search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2011-02-23 2011-02-23 2011-02-23 VU#136612 Mutare Software Enabled VoiceMail (EVM) system web interface cross-site request forgery vulnerabilities
2002-10-17 2002-09-26 2002-10-17 VU#600777 gv contains buffer overflow in sscanf() function
2006-11-08 2006-11-08 2006-12-21 VU#714496 Mozilla products allow execution of arbitrary JavaScript
2001-05-01 2000-11-21 2001-06-26 VU#818496 Microsoft Windows 2000 Workstation in mixed-mode domain may ignore domain account lockout restriction due to flaw in NTLM authentication
2011-11-08 2011-11-08 2011-11-09 VU#448051 eEye Retina audit script could execute untrusted programs as root
2004-09-16 2004-08-26 2004-09-17 VU#339089 star fails to set proper permissions on programs specified in RSH environment variable
2005-11-23 2005-11-22 2005-12-01 VU#853540 Cisco PIX fails to verify TCP checksum
2008-09-12 2008-09-12 2008-09-17 VU#362012 TWiki command execution vulnerability
2008-02-05 2008-02-03 2008-02-13 VU#340860 Yahoo! Music Jukebox Yahoo! MediaGrid ActiveX control stack buffer overflow
2006-10-19 2006-10-17 2007-01-17 VU#717140 Oracle ENABLE_HIERARCHY_INTERNAL procedure vulnerable to PL/SQL injection
2011-09-15 2011-09-15 2011-09-15 VU#519588 JasperServer cross-site request forgery vulnerability
2001-07-27 2001-06-27 2001-07-27 VU#489995 SCO UnixWare uuxcmd contains buffer overflow via long string of characters sent as command line argument
2006-08-21 2006-08-12 2006-08-21 VU#647796 Symantec Veritas Backup Exec for Windows Server vulnerable to heap-based buffer overflow
2004-09-17 2004-09-14 2004-09-17 VU#653160 Mozilla Linux installer does not properly set file permissions
2008-03-19 2008-03-18 2008-03-19 VU#766019 Apple Safari vulnerable to xss via the processing of JavaScript URLs

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis