search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2007-06-25 2007-06-25 2007-09-21 VU#289988 Apple Safari cross-domain HTTP redirection race condition
2006-09-27 2006-07-18 2006-10-10 VU#753044 Microsoft Windows WebViewFolderIcon ActiveX integer overflow
2005-01-14 2005-01-11 2005-01-14 VU#377368 Apple iTunes fails to properly handle overly long URLs in playlists
2000-10-31 1999-09-10 2000-10-31 VU#23412 Wang/Kodak Image Annotation ActiveX Control
2006-10-12 2006-10-10 2006-10-31 VU#562788 Microsoft XML Core Services contain a buffer overflow in the XSLT component
2007-08-09 2007-08-08 2007-08-10 VU#201984 Cisco IOS fails to properly handle Next Hop Resolution Protocol packets
2001-07-12 2001-04-11 2001-07-17 VU#642760 Lotus Domino vulnerable to DoS via large crafted URL request
2003-07-31 2003-06-25 2003-07-31 VU#113716 Microsoft Windows Media Services contains buffer overflow in "nsiislog.dll"
2002-09-13 2002-09-12 2002-09-18 VU#836088 Multiple vendors' email content/virus scanners do not adequately check "message/partial" MIME entities
2006-10-02 2006-09-29 2006-10-02 VU#897628 Apple Mac OS X may allow network accounts to bypass service access controls
2006-09-19 2006-06-19 2011-07-22 VU#933712 gzip NULL dereference in huft_build()
2005-06-14 2005-06-14 2005-07-06 VU#367077 Microsoft ISA Server 2000 vulnerable to privilege escalation via "NETBIOS" connection
2006-10-26 2006-10-25 2006-10-26 VU#347188 Microsoft Internet Explorer 7 may allow address bar spoofing
2001-09-27 2001-01-30 2001-09-27 VU#115112 Sun Solaris catman creates temporary files insecurely
2005-12-02 2005-11-28 2006-01-13 VU#974188 Sun Java Runtime Environment "reflection" API privilege elevation vulnerabilities

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis