search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2008-10-02 2008-09-05 2008-10-02 VU#889484 0 libpng off-by-one vulnerability
2007-02-12 2007-02-10 2008-07-21 VU#881872 0 Sun Solaris telnet authentication bypass vulnerability
2009-05-06 2008-12-04 2009-05-08 VU#576996 0 NuPoint Messenger server transmits authentication credentials in plain text
2002-03-01 2002-02-25 2002-07-05 VU#230307 0 Linux kernel netfilter IRC DCC helper module creates overly permissive firewall rules
2005-07-13 2005-07-13 2005-07-14 VU#491770 0 WebEOC implements weak algorithms to encrypt sensitive information
2008-05-06 2008-05-05 2008-09-17 VU#596268 0 Wonderware SuiteLink null pointer dereference
2005-10-21 2005-10-18 2005-10-21 VU#609340 0 Oracle E-Business Suite Applications Utilities vulnerability
2010-01-20 2009-12-18 2010-06-03 VU#144233 0 Rockwell Automation Allen-Bradley MicroLogix PLC authentication and authorization vulnerabilities
2009-03-10 2009-03-10 2009-03-17 VU#319331 0 Microsoft Windows DNS Server response validation vulnerability
2008-08-12 2008-08-12 2008-08-13 VU#309739 0 Microsoft Color Management System (MSCMS) module remote code execution
2005-11-11 2005-11-07 2006-05-09 VU#146284 0 Macromedia Flash Player fails to properly validate the frame type identifier read from a "SWF" file
2008-05-30 2008-05-28 2008-05-30 VU#661475 0 OpenSSL Server Name extension Denial of Service
2001-08-10 2000-05-25 2004-02-23 VU#37526 0 Netscape fails to revalidate certificates if a user has previously acknowledged a certificate to be non-matching
2011-11-08 2011-11-03 2015-09-30 VU#135606 0 Dell KACE K2000 Appliance contains backdoor administrator account
2007-10-26 2007-10-26 2007-11-14 VU#342793 0 RSA Keon cross-site scripting vulnerabilities

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis