search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2001-09-26 2001-02-12 2001-09-26 VU#500379 AOLServer contains buffer overflow in ParseAuth()
2008-01-10 2008-01-10 2008-02-07 VU#112179 Apple QuickTime RTSP Response message Reason-Phrase buffer overflow vulnerability
2004-04-26 2004-04-21 2004-04-26 VU#184558 BEA WebLogic Server contains a vulnerability in the URL pattern matching
2001-07-27 2001-06-27 2001-10-31 VU#971179 UUCP package contains multiple buffer overflows via long string of characters sent as command line argument
2001-10-25 2001-10-18 2003-04-09 VU#649979 Oracle9iAS Web Cache vulnerable to buffer overflow
2007-01-02 2006-10-27 2007-01-02 VU#363992 Wireshark HTTP dissector vulnerability
2008-09-16 2008-09-16 2008-11-28 VU#837092 InstallShield / Macrovision / Acresso FLEXnet Connect insecurely retrieves and executes scripts
2006-10-10 2006-07-03 2006-10-10 VU#143292 Microsoft Excel fails to properly process malformed STYLE records
2010-11-03 2010-11-03 2010-11-03 VU#465239 NetSupport Manager Gateway transmits identifying information in plaintext
2003-07-31 2003-07-31 2003-08-15 VU#743092 realpath(3) function contains off-by-one buffer overflow
2004-09-17 2004-09-14 2004-10-26 VU#113192 Mozilla allows signed scripts calling "enablePrivilege" to change contents of a "grant" dialog
2004-10-19 2004-09-18 2004-10-27 VU#424358 sudoedit can expose protected file contents
2007-06-26 2007-06-26 2007-08-08 VU#365313 MIT Kerberos kadmind RPC library gssrpc__svcauth_unix() integer conversion error
2003-05-04 2003-02-03 2003-06-17 VU#911505 pam_xauth may insecurely forward "X MIT-Magic-Cookies" to new sessions
2001-07-24 2001-07-24 2001-08-07 VU#994851 Microsoft Services for UNIX Telnet server is vulnerable to denial of service via memory leak

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis