search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2010-11-19 2009-09-30 2010-11-19 VU#479051 OSIsoft PI Server provides an insecure authentication mechanism
2007-05-03 2007-05-02 2008-07-21 VU#213516 LiveData Protocol Server fails to properly handle requests for WSDL files
2006-11-08 2006-11-08 2007-04-05 VU#495288 Mozilla products contain several unspecified errors in the layout engine
2001-07-18 2001-03-26 2002-05-20 VU#176888 Linux kernel contains race condition via ptrace/procfs/execve
2004-04-13 2004-04-13 2004-04-14 VU#740716 Microsoft Jet Database Engine database request handling buffer overflow
2004-10-13 2004-10-12 2004-10-15 VU#625616 Microsoft Internet Explorer does not properly handle navigations from plug-ins
2006-09-27 2006-07-18 2006-10-10 VU#753044 Microsoft Windows WebViewFolderIcon ActiveX integer overflow
2007-01-24 2007-01-24 2007-01-31 VU#341288 Cisco IOS fails to properly process certain packets containing a crafted IP option
2006-01-24 2006-01-17 2006-01-24 VU#629316 Oracle Database SYS.DBMS_METADATA_UTIL package SQL injection vulnerability
2005-10-11 2005-10-11 2005-12-15 VU#950516 Microsoft COM+ contains a memory management flaw
2005-01-14 2005-01-11 2005-01-14 VU#377368 Apple iTunes fails to properly handle overly long URLs in playlists
2004-03-25 2004-03-22 2004-04-06 VU#740188 Ethereal IrDA dissector plugin fails to properly parse IRCOM_PORT_NAME parameter
2000-10-31 1999-09-10 2000-10-31 VU#23412 Wang/Kodak Image Annotation ActiveX Control
2007-08-09 2007-08-08 2007-08-10 VU#201984 Cisco IOS fails to properly handle Next Hop Resolution Protocol packets
2001-07-12 2001-04-11 2001-07-17 VU#642760 Lotus Domino vulnerable to DoS via large crafted URL request

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis