search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2007-01-18 2006-12-19 2007-03-05 VU#405092 Mozilla products allows the src attribute in an img element to be changed to a JavaScript URI
2004-04-14 2004-04-13 2004-04-14 VU#212892 Microsoft Windows creates COM object identifiers incorrectly
2000-10-31 1999-09-10 2000-10-31 VU#24839 Wang/Kodak Image Thumbnail ActiveX Control
2002-04-05 2000-12-12 2002-04-05 VU#474592 AOL Instant Messenger contains buffer overflows in parsing of AIM URI handler requests
2006-06-13 2006-06-13 2006-06-14 VU#814644 Microsoft Remote Access Connection Manager service vulnerable to buffer overflow
2006-10-20 2006-10-18 2006-10-20 VU#383092 IBM Lotus Notes sets insecure default permissions on program data
2001-01-18 2001-01-18 2002-03-05 VU#118892 Older SSH clients do not allow users to disable X11 forwarding
2010-08-24 2010-08-24 2010-12-06 VU#644319 Ghostscript Heap Corruption in TrueType bytecode interpreter
2006-10-27 2006-10-25 2006-12-08 VU#449092 AOL Nullsoft Winamp Lyrics3 heap buffer overflow
2005-07-29 2005-07-27 2005-08-02 VU#930892 Cisco IOS vulnerable to DoS or arbitrary code execution via specially crafted IPv6 packet
2003-07-21 2003-07-21 2003-07-21 VU#694428 Apache stops writing access/error logs after processing "Request-URI" containing "0x1A" characters
2004-08-27 2004-03-30 2004-08-27 VU#492558 tcpdump contains integer underflow vulnerability in ISAKMP "Identification Payload" handling
2003-02-21 2003-02-21 2007-05-21 VU#528719 Multiple implementations of the Session Initiation Protocol (SIP) contain multiple types of vulnerabilities
2002-09-26 2002-01-08 2002-09-26 VU#575619 Allaire Forums does not verify user information stored in hidden form fields
2002-06-27 2002-06-26 2003-04-16 VU#803539 Multiple vendors' Domain Name System (DNS) stub resolvers vulnerable to buffer overflows

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis