search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2004-08-23 2004-06-29 2004-08-25 VU#784278 Mozilla fails to validate the DN of X.509 certificates
2002-03-12 2002-01-10 2002-03-15 VU#313280 Oracle9i Application Server Apache PL/SQL module vulnerable to buffer overflow via HTTP Location header
2011-01-06 2011-01-01 2011-01-10 VU#427980 Microsoft Internet Explorer 8 use-after-free vulnerability
2004-09-30 2004-09-16 2005-10-06 VU#537878 libXpm library contains multiple integer overflow vulnerabilities
2005-02-21 2005-02-17 2005-02-22 VU#839280 Gaim vulnerable to malformed SNAC packet infinite processing loop
2003-06-23 2003-05-07 2003-06-23 VU#727780 Cisco VPN 3000 Concentrator may allow access to internal hosts when IPsec over TCP is enabled
2005-01-27 2005-01-25 2005-01-27 VU#980078 Apple Mac OS X vulnerable to buffer overflow in ColorSync ICC color profile handling
2004-10-01 2004-08-25 2005-10-05 VU#238678 The zlib compression library is vulnerable to a denial-of-service condition
2003-10-03 2003-10-03 2003-10-07 VU#333980 SSH Communications Secure Shell vulnerable to DoS via malformed BER/DER packet
2004-04-23 2004-04-21 2004-04-23 VU#658878 BEA WebLogic Server allows unauthorized removal of EJB objects
2004-05-13 2004-05-12 2008-02-15 VU#106678 IEEE 802.11 wireless network protocol DSSS CCA algorithm vulnerable to denial of service
2005-02-04 2005-01-31 2007-08-08 VU#625878 Single crafted HTTP request may result in multiple responses
2001-11-08 2001-01-10 2001-11-08 VU#424080 shadow-utils useradd creates temporary files insecurely
2006-07-27 2006-07-27 2008-09-22 VU#372878 Tamarack MMSd components fail to properly handle malformed packets
2006-03-23 2006-03-22 2006-04-11 VU#876678 Microsoft Internet Explorer createTextRange() vulnerability

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis