search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2002-03-29 2002-03-29 2002-03-29 VU#585123 Microsoft Internet Explorer does not adequately evaluate malformed URLs
2010-09-14 2010-09-14 2010-10-29 VU#491991 Adobe Reader and Acrobat Font Parsing Buffer Overflow Vulnerability
2002-07-26 2002-07-24 2006-05-08 VU#484891 Microsoft SQL Server 2000 contains stack buffer overflow in SQL Server Resolution Service
2002-06-04 2002-05-27 2002-06-13 VU#630091 Oracle9i Database TNS Listener vulnerable to buffer overflow via SERVICE_NAME parameter
2001-12-21 2001-12-19 2001-12-21 VU#249491 IBM AIX login fails to adequately authenticate user when configured to use loadable authentication modules
2008-06-25 2007-12-05 2008-06-25 VU#305208 Caucho Resin vulnerable to XSS via "file" parameter to "viewfile"
2002-09-18 2002-01-10 2002-09-18 VU#806091 Mike Spice's My Calendar does not adequately validate user input
2002-07-30 2002-07-30 2002-09-30 VU#308891 OpenSSL contains multiple buffer overflows in buffers that are used to hold ASCII representations of integers
2001-10-16 2001-09-11 2002-01-03 VU#466239 IBM AIX line printer daemon contains a buffer overflow in chk_fhost()
2011-08-29 2011-08-29 2011-10-19 VU#213486 LifeSize Room appliance authentication bypass and arbitrary code injection vulnerability
2006-11-29 2006-11-28 2006-11-30 VU#258744 Apple Mac OS X Finder fails to properly handle malformed .DS_Store files
2006-05-30 2006-05-30 2006-06-07 VU#397417 Secure Elements Class 5 AVR server fails to properly enforce access controls on console operations
2002-04-10 2002-04-10 2002-06-13 VU#610291 Microsoft Internet Information Server (IIS) 4.0 and 5.0 buffer overflow in chunked encoding transfer mechanism for ASP
2001-10-10 2001-10-09 2001-10-11 VU#139491 Cisco IOS vulnerable to denial of service via Cisco Discovery Protocol
2006-11-21 2006-09-28 2007-03-28 VU#693992 NaviCOPA Web Server fails to properly handle certain HTTP requests

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis