search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-02-11 2005-02-08 2005-02-11 VU#544392 Sun Java Plugin may create temporary files with predictable names
2001-06-18 2000-07-03 2001-06-18 VU#35842 man 'makewhatis' insecurely uses /tmp
2007-01-17 2006-12-23 2007-01-31 VU#863313 Novell NetMail IMAP vulnerable to buffer overflow when processing "SUBSCRIBE" commands
2007-09-06 2006-12-01 2007-09-06 VU#311192 VUPlayer malformed playlist buffer overflow
2003-08-19 2001-11-28 2003-08-19 VU#705771 gtop daemon contains buffer overflow
2006-11-08 2006-11-08 2007-01-23 VU#335392 The Mozilla Network Security Services library fails to properly verify RSA signatures
2009-10-13 2009-09-01 2009-10-27 VU#257117 Adobe Acrobat and Reader contain vulnerabilities in multiple Document Object JavaScript methods
2010-12-01 2010-12-01 2010-12-01 VU#510208 ISC BIND named allow-query vulnerability
2004-09-02 2004-08-31 2004-09-03 VU#350792 MIT Kerberos krb524d insecurely deallocates memory (double-free)
2003-09-15 2003-09-10 2003-09-15 VU#516492 MySQL fails to validate length of password field
2006-09-29 2006-07-25 2006-09-29 VU#713092 FileCOPA FTP server vulnerable to buffer overflow
2004-05-13 2004-05-12 2004-05-13 VU#637318 Multiple Symantec firewall products contain a buffer overflow in the processing of DNS resource records
2004-01-22 2004-01-21 2004-01-23 VU#721092 Cisco IBM Director agent does not properly handle arbitrary TCP packets to port 14247/tcp
2007-12-18 2007-12-18 2008-01-07 VU#905292 Apple Safari code execution vulnerability
2010-07-12 2010-07-07 2010-07-12 VU#732671 Cisco Industrial Ethernet 3000 Series switches have hardcoded SNMP community strings

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis