search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2000-12-12 2000-10-24 2001-01-18 VU#470543 Sun Microsystems Keys exposed and revoked
2001-12-12 2001-12-12 2002-04-11 VU#569272 System V derived login contains a remotely exploitable buffer overflow
2001-12-08 2001-06-19 2004-01-14 VU#105259 Oracle Database Server vulnerable to DoS via repeated requests to Oracle listener without connecting to redirected port
2005-10-11 2005-10-11 2005-10-27 VU#214572 Microsoft Plug and Play fails to properly validate user supplied data
2006-03-16 2006-03-14 2007-12-18 VU#945060 Adobe Flash products contain multiple vulnerabilities
2009-12-08 2009-12-08 2011-07-22 VU#568372 NTP mode 7 denial-of-service vulnerability
2007-01-24 2007-01-24 2008-01-25 VU#274760 Cisco IOS fails to properly process specially crafted IPv6 packets
2001-09-18 2001-06-07 2001-09-18 VU#215259 Microsoft Windows 2000 Telnet Service contains handle leak
2001-09-26 1999-09-30 2001-09-26 VU#872443 IBM AIX nslookup buffer overflow in hostname to lookup
2001-04-05 2001-04-04 2008-05-22 VU#970472 Network Time Protocol ([x]ntpd) daemon contains buffer overflow in ntp_control:ctl_getitem() function
2001-08-23 2001-07-02 2001-08-23 VU#560659 IBM WebSphere vulnerable to Cross-Site Scripting via passing of user input directly to default error page
2003-08-05 2003-07-31 2003-08-05 VU#999788 BEA WebLogic Server code execution paths may cause the current user to be incorrect
2004-04-14 2004-04-13 2004-04-14 VU#471260 Microsoft Windows logon process fails contains a buffer overflow during the logon process
2011-02-16 2011-02-14 2011-04-15 VU#323172 Microsoft Windows browser election message kernel pool overflow
2006-10-26 2006-10-25 2006-10-26 VU#347188 Microsoft Internet Explorer 7 may allow address bar spoofing

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis