search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2010-10-22 2010-10-21 2010-10-29 VU#402231 Adobe Shockwave Player Director file 'rcsL' chunk parsing vulnerability
2002-09-09 2002-05-22 2002-09-09 VU#115731 HP Tru64 UNIX "quot" contains buffer overflow (SSRT2191)
2001-06-15 2000-07-14 2001-08-07 VU#28565 Microsoft Internet Information Server (IIS) discloses contents of files via crafted request containing "+.htr"
2004-03-24 2004-03-19 2004-08-25 VU#132110 Apache HTTP Server vulnerable to DoS race condition in the handling of short-lived connections
2011-10-27 2011-10-27 2011-10-27 VU#402731 Enspire eClient SQL injection allows authentication bypass
2008-06-06 2008-06-04 2008-06-06 VU#526131 HP Online Support Services ActiveX RegistryString() buffer overflow
2004-07-09 2004-06-30 2004-07-09 VU#718896 Cisco Collaboration Server (CCS) ServletExec allows arbitrary file uploading
2003-07-28 2003-07-28 2003-07-29 VU#886796 Cisco Aironet AP1100 fails to provide universal login error messages thereby disclosing validity of user account
2002-08-16 2002-08-16 2002-08-16 VU#399531 Microsoft Windows SQL Server allows arbitrary queries to be executed via "xp_execresultset" extended procedure
2006-10-25 2006-08-25 2006-10-25 VU#696896 Wireshark SSCOP dissector fails to properly handle malformed packets
2001-09-10 2001-08-03 2001-09-13 VU#920931 phpBB does not adequately validate user input for language selection thereby allowing user to execute arbitrary php code
2006-09-28 2004-08-02 2007-02-09 VU#423396 X.509 certificate verification may be vulnerable to resource exhaustion
2006-07-27 2006-07-25 2007-02-09 VU#687396 Mozilla products fail to properly validate JavaScript constructors
2010-10-04 2010-10-04 2010-10-04 VU#236703 ActiveCollab permissions failure
2002-08-16 2002-08-16 2002-08-16 VU#939675 Microsoft Windows SQL Server allows arbitrary queries to be executed via "xp_printstatements" extended procedure

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis