search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2006-04-05 2006-03-23 2006-05-17 VU#172489 RealNetworks products fail to properly handle chunked data
2006-03-14 2005-12-07 2006-03-14 VU#642428 Microsoft Excel fails to properly perform range validation when parsing document files
2005-03-17 2005-03-17 2005-04-20 VU#131828 NotifyLink web client fails to adequately restrict access to administrative functions
2006-05-15 2006-05-11 2006-05-17 VU#570689 Apple QuickTime FlashPix integer overflow
2003-06-27 2003-06-22 2003-09-03 VU#823260 Microsoft Windows HTML conversion library vulnerable to buffer overflow
2002-09-05 2002-08-30 2002-09-05 VU#629289 HP Tru64 UNIX "traceroute" contains buffer overflow (SSRT2261)
2006-05-16 2006-05-11 2006-05-16 VU#186944 EMC Retrospect Client buffer overflow vulnerability
2007-08-14 2007-08-14 2007-08-15 VU#361968 Microsoft XML Core Services XMLDOM substringData() buffer overflow
2004-10-13 2004-10-12 2004-10-13 VU#637760 Microsoft Internet Explorer Install Engine contains a buffer overflow vulnerability
2008-10-14 2008-10-14 2008-10-20 VU#166651 Husdawg, LLC Systems Requirements Lab ActiveX control and Java applet vulnerable to arbitrary code download and execution
2002-01-14 2001-10-06 2002-01-14 VU#990451 AOL Instant Messenger vulnerable to DoS via crafted WAV file
2001-12-15 1999-12-07 2001-12-15 VU#13217 Problem with HP r-cmnds
2007-08-17 2007-07-27 2007-08-21 VU#120760 Yahoo! Installer Plugin for Widgets ActiveX control stack buffer overflow
2001-07-24 2001-07-24 2001-08-07 VU#994851 Microsoft Services for UNIX Telnet server is vulnerable to denial of service via memory leak
2005-01-25 2005-01-25 2005-06-21 VU#938617 BIND 9.3.0 vulnerable to denial of service in validator code

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis