search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2007-06-08 2007-06-07 2007-06-11 VU#932217 Yahoo! Webcam view utilities ActiveX control vulnerable to arbitrary code execution
2008-06-06 2008-06-04 2008-06-07 VU#190939 HP Online Support Services ActiveX AppendStringToFile() arbitrary file writing
2005-09-02 2005-08-26 2005-10-10 VU#139421 simpleproxy format string vulnerability
2005-08-09 2005-08-09 2005-08-11 VU#220821 Microsoft Print Spooler service contains a buffer overflow
2001-10-26 2001-06-18 2001-10-26 VU#139139 Air Messenger LAN Server (AMLServer) stores usernames and passwords in plaintext
2006-09-19 2006-09-18 2007-03-21 VU#416092 Microsoft Internet Explorer VML stack buffer overflow
2002-09-27 2001-10-15 2002-09-27 VU#341539 Novell GroupWise Server web-based front-end does not adequately validate user input thereby allowing directory traversal
2002-12-13 2002-11-20 2003-05-16 VU#958321 Samba contains a remotely exploitable stack buffer overflow
2006-05-30 2006-05-30 2006-06-07 VU#921017 Secure Elements Class 5 AVR client sends messages in cleartext
2001-04-10 2001-04-10 2001-04-11 VU#490344 Alcatel ADSL modems provide unauthenticated TFTP access via physical WAN interface
2006-03-03 2005-12-22 2006-03-06 VU#351217 Apple Safari WebKit component vulnerable to buffer overflow
2006-07-11 2006-07-11 2006-07-13 VU#257164 Microsoft DHCP Client service contains a buffer overflow
2006-09-28 2006-09-28 2007-02-09 VU#247744 OpenSSL may fail to properly parse invalid ASN.1 structures
2006-06-21 2006-06-18 2006-08-22 VU#394444 Microsoft Hyperlink Object Library stack buffer overflow
2002-10-17 2002-09-26 2002-10-17 VU#600777 gv contains buffer overflow in sscanf() function

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis