malicious PICT images
2011-05-25 2011-05-25 2011-05-25 VU#178990 Erlang/OTP SSH library uses a weak random number generator

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis