search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2006-01-11 2006-01-10 2006-01-13 VU#629845 Apple QuickTime image handling buffer overflow
2007-05-09 2007-05-07 2007-05-14 VU#488424 Trend Micro ServerProtect SpntSvc buffer overflow vulnerability
2007-04-25 2007-04-24 2007-04-25 VU#979825 CA BrightStor ARCserve Backup Media Server RPC service buffer overflows
2003-01-21 2002-11-12 2003-01-21 VU#657625 Microsoft Virtual Machine incorrectly parses the domain portion of URLs containing a colon
2006-05-30 2006-05-30 2006-06-07 VU#764025 Secure Elements Class 5 AVR server fails to properly validate pathnames when downloading updates
2001-11-15 1999-11-10 2001-11-15 VU#13145 BIND memcpy not bounded in case T_SIG of rrextract()
2007-02-05 2006-12-04 2007-02-09 VU#350625 IBM Tivoli Storage Manager SmExecuteWdsfSession( ) function vulnerable to buffer overflow
2004-10-13 2004-10-12 2004-10-13 VU#910998 Microsoft Windows kernel fails to properly handle invalid opcodes used in DOS emulation
2006-07-27 2006-07-25 2007-02-09 VU#670060 Mozilla fails to properly release JavaScript references
2007-08-15 2007-08-14 2007-08-15 VU#121024 Microsoft Windows Vista Contacts Gadget vulnerability
2006-01-31 2006-01-29 2006-02-23 VU#604745 Winamp fails to properly handle playlists with long "file" parameter
2007-06-13 2007-06-12 2007-06-21 VU#682825 Microsoft Windows "MHTML" protocol handler fails to properly interpret HTTP header
2008-01-25 2007-12-10 2008-04-28 VU#203611 inet_network() off-by-one buffer overflow
2007-02-23 2007-02-22 2009-04-13 VU#441785 SupportSoft ActiveX controls contain multiple buffer overflows
2003-04-01 2003-03-31 2003-04-01 VU#112553 Apple QuickTime Player for Windows contains buffer overflow in processing of overly long QuickTime URLs

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis