search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2006-04-11 2006-04-11 2006-04-11 VU#503124 Microsoft Internet Explorer fails to handle specially crafted, invalid HTML
2011-01-28 2011-01-28 2011-04-12 VU#326549 Microsoft Windows MHTML script injection vulnerability
2005-06-28 2005-06-16 2005-07-06 VU#612949 XMLHttpRequest Object security bypass in Opera Web Browser
2007-04-03 2007-04-03 2007-05-30 VU#704024 MIT Kerberos 5 administration daemon stack overflow in krb5_klog_syslog()
2007-01-19 2007-01-10 2007-01-24 VU#698924 Adobe Acrobat allows pointer overwrite via specially crafted PDF file
2004-10-13 2004-10-12 2005-01-24 VU#640488 Microsoft Windows contains an unchecked buffer in the NetDDE services
2008-05-27 2008-05-27 2008-05-27 VU#669265 Online Media Technologies NCTSoft NCTAudioInformation2 ActiveX stack buffer overflows
2010-09-09 2010-09-07 2010-10-20 VU#807665 Washington Courts website vulnerable to SQL injection and cross-site scripting
2002-04-05 2000-10-03 2002-04-05 VU#683765 AOL Instant Messenger vulnerable to denial of service via crafted file name
2005-10-05 2005-09-23 2005-12-16 VU#160012 Ruby safe-level security model bypass
2000-12-19 2000-12-09 2001-01-11 VU#759265 Kerberos client code buffer overflow in kdc_reply_cipher()
2006-03-22 2006-03-22 2011-07-22 VU#834865 Sendmail signal I/O race condition
2008-01-31 2008-01-10 2008-01-31 VU#326065 Liferay Portal Enterprise Admin User-Agent HTTP header XSS
2001-08-27 2000-05-05 2001-08-27 VU#36312 Cayman gateways are vulnerable to a denial of sevices via a long username or password
2001-07-17 2001-07-16 2002-12-12 VU#688960 Teamware Office contains multiple vulnerabilities in LDAP handling code

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis