search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2011-01-11 2011-01-08 2011-02-03 VU#643140 Libpng 1.5.0 png_set_rgb_to_gray() vulnerability
2004-02-06 2004-02-05 2004-02-06 VU#473814 Multiple Real media players vulnerable to buffer overflow when parsing crafted media files
2006-08-08 2006-08-08 2006-08-08 VU#683612 Microsoft Hyperlink Object Library buffer overflow
2004-02-05 2004-02-04 2004-02-05 VU#277396 GNU Radius accounting service fails to properly handle exceptional Acct-Status-Type and Acct-Session-Id attributes
2005-08-09 2005-08-09 2005-11-15 VU#998653 Microsoft Plug and Play contains a buffer overflow vulnerability
2001-04-17 2001-04-16 2001-04-17 VU#276767 iPlanet web servers expose sensitive data via buffer overflow
2001-08-09 2001-07-11 2003-04-14 VU#190267 McAfee ASaP VirusScan service does not adequately validate input
2002-09-13 2002-08-30 2002-09-13 VU#320067 HP Tru64 UNIX "dtterm" contains buffer overflow (SSRT2280)
2005-02-09 2005-02-01 2005-02-09 VU#203214 SquirrelMail may allow execution of arbitrary code
2002-10-01 2002-07-19 2002-10-01 VU#438867 Adobe Acrobat eBook Reader allows users to circumvent copying and printing restrictions
2008-07-02 2008-07-02 2008-07-03 VU#607267 Mozilla Firefox code execution vulnerability
2002-04-08 2002-03-07 2002-04-08 VU#152867 Buffer overflow in Microsoft Windows Shell
2005-04-12 2005-04-12 2005-04-14 VU#442567 Microsoft Word contains a buffer overflow vulnerability
2005-06-14 2005-06-14 2005-06-20 VU#130614 Microsoft Outlook Express vulnerable to remote code execution
2004-10-01 2004-08-25 2005-10-05 VU#238678 The zlib compression library is vulnerable to a denial-of-service condition

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis